Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
racial.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\0FBCLMD5\www.msn[1].xml
|
ASCII text, with no line terminators
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\DOMStore\C642LENE\contextual.media[1].xml
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{B186EE52-C4D0-11EB-90E4-ECF4BB862DED}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{B186EE54-C4D0-11EB-90E4-ECF4BB862DED}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{BA8A15FC-C4D0-11EB-90E4-ECF4BB862DED}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F8ED9647-C4D0-11EB-90E4-ECF4BB862DED}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\ynfz0jx\imagestore.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\2d-0e97d4-185735b[1].css
|
UTF-8 Unicode text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\AAKAE0g[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\AAKF3od[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\AAKFG5U[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\AAKFGKm[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\AAKFgOM[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\AAKFkc2[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\AAKFl7X[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\AAKwTqp[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\AAuTnto[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB1aXITZ[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB1cG73h[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB1gqGZR[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB1kvzy[1].png
|
PNG image data, 30 x 30, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BB7gRE[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BBJrII1[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BBPfCZL[1].png
|
GIF image data, version 89a, 50 x 50
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BBRUB0d[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BBX2afX[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\BBkwUr[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\e151e5[1].gif
|
GIF image data, version 89a, 1 x 1
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\http___cdn.taboola.com_libtrc_static_thumbnails_27fb98c971ab2a7fd8fb1b93d6f09452[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\jquery-2.1.1.min[1].js
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\nrrV56260[1].js
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\otFlat[1].json
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\0W10PBUV\otPcCenter[1].json
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\46a64e19-d1cf-494e-8a93-1a179ccdaae9[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AA6SFRQ[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAKDho5[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAKEBOL[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAKF4cY[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAKF6YD[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAKFGPg[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAKFGUg[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAKFGrV[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAKFH7n[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAKFgGZ[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAKFkoB[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAKFmGU[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAKFwN9[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\AAKp8YX[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BB1cEP3G[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BB7hg4[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BBVuddh[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\BBXXVfm[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\a27dc85a-9c49-4090-8fd6-fcbafa39577a[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, baseline, precision 8, 300x300, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\a5ea21[1].ico
|
PNG image data, 32 x 32, 8-bit/color RGB, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\cfdbd9[1].png
|
PNG image data, 27 x 27, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\checksync[1].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\checksync[2].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\checksync[3].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\checksync[4].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\de-ch[1].htm
|
HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\location[1].js
|
ASCII text, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\MEEXW4H4\nrrV56260[1].js
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\4996b9[1].woff
|
Web Open Font Format, TrueType, length 45633, version 1.0
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\52-478955-68ddb2ab[1].js
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\AAKDHsZ[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\AAKDiAr[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\AAKF3dk[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\AAKFBJq[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 100x75, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\AAKFBPA[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\AAKFFWX[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\AAKFIla[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\AAKFNow[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\AAKFesV[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\AAKFpl8[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\AAm2UN1[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB10MkbM[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB1ardZ3[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BB1dCSOZ[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BBUZVvV[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BBY7ARN[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\BBnYSFZ[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\a8a064[1].gif
|
GIF image data, version 89a, 28 x 28
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\http___cdn.taboola.com_libtrc_static_thumbnails_GETTY_IMAGES_FKF_1224774551__J0lEO5Vp[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\http___cdn.taboola.com_libtrc_static_thumbnails_ac739830a013baf1e00778fe327f0a5a[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\http___cdn.taboola.com_libtrc_static_thumbnails_bb08781aa271862226e3d45146478e49[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\medianet[1].htm
|
HTML document, ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\medianet[2].htm
|
HTML document, ASCII text, with very long lines
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PSUEOSZZ\otBannerSdk[1].js
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\17-361657-68ddb2ab[1].js
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\55a804ab-e5c6-4b97-9319-86263d365d28[1].json
|
ASCII text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\AA6wTdK[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\AAKFC6D[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\AAKFFeZ[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\AAKFNiv[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\AAKFPFy[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\AAKFUAE[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 300x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\AAKFgIh[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\AAKFtNg[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 311x333, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\AAKFx6f[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 310x166, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\AAKiuLK[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\AAKoiAy[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 206x250, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB14EN7h[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB14Ue5t[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB14hq0P[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB15AQNm[1].jpg
|
JPEG image data, JFIF standard 1.01, resolution (DPI), density 96x96, segment length 16, baseline, precision 8, 622x368, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BB1ftEY0[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\BBOLLMj[1].png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\auction[1].htm
|
HTML document, ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\de-ch[1].json
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\http___cdn.taboola.com_libtrc_static_thumbnails_67e22d8aae58f404575f6c0627b07d0b[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\http___cdn.taboola.com_libtrc_static_thumbnails_858913b40c4df9463261f35e7072478e[1].jpg
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 207x311, frames
3
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\iab2Data[1].json
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\otSDKStub[1].js
|
ASCII text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\WJ8I2OL4\otTCF-ie[1].js
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
downloaded
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF1C59239F0C65121E.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF1F994CC7CB264F59.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF2C38B154662407E8.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF68CE0292F979F001.TMP
|
data
|
dropped
|
|
There are 118 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Windows\System32\loaddll32.exe
|
loaddll32.exe 'C:\Users\user\Desktop\racial.dll'
|
|
|
|
C:\Windows\SysWOW64\regsvr32.exe
|
regsvr32.exe /s C:\Users\user\Desktop\racial.dll
|
|
|
|
C:\Windows\SysWOW64\rundll32.exe
|
rundll32.exe 'C:\Users\user\Desktop\racial.dll',#1
|
|
|
|
C:\Windows\SysWOW64\rundll32.exe
|
rundll32.exe C:\Users\user\Desktop\racial.dll,DllRegisterServer
|
|
|
|
C:\Windows\SysWOW64\cmd.exe
|
cmd.exe /C rundll32.exe 'C:\Users\user\Desktop\racial.dll',#1
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
C:\Program Files\Internet Explorer\iexplore.exe
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:2212 CREDAT:17410 /prefetch:2
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:2212 CREDAT:17426 /prefetch:2
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://searchads.msn.net/.cfm?&&kp=1&
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/coronareisen
|
unknown
|
|
|
|
https://click.linksynergy.com/deeplink?id=xoqYgl4JDe8&mid=46130&u1=dech_promotionalstripe_na
|
unknown
|
|
|
|
https://onedrive.live.com;Fotos
|
unknown
|
|
|
|
https://www.msn.com/de-ch/sport?ocid=StripeOCID
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/z%c3%bcrich/26-j%c3%a4hriger-mann-stirbt-nach-sturz-auf-vorpla
|
unknown
|
|
|
|
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_TopMenu&auth=1&wdorigin=msn
|
unknown
|
|
|
|
https://office.live.com/start/Word.aspx?WT.mc_id=MSN_site;Excel
|
unknown
|
|
|
|
http://ogp.me/ns/fb#
|
unknown
|
|
|
|
https://www.awin1.com/cread.php?awinmid=15168&awinaffid=696593&clickref=de-ch-ss&ued=htt
|
unknown
|
|
|
|
https://outlook.live.com/mail/deeplink/compose;Kalender
|
unknown
|
|
|
|
https://res-a.akamaihd.net/__media__/pics/8000/72/941/fallback1.jpg
|
unknown
|
|
|
|
https://www.skyscanner.net/g/referrals/v1/cars/home?associateid=API_B2B_19305_00002
|
unknown
|
|
|
|
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_Recent&auth=1&wdorigin=msn
|
unknown
|
|
|
|
https://www.msn.com/de-ch/sport/nachrichten/schweiz-unterliegt-deutschland-im-penaltyschiessen/ar-AA
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/z%c3%bcrich/mehr-sicherheit-und-weniger-versp%c3%a4tungen-im-f
|
unknown
|
|
|
|
http://www.reddit.com/
|
unknown
|
|
|
|
https://www.skype.com/
|
unknown
|
|
|
|
https://img.img-taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ce_sharpen%2Ch_311%2Cw_207%2Cc_fill%
|
unknown
|
|
|
|
https://sp.booking.com/index.html?aid=1589774&label=travelnavlink
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/regional
|
unknown
|
|
|
|
https://onedrive.live.com/?qt=allmyphotos;Aktuelle
|
unknown
|
|
|
|
https://amzn.to/2TTxhNg
|
unknown
|
|
|
|
https://www.skype.com/go/onedrivepromo.download?cm_mmc=MSFT_2390_MSN-com
|
unknown
|
|
|
|
https://client-s.gateway.messenger.live.com
|
unknown
|
|
|
|
https://www.msn.com/de-ch/
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/gr%c3%bcne-fordern-regierung-soll-zeitungen-f%c3%b6rdern/ar-AAK
|
unknown
|
|
|
|
https://office.live.com/start/PowerPoint.aspx?WT.mc_id=MSN_site
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172&crid=858412214&size=306x271&https=1
|
unknown
|
|
|
|
https://www.awin1.com/cread.php?awinmid=15168&awinaffid=696593&clickref=de-ch-edge-dhp-river
|
unknown
|
|
|
|
https://www.msn.com/de-ch
|
unknown
|
|
|
|
https://click.linksynergy.com/deeplink?id=xoqYgl4JDe8&mid=46130&u1=dech_mestripe_store&m
|
unknown
|
|
|
|
https://twitter.com/i/notifications;Ich
|
unknown
|
|
|
|
https://www.awin1.com/cread.php?awinmid=11518&awinaffid=696593&clickref=dech-edge-dhp-infopa
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/walt-disney-sprach-ihn-an-und-pl%c3%b6tzlich-stand-sein-leben-k
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172&crid=722878611&size=306x271&http
|
unknown
|
|
|
|
https://www.sway.com/?WT.mc_id=MSN_site&utm_source=MSN&utm_medium=Topnav&utm_campaign=link;PowerPoin
|
unknown
|
|
|
|
https://www.msn.com/de-ch/?ocid=iehp&item=deferred_page%3a1&ignorejs=webcore%2fmodules%2fjsb
|
unknown
|
|
|
|
http://www.youtube.com/
|
unknown
|
|
|
|
http://ogp.me/ns#
|
unknown
|
|
|
|
https://onedrive.live.com/?qt=mru;OneDrive-App
|
unknown
|
|
|
|
https://www.skype.com/de
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/z%c3%bcrich/k%c3%b6nnen-seil-oder-hochbahnen-z%c3%bcrichs-verk
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/z%c3%bcrich/wer-bekommt-im-kanton-z%c3%bcrich-pr%c3%a4mienverb
|
unknown
|
|
|
|
https://sp.booking.com/index.html?aid=1589774&label=dech-prime-hp-me
|
unknown
|
|
|
|
https://tools.applemediaservices.com/api/badges/download-on-the-app-store/black/de-de?"
|
unknown
|
|
|
|
https://www.skype.com/de/download-skype
|
unknown
|
|
|
|
https://onedrive.live.com/?wt.mc_id=oo_msn_msnhomepage_header
|
unknown
|
|
|
|
http://www.hotmail.msn.com/pii/ReadOutlookEmail/
|
unknown
|
|
|
|
https://onedrive.live.com;OneDrive-App
|
unknown
|
|
|
|
https://click.linksynergy.com/deeplink?id=xoqYgl4JDe8&mid=46130&u1=dech_mestripe_office&
|
unknown
|
|
|
|
https://clkde.tradedoubler.com/click?p=295926&a=3064090&g=24886692
|
unknown
|
|
|
|
https://geolocation.onetrust.com/cookieconsentpub/v1/geo/location
|
unknown
|
|
|
|
http://www.amazon.com/
|
unknown
|
|
|
|
https://www.msn.com/de-ch/nachrichten/z%c3%bcrich/eye-tracking-bei-online-pr%c3%bcfungen-keiner-%c3%
|
unknown
|
|
|
|
https://www.onenote.com/notebooks?WT.mc_id=MSN_OneNote_QuickNote&auth=1
|
unknown
|
|
|
|
http://www.twitter.com/
|
unknown
|
|
|
|
https://office.live.com/start/Excel.aspx?WT.mc_id=MSN_site;Sway
|
unknown
|
|
|
|
https://cdn.cookielaw.org/vendorlist/googleData.json
|
unknown
|
|
|
|
https://outlook.com/
|
unknown
|
|
|
|
https://contextual.media.net/checksync.php?&vsSync=1&cs=1&hb=1&cv=37&ndec=1&cid=8HBI57XIG&prvid=77%2
|
unknown
|
|
|
|
https://www.stroeer.com/fileadmin/com/StroeerDSP_deviceStorage.json
|
unknown
|
|
|
|
https://cdn.cookielaw.org/vendorlist/iabData.json
|
unknown
|
|
|
|
https://www.msn.com/de-ch/homepage/api/pdp/updatepdpdata"
|
unknown
|
|
|
|
https://cdn.cookielaw.org/vendorlist/iab2Data.json
|
unknown
|
|
|
|
https://onedrive.live.com/?qt=mru;Aktuelle
|
unknown
|
|
|
|
https://www.msn.com/de-ch/?ocid=iehp
|
unknown
|
|
|
|
https://sp.booking.com/index.html?aid=1589774&label=dech-prime-hp-shoppingstripe-nav
|
unknown
|
|
|
|
https://www.ebay.ch/?mkcid=1&mkrid=5222-53480-19255-0&siteid=193&campid=5338626668&t
|
unknown
|
|
|
|
https://www.msn.com/de-ch/homepage/api/modules/fetch"
|
unknown
|
|
|
|
https://mem.gfx.ms/meversion/?partner=msn&market=de-ch"
|
unknown
|
|
|
|
http://www.nytimes.com/
|
unknown
|
|
|
|
https://web.vortex.data.msn.com/collect/v1/t.gif?name=%27Ms.Webi.PageView%27&ver=%272.1%27&a
|
unknown
|
|
|
|
https://www.stroeer.de/konvergenz-konzepte/daten-technologien/stroeer-ssp/datenschutz-ssp.html
|
unknown
|
|
|
|
https://www.bidstack.com/privacy-policy/
|
unknown
|
|
|
|
https://onedrive.live.com/about/en/download/
|
unknown
|
|
|
|
http://popup.taboola.com/german
|
unknown
|
|
|
|
https://www.msn.com/de-ch/news/other/junger-mann-stirbt-nach-sturz-von-einer-mauer-bei-der-eth/ar-AA
|
unknown
|
|
|
|
https://www.ricardo.ch/?utm_source=msn&utm_medium=affiliate&utm_campaign=msn_mestripe_logo_d
|
unknown
|
|
|
|
https://twitter.com/
|
unknown
|
|
|
|
https://clkde.tradedoubler.com/click?p=245744&a=3064090&g=24903118&epi=ch-de
|
unknown
|
|
|
|
https://outlook.live.com/calendar
|
unknown
|
|
|
|
https://img.img-taboola.com/taboola/image/fetch/f_jpg%2Cq_auto%2Ch_311%2Cw_207%2Cc_fill%2Cg_faces:au
|
unknown
|
|
|
|
https://onedrive.live.com/#qt=mru
|
unknown
|
|
|
|
https://api.taboola.com/2.0/json/msn-ch-de-home/recommendations.notify-click?app.type=desktop&ap
|
unknown
|
|
|
|
https://www.msn.com?form=MY01O4&OCID=MY01O4
|
unknown
|
|
|
|
https://support.skype.com
|
unknown
|
|
|
|
https://www.skyscanner.net/flights?associateid=API_B2B_19305_00001&vertical=custom&pageType=
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172&crid=722878611&size=306x271&https=1
|
unknown
|
|
|
|
https://clk.tradedoubler.com/click?p=245744&a=3064090&g=21863656
|
unknown
|
|
|
|
http://www.wikipedia.com/
|
unknown
|
|
|
|
https://contextual.media.net/medianet.php?cid=8CU157172&crid=858412214&size=306x271&http
|
unknown
|
|
|
|
https://www.ricardo.ch/?utm_source=msn&utm_medium=affiliate&utm_campaign=msn_shop_de&utm
|
unknown
|
|
|
|
http://www.live.com/
|
unknown
|
|
|
|
https://login.skype.com/login/oauth/microsoft?client_id=738133
|
unknown
|
|
|
|
https://onedrive.live.com?wt.mc_id=oo_msn_msnhomepage_header
|
unknown
|
|
There are 87 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
contextual.media.net
|
23.57.80.37
|
|
|
|
authd.feronok.com
|
35.199.86.111
|
|
|
|
tls13.taboola.map.fastly.net
|
151.101.1.44
|
|
|
|
hblg.media.net
|
23.57.80.37
|
|
|
|
lg3.media.net
|
23.57.80.37
|
|
|
|
geolocation.onetrust.com
|
104.20.184.68
|
|
|
|
web.vortex.data.msn.com
|
unknown
|
|
|
|
www.msn.com
|
unknown
|
|
|
|
srtb.msn.com
|
unknown
|
|
|
|
img.img-taboola.com
|
unknown
|
|
|
|
cvision.media.net
|
unknown
|
|
There are 1 hidden domains, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
104.20.184.68
|
geolocation.onetrust.com
|
United States
|
|
|
|
35.199.86.111
|
authd.feronok.com
|
United States
|
|
|
|
151.101.1.44
|
tls13.taboola.map.fastly.net
|
United States
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
{B186EE52-C4D0-11EB-90E4-ECF4BB862DED}
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
AdminActive
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
CVListPingLastYMD
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
NextUpdateDate
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Window_Placement
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NumberOfSubdomains
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NumberOfSubdomains
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
NULL
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
Total
|
|
There are 98 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
30B0000
|
unkown
|
page execute and read and write
|
|
|
|
2D70000
|
unkown
|
page execute and read and write
|
|
|
|
3120000
|
unkown
|
page execute and read and write
|
|
|
|
5E0000
|
unkown
|
page execute and read and write
|
|
|
|
5658000
|
heap private
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5A7EE1000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2982000
|
unkown
|
page readonly
|
|
|
|
2C8C000
|
unkown
|
page read and write
|
|
|
|
1BEFD0D0000
|
heap private
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
29A5000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF564F81000
|
unkown
|
page readonly
|
|
|
|
1F135A40000
|
unkown
|
page readonly
|
|
|
|
7FF5A83A9000
|
unkown
|
page readonly
|
|
|
|
7FF591FC4000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
610000
|
unkown
|
page read and write
|
|
|
|
1F135700000
|
unkown
|
page readonly
|
|
|
|
2D6A000
|
heap default
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1EB93A7D000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
DBB000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233BE8BA000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2A0317A0000
|
unkown
|
page read and write
|
|
|
|
1E0000
|
unkown
|
page readonly
|
|
|
|
2DE0000
|
heap default
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF5472C9000
|
unkown
|
page readonly
|
|
|
|
1EB93A49000
|
unkown
|
page read and write
|
|
|
|
20B763C0000
|
unkown
|
page read and write
|
|
|
|
7FF59205C000
|
unkown
|
page readonly
|
|
|
|
233B9458000
|
unkown
|
page read and write
|
|
|
|
6E200000
|
unkown image
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF5A7F78000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233BE820000
|
unkown
|
page read and write
|
|
|
|
2DBC000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF592065000
|
unkown
|
page readonly
|
|
|
|
7FF54709A000
|
unkown
|
page readonly
|
|
|
|
2758887D000
|
unkown
|
page read and write
|
|
|
|
233BE7F0000
|
unkown
|
page read and write
|
|
|
|
7FF5A8215000
|
unkown
|
page readonly
|
|
|
|
27588902000
|
unkown
|
page read and write
|
|
|
|
4BBE000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
E7ED67F000
|
unkown
|
page read and write
|
|
|
|
F19A1FE000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
20B76600000
|
unkown
|
page readonly
|
|
|
|
2758885F000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
BB853FE000
|
unkown
|
page read and write
|
|
|
|
A132D7C000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56C016000
|
unkown
|
page readonly
|
|
|
|
6E28D000
|
unkown image
|
page readonly
|
|
|
|
7FF5A839E000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF54723C000
|
unkown
|
page readonly
|
|
|
|
610000
|
unkown
|
page read and write
|
|
|
|
C71007F000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
A132B7D000
|
unkown
|
page read and write
|
|
|
|
2C50000
|
unkown
|
page readonly
|
|
|
|
F199C7A000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233B92A0000
|
heap default
|
page read and write
|
|
|
|
500000
|
unkown
|
page readonly
|
|
|
|
2D60000
|
unkown
|
page execute and read and write
|
|
|
|
27BA000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF591EE7000
|
unkown
|
page readonly
|
|
|
|
7FF5A80DC000
|
unkown
|
page readonly
|
|
|
|
2A031259000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
1F1357D0000
|
unkown
|
page read and write
|
|
|
|
2D20000
|
unkown
|
page readonly
|
|
|
|
C70F8CC000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2A0310F0000
|
unkown
|
page readonly
|
|
|
|
7FF56F854000
|
unkown
|
page readonly
|
|
|
|
3370000
|
unkown
|
page readonly
|
|
|
|
C70FFFD000
|
unkown
|
page read and write
|
|
|
|
29A0000
|
unkown
|
page readonly
|
|
|
|
489E000
|
unkown
|
page read and write
|
|
|
|
4C7F000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
BEA000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1EB93B18000
|
unkown
|
page read and write
|
|
|
|
7FF56F81D000
|
unkown
|
page readonly
|
|
|
|
BB84CFF000
|
unkown
|
page read and write
|
|
|
|
7FF56F7B2000
|
unkown
|
page readonly
|
|
|
|
7FF588065000
|
unkown
|
page readonly
|
|
|
|
D7C000
|
unkown
|
page read and write
|
|
|
|
6E206000
|
unkown image
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
233BE8B8000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
27588846000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1F135830000
|
heap default
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1F135A20000
|
unkown
|
page readonly
|
|
|
|
7FF56BD8C000
|
unkown
|
page readonly
|
|
|
|
7FF564EC5000
|
unkown
|
page readonly
|
|
|
|
1EB93C00000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
610000
|
unkown
|
page read and write
|
|
|
|
6E200000
|
unkown image
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5A815C000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF591D0A000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF5472BE000
|
unkown
|
page readonly
|
|
|
|
2E38000
|
unkown
|
page readonly
|
|
|
|
610000
|
unkown
|
page read and write
|
|
|
|
7FF5880BC000
|
unkown
|
page readonly
|
|
|
|
233BE7E0000
|
unkown
|
page read and write
|
|
|
|
2DBA000
|
unkown
|
page read and write
|
|
|
|
7FF516A02000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1F1371E0000
|
unkown
|
page readonly
|
|
|
|
7FF56BD1C000
|
unkown
|
page readonly
|
|
|
|
2856000
|
unkown
|
page readonly
|
|
|
|
27588720000
|
unkown
|
page readonly
|
|
|
|
233BEB24000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
DDB68FC000
|
unkown
|
page read and write
|
|
|
|
233BEC10000
|
unkown
|
page read and write
|
|
|
|
7FF56C03E000
|
unkown
|
page readonly
|
|
|
|
DDB63CE000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56C0A7000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF591C15000
|
unkown
|
page readonly
|
|
|
|
2141A600000
|
unkown
|
page readonly
|
|
|
|
27588876000
|
unkown
|
page read and write
|
|
|
|
1F1372D0000
|
heap private
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
27588A00000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
6E205000
|
unkown image
|
page read and write
|
|
|
|
2D3F000
|
unkown
|
page readonly
|
|
|
|
233BECA0000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
21419BC0000
|
unkown
|
page readonly
|
|
|
|
2BCA000
|
unkown
|
page readonly
|
|
|
|
7FF587932000
|
unkown
|
page readonly
|
|
|
|
2D40000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
6E203000
|
unkown image
|
page readonly
|
|
|
|
572F000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
27C4000
|
unkown
|
page readonly
|
|
|
|
7FF5A7BBF000
|
unkown
|
page readonly
|
|
|
|
2980000
|
unkown
|
page readonly
|
|
|
|
285B000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2E38000
|
unkown
|
page readonly
|
|
|
|
7FF592046000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF587E0E000
|
unkown
|
page readonly
|
|
|
|
7FF5A7FB6000
|
unkown
|
page readonly
|
|
|
|
E7ED27F000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1BEFD160000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5471B8000
|
unkown
|
page readonly
|
|
|
|
27588831000
|
unkown
|
page read and write
|
|
|
|
7FF56C08C000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
21419A30000
|
heap private
|
page read and write
|
|
|
|
7FF516B09000
|
unkown
|
page readonly
|
|
|
|
2D1C000
|
unkown
|
page readonly
|
|
|
|
6E280000
|
unkown image
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF56F82C000
|
unkown
|
page readonly
|
|
|
|
1EB93A40000
|
unkown
|
page read and write
|
|
|
|
2A031235000
|
unkown
|
page read and write
|
|
|
|
20B76450000
|
unkown
|
page read and write
|
|
|
|
30A0000
|
heap default
|
page read and write
|
|
|
|
7FF5880C8000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page execute and read and write
|
|
|
|
7FF5880E8000
|
unkown
|
page readonly
|
|
|
|
7FF564E98000
|
unkown
|
page readonly
|
|
|
|
7FF5A821C000
|
unkown
|
page readonly
|
|
|
|
7FF56C101000
|
unkown
|
page readonly
|
|
|
|
48C0000
|
heap private
|
page read and write
|
|
|
|
1BEFD130000
|
heap default
|
page read and write
|
|
|
|
7FF56F7EE000
|
unkown
|
page readonly
|
|
|
|
233B9D59000
|
unkown
|
page read and write
|
|
|
|
2E30000
|
unkown
|
page readonly
|
|
|
|
2A031200000
|
unkown
|
page read and write
|
|
|
|
7FF56BFAA000
|
unkown
|
page readonly
|
|
|
|
7FF5A828C000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
275885E0000
|
heap private
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5A82A0000
|
unkown
|
page readonly
|
|
|
|
2D76000
|
unkown
|
page readonly
|
|
|
|
295000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
BB8497A000
|
unkown
|
page read and write
|
|
|
|
7FF587DB2000
|
unkown
|
page readonly
|
|
|
|
1BEFD202000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF564EF6000
|
unkown
|
page readonly
|
|
|
|
610000
|
unkown
|
page read and write
|
|
|
|
7FF59190D000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
6E280000
|
unkown image
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
1EB93CD0000
|
unkown
|
page readonly
|
|
|
|
7FF5A7BE5000
|
unkown
|
page readonly
|
|
|
|
7FF5881D9000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
E7EDA7E000
|
unkown
|
page read and write
|
|
|
|
27588E02000
|
unkown
|
page read and write
|
|
|
|
6E28D000
|
unkown image
|
page readonly
|
|
|
|
7FF591D06000
|
unkown
|
page readonly
|
|
|
|
7FF564EAA000
|
unkown
|
page readonly
|
|
|
|
7FF516A00000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
487F000
|
unkown
|
page read and write
|
|
|
|
2A00000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
6E200000
|
unkown image
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2C52000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF56C045000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233B9413000
|
unkown
|
page read and write
|
|
|
|
7852AFF000
|
unkown
|
page read and write
|
|
|
|
7FF5471D6000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
1EB93960000
|
unkown
|
page readonly
|
|
|
|
7FF591E5F000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
1EB93A72000
|
unkown
|
page read and write
|
|
|
|
2956000
|
unkown
|
page readonly
|
|
|
|
292F000
|
unkown
|
page readonly
|
|
|
|
7FF5471D2000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
27588842000
|
unkown
|
page read and write
|
|
|
|
610000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF516A3E000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1F135A30000
|
heap private
|
page read and write
|
|
|
|
2A0B000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
785287C000
|
unkown
|
page read and write
|
|
|
|
98017FE000
|
unkown
|
page read and write
|
|
|
|
98019FE000
|
unkown
|
page read and write
|
|
|
|
27588864000
|
unkown
|
page read and write
|
|
|
|
7FF5880D2000
|
unkown
|
page readonly
|
|
|
|
2921000
|
unkown
|
page readonly
|
|
|
|
233BEB00000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233B9D18000
|
unkown
|
page read and write
|
|
|
|
2D90000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2A03123D000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
BB84BFD000
|
unkown
|
page read and write
|
|
|
|
2964000
|
unkown
|
page readonly
|
|
|
|
7FF5A8261000
|
unkown
|
page readonly
|
|
|
|
20B763B0000
|
unkown
|
page readonly
|
|
|
|
7FF5A7FBC000
|
unkown
|
page readonly
|
|
|
|
A1328FC000
|
unkown
|
page read and write
|
|
|
|
2910000
|
unkown
|
page readonly
|
|
|
|
2993000
|
unkown
|
page readonly
|
|
|
|
7FF5471AC000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF516AA0000
|
unkown
|
page readonly
|
|
|
|
6B9000
|
unkown
|
page readonly
|
|
|
|
27588DA0000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF516A2A000
|
unkown
|
page readonly
|
|
|
|
F19A0FE000
|
unkown
|
page read and write
|
|
|
|
BB84EFF000
|
unkown
|
page read and write
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5168D9000
|
unkown
|
page readonly
|
|
|
|
98018FE000
|
unkown
|
page read and write
|
|
|
|
DDB634C000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233B92B0000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2E70000
|
unkown
|
page read and write
|
|
|
|
2ED0000
|
heap default
|
page read and write
|
|
|
|
7FF5881D9000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
DDB667E000
|
unkown
|
page read and write
|
|
|
|
1EB93A59000
|
unkown
|
page read and write
|
|
|
|
27588D90000
|
unkown
|
page readonly
|
|
|
|
233B9429000
|
unkown
|
page read and write
|
|
|
|
2A20000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233BED80000
|
unkown
|
page readonly
|
|
|
|
7FF5167B7000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF56F7C8000
|
unkown
|
page readonly
|
|
|
|
7FF56C02A000
|
unkown
|
page readonly
|
|
|
|
2550000
|
heap private
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
21419B70000
|
unkown
|
page readonly
|
|
|
|
2758885C000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
27588869000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF591915000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
5260000
|
heap private
|
page read and write
|
|
|
|
6E201000
|
unkown image
|
page execute read
|
|
|
|
1EB93A59000
|
unkown
|
page read and write
|
|
|
|
7FF5918EC000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1F135A35000
|
heap private
|
page read and write
|
|
|
|
7FF56BD68000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
1F137410000
|
heap private
|
page read and write
|
|
|
|
6E203000
|
unkown image
|
page readonly
|
|
|
|
7FF546E03000
|
unkown
|
page readonly
|
|
|
|
7FF587D3E000
|
unkown
|
page readonly
|
|
|
|
7FF588057000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
6E281000
|
unkown image
|
page execute and read and write
|
|
|
|
7FF5A7F20000
|
unkown
|
page readonly
|
|
|
|
1EB93B00000
|
unkown
|
page read and write
|
|
|
|
56AF000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF591FD2000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2DB5000
|
unkown
|
page readonly
|
|
|
|
7FF5A82CA000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
20B76330000
|
heap private
|
page read and write
|
|
|
|
4DA0000
|
unkown
|
page readonly
|
|
|
|
7FF587E0A000
|
unkown
|
page readonly
|
|
|
|
233BEBF4000
|
unkown
|
page readonly
|
|
|
|
7FF5A7B16000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233BEC40000
|
unkown
|
page read and write
|
|
|
|
2D60000
|
heap default
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2758884E000
|
unkown
|
page read and write
|
|
|
|
2956000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
290C000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233BE83D000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
7FF56F069000
|
unkown
|
page readonly
|
|
|
|
2E1B000
|
unkown
|
page readonly
|
|
|
|
20B7643F000
|
unkown
|
page read and write
|
|
|
|
7FF5A82EF000
|
unkown
|
page readonly
|
|
|
|
233B94B1000
|
unkown
|
page read and write
|
|
|
|
620000
|
heap default
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2141A260000
|
unkown
|
page write copy
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
610000
|
unkown
|
page read and write
|
|
|
|
233BA200000
|
unkown
|
page read and write
|
|
|
|
6E206000
|
unkown image
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF5A7B20000
|
unkown
|
page readonly
|
|
|
|
7FF588146000
|
unkown
|
page readonly
|
|
|
|
1BEFD200000
|
unkown
|
page read and write
|
|
|
|
233BEB40000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5918E3000
|
unkown
|
page readonly
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
1EB93B13000
|
unkown
|
page read and write
|
|
|
|
7FF5A8057000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF591FE8000
|
unkown
|
page readonly
|
|
|
|
7FF587D42000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
6E200000
|
unkown image
|
page readonly
|
|
|
|
1EB93A49000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF564F20000
|
unkown
|
page readonly
|
|
|
|
233BEC60000
|
unkown
|
page read and write
|
|
|
|
290C000
|
unkown
|
page readonly
|
|
|
|
F19A07B000
|
unkown
|
page read and write
|
|
|
|
7FF547219000
|
unkown
|
page readonly
|
|
|
|
6E259000
|
unkown image
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF564F89000
|
unkown
|
page readonly
|
|
|
|
F199D7A000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
1BEFD263000
|
unkown
|
page read and write
|
|
|
|
4E48000
|
heap private
|
page read and write
|
|
|
|
7FF56F77B000
|
unkown
|
page readonly
|
|
|
|
7FF516A59000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
1BEFD150000
|
unkown
|
page readonly
|
|
|
|
DDB66FE000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF516A6D000
|
unkown
|
page readonly
|
|
|
|
233BEBD4000
|
unkown
|
page readonly
|
|
|
|
2A0311E0000
|
unkown
|
page read and write
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1EB93A00000
|
unkown
|
page read and write
|
|
|
|
1BEFD4D0000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5A8257000
|
unkown
|
page readonly
|
|
|
|
7FF547181000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1EB93A2A000
|
unkown
|
page read and write
|
|
|
|
E7ED47C000
|
unkown
|
page read and write
|
|
|
|
27588858000
|
unkown
|
page read and write
|
|
|
|
7FF58814C000
|
unkown
|
page readonly
|
|
|
|
21419A90000
|
heap default
|
page read and write
|
|
|
|
A13287F000
|
unkown
|
page read and write
|
|
|
|
233B93A0000
|
unkown
|
page read and write
|
|
|
|
C70FDFE000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
29B5000
|
unkown
|
page readonly
|
|
|
|
7FF56F83C000
|
unkown
|
page readonly
|
|
|
|
6E20E000
|
unkown image
|
page execute read
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
233B948E000
|
unkown
|
page read and write
|
|
|
|
34E0000
|
heap private
|
page read and write
|
|
|
|
233BEC50000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
233BEC20000
|
unkown
|
page read and write
|
|
|
|
4D5E000
|
unkown
|
page read and write
|
|
|
|
610000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
297C000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233BA310000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF59203D000
|
unkown
|
page readonly
|
|
|
|
7FF591C7D000
|
unkown
|
page readonly
|
|
|
|
1F135820000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
294A000
|
unkown
|
page readonly
|
|
|
|
2A031020000
|
unkown
|
page readonly
|
|
|
|
DDB677D000
|
unkown
|
page read and write
|
|
|
|
7FF5A832C000
|
unkown
|
page readonly
|
|
|
|
233BEB0E000
|
unkown
|
page read and write
|
|
|
|
1F1374F0000
|
heap private
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
BB8452B000
|
unkown
|
page read and write
|
|
|
|
98016FB000
|
unkown
|
page read and write
|
|
|
|
2C66000
|
unkown
|
page readonly
|
|
|
|
7FF56C0A0000
|
unkown
|
page readonly
|
|
|
|
2977000
|
unkown
|
page readonly
|
|
|
|
7FF5920D9000
|
unkown
|
page readonly
|
|
|
|
7FF56F857000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2A031802000
|
unkown
|
page read and write
|
|
|
|
7852BFE000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2EAE000
|
unkown
|
page read and write
|
|
|
|
2E20000
|
unkown
|
page read and write
|
|
|
|
7FF564F7E000
|
unkown
|
page readonly
|
|
|
|
7FF564F89000
|
unkown
|
page readonly
|
|
|
|
7FF54724C000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56F809000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
A132E7E000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2DC0000
|
heap private
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
6E259000
|
unkown image
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF547205000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56F8B1000
|
unkown
|
page readonly
|
|
|
|
233BE813000
|
unkown
|
page read and write
|
|
|
|
1EB95602000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
C70FEFF000
|
unkown
|
page read and write
|
|
|
|
7FF5A8283000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
1EB93B02000
|
unkown
|
page read and write
|
|
|
|
233B949F000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5881CE000
|
unkown
|
page readonly
|
|
|
|
7FF587FFC000
|
unkown
|
page readonly
|
|
|
|
2F0A000
|
heap default
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2D92000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
66E000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF5167D0000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233B9E81000
|
unkown
|
page read and write
|
|
|
|
7FF5A82F9000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF5880E6000
|
unkown
|
page readonly
|
|
|
|
2A031A00000
|
unkown
|
page read and write
|
|
|
|
BB84DFD000
|
unkown
|
page read and write
|
|
|
|
233BE8B3000
|
unkown
|
page read and write
|
|
|
|
4D50000
|
heap private
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF592072000
|
unkown
|
page readonly
|
|
|
|
1BEFD269000
|
unkown
|
page read and write
|
|
|
|
7FF5880AA000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
DDB687E000
|
unkown
|
page read and write
|
|
|
|
A132C7F000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1BEFDC00000
|
unkown
|
page readonly
|
|
|
|
2A0317A0000
|
unkown
|
page read and write
|
|
|
|
16C000
|
unkown
|
page read and write
|
|
|
|
7FF5A80E8000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
48E0000
|
unkown
|
page readonly
|
|
|
|
1EB939D0000
|
unkown
|
page read and write
|
|
|
|
E7ECF5B000
|
unkown
|
page read and write
|
|
|
|
7FF5A7FDA000
|
unkown
|
page readonly
|
|
|
|
2A031100000
|
unkown
|
page readonly
|
|
|
|
7FF56F7F5000
|
unkown
|
page readonly
|
|
|
|
6E205000
|
unkown image
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2E90000
|
unkown
|
page readonly
|
|
|
|
7FF591D3D000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
6E280000
|
unkown image
|
page read and write
|
|
|
|
7FF58810E000
|
unkown
|
page readonly
|
|
|
|
2A00000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
F19A37F000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
30B0000
|
heap private
|
page read and write
|
|
|
|
1F0000
|
unkown
|
page execute and read and write
|
|
|
|
233BEB44000
|
unkown
|
page read and write
|
|
|
|
20B763E0000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF591E78000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF51688F000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
233BA450000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2A03122A000
|
unkown
|
page read and write
|
|
|
|
233BEA00000
|
unkown
|
page read and write
|
|
|
|
7FF56F8B9000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
233B9D18000
|
unkown
|
page read and write
|
|
|
|
2A28000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
610000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2951000
|
unkown
|
page readonly
|
|
|
|
2DA0000
|
heap private
|
page read and write
|
|
|
|
1F135930000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2360000
|
heap private
|
page read and write
|
|
|
|
7FF59201F000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
1BEFDA02000
|
unkown
|
page read and write
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF547177000
|
unkown
|
page readonly
|
|
|
|
7FF56F008000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF54722D000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
6AD000
|
unkown
|
page read and write
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
233B9D13000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
27588650000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2D50000
|
unkown
|
page execute and read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2A031202000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1F135DD0000
|
unkown
|
page readonly
|
|
|
|
2A14000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
21419C13000
|
unkown
|
page read and write
|
|
|
|
1EB93A49000
|
unkown
|
page read and write
|
|
|
|
7852CFE000
|
unkown
|
page read and write
|
|
|
|
7FF5A802C000
|
unkown
|
page readonly
|
|
|
|
297C000
|
unkown
|
page readonly
|
|
|
|
F19A27E000
|
unkown
|
page read and write
|
|
|
|
2141A513000
|
unkown
|
page read and write
|
|
|
|
27588866000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
BB849FE000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
304D000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56F484000
|
unkown
|
page readonly
|
|
|
|
2DA3000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2928000
|
unkown
|
page readonly
|
|
|
|
7FF591FE6000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5471FE000
|
unkown
|
page readonly
|
|
|
|
233B93B0000
|
unkown
|
page read and write
|
|
|
|
2CCB000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5A814E000
|
unkown
|
page readonly
|
|
|
|
3070000
|
unkown
|
page execute and read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF5A83A0000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
521B000
|
unkown
|
page read and write
|
|
|
|
5D0000
|
unkown
|
page execute and read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2E70000
|
unkown
|
page execute and read and write
|
|
|
|
BE6000
|
unkown
|
page read and write
|
|
|
|
7FF56C0FE000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF591EA9000
|
unkown
|
page readonly
|
|
|
|
233BED60000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF588129000
|
unkown
|
page readonly
|
|
|
|
21419D02000
|
unkown
|
page read and write
|
|
|
|
233B9440000
|
unkown
|
page read and write
|
|
|
|
2758885A000
|
unkown
|
page read and write
|
|
|
|
8BF000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5471C0000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2E16000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
BB851FF000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2141A2B0000
|
unkown
|
page readonly
|
|
|
|
1EB95530000
|
unkown
|
page write copy
|
|
|
|
7FF516A86000
|
unkown
|
page readonly
|
|
|
|
7FF547264000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
233B9C02000
|
unkown
|
page read and write
|
|
|
|
1EB93A67000
|
unkown
|
page read and write
|
|
|
|
233B9380000
|
unkown
|
page readonly
|
|
|
|
6CB000
|
heap default
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1BEFD228000
|
unkown
|
page read and write
|
|
|
|
7FF5A7FAD000
|
unkown
|
page readonly
|
|
|
|
7FF564F0C000
|
unkown
|
page readonly
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5169EC000
|
unkown
|
page readonly
|
|
|
|
C71017D000
|
unkown
|
page read and write
|
|
|
|
7FF5880DD000
|
unkown
|
page readonly
|
|
|
|
2D6B000
|
unkown
|
page readonly
|
|
|
|
2A28000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2960000
|
unkown
|
page readonly
|
|
|
|
7FF564D0F000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF587DAF000
|
unkown
|
page readonly
|
|
|
|
2D20000
|
unkown
|
page read and write
|
|
|
|
7FF56F8B9000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF564E80000
|
unkown
|
page readonly
|
|
|
|
6E281000
|
unkown image
|
page execute and read and write
|
|
|
|
2D74000
|
unkown
|
page readonly
|
|
|
|
7FF516A4F000
|
unkown
|
page readonly
|
|
|
|
525E000
|
unkown
|
page read and write
|
|
|
|
4E9E000
|
unkown
|
page read and write
|
|
|
|
7FF5A82E5000
|
unkown
|
page readonly
|
|
|
|
2A031224000
|
unkown
|
page read and write
|
|
|
|
7FF5A7EE5000
|
unkown
|
page readonly
|
|
|
|
7FF547246000
|
unkown
|
page readonly
|
|
|
|
A13219E000
|
unkown
|
page read and write
|
|
|
|
20B76467000
|
unkown
|
page read and write
|
|
|
|
F32000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233BECB0000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233B9513000
|
unkown
|
page read and write
|
|
|
|
7FF5471D8000
|
unkown
|
page readonly
|
|
|
|
7FF5A8326000
|
unkown
|
page readonly
|
|
|
|
3150000
|
heap private
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF51625D000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
294D000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2D30000
|
unkown
|
page readonly
|
|
|
|
7FF547167000
|
unkown
|
page readonly
|
|
|
|
7FF591835000
|
unkown
|
page readonly
|
|
|
|
7FF5A8311000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
6E206000
|
unkown image
|
page readonly
|
|
|
|
233B9D00000
|
unkown
|
page read and write
|
|
|
|
2A031213000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF592015000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
C70FD7F000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56473A000
|
unkown
|
page readonly
|
|
|
|
20B76429000
|
unkown
|
page read and write
|
|
|
|
A132A7B000
|
unkown
|
page read and write
|
|
|
|
6E200000
|
unkown image
|
page readonly
|
|
|
|
2EA0000
|
unkown
|
page readonly
|
|
|
|
2EB0000
|
heap default
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
20B766D0000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56F787000
|
unkown
|
page readonly
|
|
|
|
7FF5169DA000
|
unkown
|
page readonly
|
|
|
|
7FF516B01000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
27588840000
|
unkown
|
page read and write
|
|
|
|
3450000
|
unkown
|
page readonly
|
|
|
|
7FF588165000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2A28000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF54720F000
|
unkown
|
page readonly
|
|
|
|
27588800000
|
unkown
|
page read and write
|
|
|
|
233BEC07000
|
unkown
|
page write copy
|
|
|
|
233BEC90000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF587F5F000
|
unkown
|
page readonly
|
|
|
|
233B9472000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1BEFD258000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
F19A47D000
|
unkown
|
page read and write
|
|
|
|
7FF5168C8000
|
unkown
|
page readonly
|
|
|
|
27588640000
|
heap default
|
page read and write
|
|
|
|
233B94FE000
|
unkown
|
page read and write
|
|
|
|
1F1375EF000
|
heap private
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1F1357F0000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
F199E7F000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233BEBD0000
|
unkown
|
page read and write
|
|
|
|
7FF587DC1000
|
unkown
|
page readonly
|
|
|
|
233B9C15000
|
unkown
|
page read and write
|
|
|
|
7FF516AFE000
|
unkown
|
page readonly
|
|
|
|
6E28D000
|
unkown image
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233B9240000
|
heap private
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF58804C000
|
unkown
|
page readonly
|
|
|
|
4A50000
|
heap private
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF516995000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2928000
|
unkown
|
page readonly
|
|
|
|
2EDA000
|
heap default
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF591FD0000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
4BFF000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
27BA000
|
unkown
|
page readonly
|
|
|
|
233BA430000
|
unkown
|
page readonly
|
|
|
|
34F0000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2758883D000
|
unkown
|
page read and write
|
|
|
|
1EB93A13000
|
unkown
|
page read and write
|
|
|
|
7FF587E26000
|
unkown
|
page readonly
|
|
|
|
7FF564EBE000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
20B76C02000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1EB938F0000
|
heap private
|
page read and write
|
|
|
|
7FF56F63F000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF59204C000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF56C109000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
4EDF000
|
unkown
|
page read and write
|
|
|
|
7FF5A8316000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233BE8A5000
|
unkown
|
page read and write
|
|
|
|
2982000
|
unkown
|
page readonly
|
|
|
|
48DF000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
27588845000
|
unkown
|
page read and write
|
|
|
|
2758887A000
|
unkown
|
page read and write
|
|
|
|
2DD0000
|
unkown
|
page readonly
|
|
|
|
7FF5A7F3E000
|
unkown
|
page readonly
|
|
|
|
233BEC90000
|
unkown
|
page read and write
|
|
|
|
233B9990000
|
unkown
|
page readonly
|
|
|
|
2966000
|
unkown
|
page readonly
|
|
|
|
6E20E000
|
unkown image
|
page execute read
|
|
|
|
6E205000
|
unkown image
|
page read and write
|
|
|
|
7FF5A82B6000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56F836000
|
unkown
|
page readonly
|
|
|
|
1EB95470000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF588177000
|
unkown
|
page readonly
|
|
|
|
1F1371F0000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF54717A000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF516A16000
|
unkown
|
page readonly
|
|
|
|
4DC9000
|
heap private
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5A82DE000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2EC0000
|
unkown
|
page readonly
|
|
|
|
7FF5A82B8000
|
unkown
|
page readonly
|
|
|
|
7FF564ECF000
|
unkown
|
page readonly
|
|
|
|
1F13586B000
|
heap default
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
233BE8B9000
|
unkown
|
page read and write
|
|
|
|
7FF592077000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF56C095000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
233BE862000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
6E20E000
|
unkown image
|
page execute read
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
27588813000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1EB954B0000
|
unkown
|
page read and write
|
|
|
|
233BA420000
|
unkown
|
page readonly
|
|
|
|
2960000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233BA790000
|
unkown
|
page read and write
|
|
|
|
BB8487E000
|
unkown
|
page read and write
|
|
|
|
233B9D02000
|
unkown
|
page read and write
|
|
|
|
233BE855000
|
unkown
|
page read and write
|
|
|
|
7FF5471C2000
|
unkown
|
page readonly
|
|
|
|
F19A67E000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5169F8000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
610000
|
unkown
|
page read and write
|
|
|
|
7FF546ADD000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
6E28C000
|
unkown image
|
page read and write
|
|
|
|
20B763A0000
|
unkown
|
page readonly
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2942000
|
unkown
|
page readonly
|
|
|
|
7FF547231000
|
unkown
|
page readonly
|
|
|
|
20B76400000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
21419CBC000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
21419B80000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56F845000
|
unkown
|
page readonly
|
|
|
|
3050000
|
unkown
|
page readonly
|
|
|
|
2DB0000
|
unkown
|
page readonly
|
|
|
|
27588857000
|
unkown
|
page read and write
|
|
|
|
36F0000
|
unkown
|
page readonly
|
|
|
|
1BEFD213000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
1EB93980000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5166D8000
|
unkown
|
page readonly
|
|
|
|
7FF5472C0000
|
unkown
|
page readonly
|
|
|
|
2D60000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5A8227000
|
unkown
|
page readonly
|
|
|
|
56EE000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
6E203000
|
unkown image
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2DCA000
|
unkown
|
page readonly
|
|
|
|
233BA230000
|
unkown
|
page read and write
|
|
|
|
1F1372F0000
|
heap private
|
page read and write
|
|
|
|
6E200000
|
unkown image
|
page readonly
|
|
|
|
E7ED77F000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
9BB000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56F821000
|
unkown
|
page readonly
|
|
|
|
6E201000
|
unkown image
|
page execute read
|
|
|
|
7FF56C06D000
|
unkown
|
page readonly
|
|
|
|
2D66000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233BEB20000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
A13277E000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
27588829000
|
unkown
|
page read and write
|
|
|
|
7FF5A7EE3000
|
unkown
|
page readonly
|
|
|
|
7FF56BFA2000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
6E201000
|
unkown image
|
page execute read
|
|
|
|
8C0000
|
unkown
|
page readonly
|
|
|
|
6E20E000
|
unkown image
|
page execute read
|
|
|
|
7FF56C0B2000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56C07C000
|
unkown
|
page readonly
|
|
|
|
29BA000
|
unkown
|
page readonly
|
|
|
|
610000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3080000
|
unkown
|
page readonly
|
|
|
|
A13247D000
|
unkown
|
page read and write
|
|
|
|
6E203000
|
unkown image
|
page readonly
|
|
|
|
233BEB21000
|
unkown
|
page read and write
|
|
|
|
7FF5A8335000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
6E259000
|
unkown image
|
page readonly
|
|
|
|
29A0000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
21419B90000
|
unkown
|
page read and write
|
|
|
|
7FF5A831C000
|
unkown
|
page readonly
|
|
|
|
21419CCD000
|
unkown
|
page read and write
|
|
|
|
1BEFD400000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1BEFD300000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF592074000
|
unkown
|
page readonly
|
|
|
|
3170000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF5A7BC1000
|
unkown
|
page readonly
|
|
|
|
1BEFD860000
|
unkown
|
page readonly
|
|
|
|
29A5000
|
unkown
|
page readonly
|
|
|
|
1F135856000
|
heap default
|
page read and write
|
|
|
|
3130000
|
heap private
|
page read and write
|
|
|
|
7FF5A8340000
|
unkown
|
page readonly
|
|
|
|
7FF5A8277000
|
unkown
|
page readonly
|
|
|
|
3270000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
21419C3E000
|
unkown
|
page read and write
|
|
|
|
7FF588174000
|
unkown
|
page readonly
|
|
|
|
7FF56F4D5000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF591E00000
|
unkown
|
page readonly
|
|
|
|
7FF56C018000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
E7ED87F000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
21419AA0000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233BA440000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2A030FB0000
|
heap private
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
785297E000
|
unkown
|
page read and write
|
|
|
|
2E24000
|
unkown
|
page readonly
|
|
|
|
F19A2FE000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5646DA000
|
unkown
|
page readonly
|
|
|
|
2D50000
|
unkown
|
page readonly
|
|
|
|
7FF592056000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF546E98000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
294A000
|
unkown
|
page readonly
|
|
|
|
233BEB08000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
F19A17F000
|
unkown
|
page read and write
|
|
|
|
7FF591C11000
|
unkown
|
page readonly
|
|
|
|
2DB9000
|
unkown
|
page readonly
|
|
|
|
295B000
|
unkown
|
page readonly
|
|
|
|
1F135810000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56C000000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF516A95000
|
unkown
|
page readonly
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
2758883A000
|
unkown
|
page read and write
|
|
|
|
317A000
|
heap default
|
page read and write
|
|
|
|
233BED40000
|
unkown
|
page readonly
|
|
|
|
2DB0000
|
unkown
|
page read and write
|
|
|
|
7FF516B09000
|
unkown
|
page readonly
|
|
|
|
233BE7B0000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF5A8070000
|
unkown
|
page readonly
|
|
|
|
21419C29000
|
unkown
|
page read and write
|
|
|
|
7FF56F470000
|
unkown
|
page readonly
|
|
|
|
7FF56C071000
|
unkown
|
page readonly
|
|
|
|
BB845AD000
|
unkown
|
page read and write
|
|
|
|
2838000
|
unkown
|
page readonly
|
|
|
|
7FF516A12000
|
unkown
|
page readonly
|
|
|
|
7FF5A8347000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF59200E000
|
unkown
|
page readonly
|
|
|
|
7FF56F477000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
C00000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2A20000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
1EB939F0000
|
unkown
|
page readonly
|
|
|
|
7FF516A18000
|
unkown
|
page readonly
|
|
|
|
7FF588141000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
21419CCB000
|
unkown
|
page read and write
|
|
|
|
2A28000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5920D9000
|
unkown
|
page readonly
|
|
|
|
233B9390000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
1EB939D0000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2964000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF564F27000
|
unkown
|
page readonly
|
|
|
|
233B9C00000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
C70F9CE000
|
unkown
|
page read and write
|
|
|
|
2856000
|
unkown
|
page readonly
|
|
|
|
233BE84A000
|
unkown
|
page read and write
|
|
|
|
1020000
|
unkown
|
page read and write
|
|
|
|
27588883000
|
unkown
|
page read and write
|
|
|
|
7FF546E05000
|
unkown
|
page readonly
|
|
|
|
980147F000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF5A82B2000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF564EFC000
|
unkown
|
page readonly
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
7FF5A8170000
|
unkown
|
page readonly
|
|
|
|
6E28D000
|
unkown image
|
page readonly
|
|
|
|
233BE800000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
51DC000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56C0A4000
|
unkown
|
page readonly
|
|
|
|
7FF516A7C000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
4A0E000
|
unkown
|
page read and write
|
|
|
|
2DC5000
|
unkown
|
page readonly
|
|
|
|
20B7645B000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2948000
|
heap private
|
page read and write
|
|
|
|
233BE886000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
20B76502000
|
unkown
|
page read and write
|
|
|
|
1EB939A0000
|
unkown
|
page read and write
|
|
|
|
2A031010000
|
heap default
|
page read and write
|
|
|
|
291000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
78528FE000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
1D0000
|
unkown
|
page read and write
|
|
|
|
22BE000
|
unkown
|
page read and write
|
|
|
|
2A0B000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
6E28C000
|
unkown image
|
page read and write
|
|
|
|
233BA210000
|
unkown
|
page read and write
|
|
|
|
6E200000
|
unkown image
|
page readonly
|
|
|
|
2977000
|
unkown
|
page readonly
|
|
|
|
1EB939D0000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1EB939D0000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7852DFE000
|
unkown
|
page read and write
|
|
|
|
20B76E00000
|
unkown
|
page readonly
|
|
|
|
7FF56BD83000
|
unkown
|
page readonly
|
|
|
|
2141A53A000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
20B76390000
|
heap default
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3170000
|
heap default
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
BB84AFE000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF591FE2000
|
unkown
|
page readonly
|
|
|
|
7FF5A83A9000
|
unkown
|
page readonly
|
|
|
|
60D000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
21419C7B000
|
unkown
|
page read and write
|
|
|
|
7FF5A8287000
|
unkown
|
page readonly
|
|
|
|
2D87000
|
unkown
|
page readonly
|
|
|
|
7FF516AA4000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
1EB95800000
|
unkown
|
page readonly
|
|
|
|
2A031400000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
F19975B000
|
unkown
|
page read and write
|
|
|
|
7FF516262000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
E7ED57C000
|
unkown
|
page read and write
|
|
|
|
7FF516A8C000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
48BD000
|
unkown
|
page read and write
|
|
|
|
2761000
|
unkown
|
page readonly
|
|
|
|
233B9BD1000
|
unkown
|
page read and write
|
|
|
|
27588802000
|
unkown
|
page read and write
|
|
|
|
7FF56F8AE000
|
unkown
|
page readonly
|
|
|
|
2972000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF587F78000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF546E01000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF587FF0000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
BB852FE000
|
unkown
|
page read and write
|
|
|
|
1BEFD279000
|
unkown
|
page read and write
|
|
|
|
1BEFD23C000
|
unkown
|
page read and write
|
|
|
|
7FF56F473000
|
unkown
|
page readonly
|
|
|
|
2972000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233B9D58000
|
unkown
|
page read and write
|
|
|
|
2320000
|
heap private
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
4D9F000
|
unkown
|
page read and write
|
|
|
|
2E40000
|
unkown
|
page read and write
|
|
|
|
7FF56BD3B000
|
unkown
|
page readonly
|
|
|
|
2A031302000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56F826000
|
unkown
|
page readonly
|
|
|
|
A1325FE000
|
unkown
|
page read and write
|
|
|
|
7FF516AA7000
|
unkown
|
page readonly
|
|
|
|
7FF591F65000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2D8C000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF58813D000
|
unkown
|
page readonly
|
|
|
|
233BEC04000
|
unkown
|
page write copy
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
6E200000
|
unkown image
|
page readonly
|
|
|
|
1BEFD27B000
|
unkown
|
page read and write
|
|
|
|
7FF58815C000
|
unkown
|
page readonly
|
|
|
|
6E201000
|
unkown image
|
page execute read
|
|
|
|
7FF591D95000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2D31000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
6BA000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56F7FF000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5A830D000
|
unkown
|
page readonly
|
|
|
|
2D80000
|
unkown
|
page readonly
|
|
|
|
6B1000
|
unkown
|
page execute read
|
|
|
|
1BEFD313000
|
unkown
|
page read and write
|
|
|
|
7FF564CAA000
|
unkown
|
page readonly
|
|
|
|
7FF564E96000
|
unkown
|
page readonly
|
|
|
|
233B9BF3000
|
unkown
|
page read and write
|
|
|
|
233BECC0000
|
unkown
|
page readonly
|
|
|
|
7FF5880FA000
|
unkown
|
page readonly
|
|
|
|
6E28C000
|
unkown image
|
page read and write
|
|
|
|
2E10000
|
unkown
|
page readonly
|
|
|
|
2141A402000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2A06000
|
unkown
|
page readonly
|
|
|
|
2D82000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF588115000
|
unkown
|
page readonly
|
|
|
|
233BA400000
|
unkown
|
page readonly
|
|
|
|
49C0000
|
heap private
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
A13211C000
|
unkown
|
page read and write
|
|
|
|
7FF5A826B000
|
unkown
|
page readonly
|
|
|
|
7FF56BFB4000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
6E206000
|
unkown image
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
233BEB00000
|
unkown
|
page read and write
|
|
|
|
2942000
|
unkown
|
page readonly
|
|
|
|
1BEFD302000
|
unkown
|
page read and write
|
|
|
|
7FF547030000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2980000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
6E28C000
|
unkown image
|
page read and write
|
|
|
|
2D40000
|
unkown
|
page readonly
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
27588862000
|
unkown
|
page read and write
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
233B9BF0000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF5A80CB000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5472C9000
|
unkown
|
page readonly
|
|
|
|
1EB93A02000
|
unkown
|
page read and write
|
|
|
|
3160000
|
heap private
|
page read and write
|
|
|
|
7FF5A7FBF000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
20B76A60000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2951000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233B9502000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
A1329FD000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
30C0000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF5A8065000
|
unkown
|
page readonly
|
|
|
|
2A14000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF547255000
|
unkown
|
page readonly
|
|
|
|
29B5000
|
unkown
|
page readonly
|
|
|
|
4A4F000
|
unkown
|
page read and write
|
|
|
|
2758886A000
|
unkown
|
page read and write
|
|
|
|
7FF5168A8000
|
unkown
|
page readonly
|
|
|
|
7FF564ED9000
|
unkown
|
page readonly
|
|
|
|
1F1356A0000
|
unkown
|
page readonly
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF58811F000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
6C0000
|
heap default
|
page read and write
|
|
|
|
233B9600000
|
unkown
|
page readonly
|
|
|
|
6B0000
|
unkown
|
page read and write
|
|
|
|
1EB93950000
|
heap default
|
page read and write
|
|
|
|
2993000
|
unkown
|
page readonly
|
|
|
|
BBE000
|
unkown
|
page read and write
|
|
|
|
2A0311D0000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2141A500000
|
unkown
|
page read and write
|
|
|
|
2DE5000
|
heap default
|
page read and write
|
|
|
|
7FF5880D0000
|
unkown
|
page readonly
|
|
|
|
2758886C000
|
unkown
|
page read and write
|
|
|
|
300F000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
20B76413000
|
unkown
|
page read and write
|
|
|
|
294D000
|
unkown
|
page readonly
|
|
|
|
DB0000
|
unkown
|
page readonly
|
|
|
|
27588861000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF5A812F000
|
unkown
|
page readonly
|
|
|
|
233B9400000
|
unkown
|
page read and write
|
|
|
|
20B76475000
|
unkown
|
page read and write
|
|
|
|
7FF5A82A2000
|
unkown
|
page readonly
|
|
|
|
F36000
|
unkown
|
page read and write
|
|
|
|
308E000
|
unkown
|
page read and write
|
|
|
|
7FF587F3E000
|
unkown
|
page readonly
|
|
|
|
F199F7B000
|
unkown
|
page read and write
|
|
|
|
21419D13000
|
unkown
|
page read and write
|
|
|
|
1EB94060000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
27C4000
|
unkown
|
page readonly
|
|
|
|
7FF564F24000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
98011EB000
|
unkown
|
page read and write
|
|
|
|
4FC000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
483E000
|
unkown
|
page read and write
|
|
|
|
233BEBD0000
|
unkown
|
page write copy
|
|
|
|
2D38000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF592029000
|
unkown
|
page readonly
|
|
|
|
233BEB30000
|
unkown
|
page read and write
|
|
|
|
3060000
|
unkown
|
page readonly
|
|
|
|
1EB93970000
|
unkown
|
page readonly
|
|
|
|
6E281000
|
unkown image
|
page execute and read and write
|
|
|
|
7FF56C109000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2921000
|
unkown
|
page readonly
|
|
|
|
29BA000
|
unkown
|
page readonly
|
|
|
|
A13257C000
|
unkown
|
page read and write
|
|
|
|
7FF56F7C2000
|
unkown
|
page readonly
|
|
|
|
7FF56C002000
|
unkown
|
page readonly
|
|
|
|
7FF5918E9000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF51686E000
|
unkown
|
page readonly
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
233BA410000
|
unkown
|
page readonly
|
|
|
|
6E205000
|
unkown image
|
page read and write
|
|
|
|
2D70000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
292F000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3198000
|
heap private
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
27588849000
|
unkown
|
page read and write
|
|
|
|
2141A190000
|
unkown
|
page readonly
|
|
|
|
7FF5881D0000
|
unkown
|
page readonly
|
|
|
|
7FF547267000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56C01A000
|
unkown
|
page readonly
|
|
|
|
7FF56C076000
|
unkown
|
page readonly
|
|
|
|
7FF56C086000
|
unkown
|
page readonly
|
|
|
|
BB850FE000
|
unkown
|
page read and write
|
|
|
|
1EB939E0000
|
unkown
|
page readonly
|
|
|
|
7FF591DA0000
|
unkown
|
page readonly
|
|
|
|
7FF547236000
|
unkown
|
page readonly
|
|
|
|
6E259000
|
unkown image
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2D5A000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF56F7B0000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
4D1F000
|
unkown
|
page read and write
|
|
|
|
BB84FFF000
|
unkown
|
page read and write
|
|
|
|
20B76513000
|
unkown
|
page read and write
|
|
|
|
7FF5920D1000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2A06000
|
unkown
|
page readonly
|
|
|
|
A85000
|
unkown
|
page read and write
|
|
|
|
7FF5167C5000
|
unkown
|
page readonly
|
|
|
|
233BE8B8000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
A81000
|
unkown
|
page read and write
|
|
|
|
2D5D000
|
unkown
|
page readonly
|
|
|
|
2A0317A0000
|
unkown
|
page read and write
|
|
|
|
7FF5167BE000
|
unkown
|
page readonly
|
|
|
|
7FF5880E2000
|
unkown
|
page readonly
|
|
|
|
7FF5A7F37000
|
unkown
|
page readonly
|
|
|
|
7FF564793000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
E7ED97F000
|
unkown
|
page read and write
|
|
|
|
610000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF564F15000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
233BE82E000
|
unkown
|
page read and write
|
|
|
|
E7ECFDF000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5A8161000
|
unkown
|
page readonly
|
|
|
|
6E281000
|
unkown image
|
page execute and read and write
|
|
|
|
7FF516A45000
|
unkown
|
page readonly
|
|
|
|
F199B77000
|
unkown
|
page read and write
|
|
|
|
48D0000
|
heap private
|
page read and write
|
|
|
|
27588879000
|
unkown
|
page read and write
|
|
|
|
2DB1000
|
unkown
|
page execute read
|
|
|
|
7FF5A8168000
|
unkown
|
page readonly
|
|
|
|
2BD4000
|
unkown
|
page readonly
|
|
|
|
C70F94E000
|
unkown
|
page read and write
|
|
|
|
20B76402000
|
unkown
|
page read and write
|
|
|
|
4E60000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF546EFE000
|
unkown
|
page readonly
|
|
|
|
233BEBF7000
|
unkown
|
page readonly
|
|
|
|
233BA3F0000
|
unkown
|
page readonly
|
|
|
|
7FF564F06000
|
unkown
|
page readonly
|
|
|
|
28C9000
|
heap private
|
page read and write
|
|
|
|
7FF56BFAE000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
97C000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
233B947C000
|
unkown
|
page read and write
|
|
|
|
7FF564EED000
|
unkown
|
page readonly
|
|
|
|
233B94A1000
|
unkown
|
page read and write
|
|
|
|
7FF59188D000
|
unkown
|
page readonly
|
|
|
|
2758885E000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF56C059000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF588156000
|
unkown
|
page readonly
|
|
|
|
7FF5A805E000
|
unkown
|
page readonly
|
|
|
|
21419C00000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF516A76000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
233BEC90000
|
unkown
|
page read and write
|
|
|
|
6E280000
|
unkown image
|
page read and write
|
|
|
|
233B9494000
|
unkown
|
page read and write
|
|
|
|
233BEC30000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
21419E00000
|
unkown
|
page readonly
|
|
|
|
7FF5A810E000
|
unkown
|
page readonly
|
|
|
|
233BEB30000
|
unkown
|
page read and write
|
|
|
|
7FF591E40000
|
unkown
|
page readonly
|
|
|
|
7FF587FE7000
|
unkown
|
page readonly
|
|
|
|
7FF5A8179000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
2E60000
|
unkown
|
page execute and read and write
|
|
|
|
233BEC90000
|
unkown
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
2966000
|
unkown
|
page readonly
|
|
|
|
7FF5A8344000
|
unkown
|
page readonly
|
|
|
|
7FF588170000
|
unkown
|
page readonly
|
|
|
|
1EB93A59000
|
unkown
|
page read and write
|
|
|
|
233B9477000
|
unkown
|
page read and write
|
|
|
|
4C3D000
|
unkown
|
page read and write
|
|
|
|
7FF591FC8000
|
unkown
|
page readonly
|
|
|
|
1EB93A61000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
7FF56C0AD000
|
unkown
|
page readonly
|
|
|
|
2910000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
C71027F000
|
unkown
|
page read and write
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
7FF5920CE000
|
unkown
|
page readonly
|
|
|
|
7FF5A8298000
|
unkown
|
page readonly
|
|
|
|
7FF516643000
|
unkown
|
page readonly
|
|
|
|
2D90000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
6BC000
|
unkown
|
page readonly
|
|
|
|
1BEFD140000
|
unkown
|
page readonly
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
|
|
3090000
|
unkown
|
page read and write
|
|
There are 1581 hidden memdumps, click here to show them.