Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
Permission-1984690372-06252021.xlsm
|
Microsoft Excel 2007+
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Roaming\Microsoft\Office\Recent\Permission-1984690372-06252021.xlsm.LNK
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Archive, ctime=Wed Sep 30 14:03:43
2020, mtime=Sat Jun 26 00:35:31 2021, atime=Sat Jun 26 00:35:31 2021, length=153172, window=hide
|
dropped
|
|
|
|
C:\Users\user\Desktop\~$Permission-1984690372-06252021.xlsm
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\Content.MSO\61EBA0A8.jpg
|
[TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe
Photoshop CS6 (Windows), datetime=2021:02:11 21:11:18], baseline, precision 8, 1860x1000, frames 3
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Temp\BC810000
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Microsoft\Office\Recent\Desktop.LNK
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Read-Only, Directory, ctime=Thu
Jun 27 16:19:49 2019, mtime=Sat Jun 26 00:35:31 2021, atime=Sat Jun 26 00:35:31 2021, length=8192, window=hide
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Microsoft\Office\Recent\index.dat
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\Desktop\4D810000
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\94954BDE.jpg
|
[TIFF image data, big-endian, direntries=7, orientation=upper-left, xresolution=98, yresolution=106, resolutionunit=2, software=Adobe
Photoshop CS6 (Windows), datetime=2021:02:11 21:11:18], baseline, precision 8, 1860x1000, frames 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\EBCE0000
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Roaming\Microsoft\Office\Recent\Permission-1984690372-06252021.LNK
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Archive, ctime=Wed Aug 26 14:08:13
2020, mtime=Sat Jun 26 00:28:37 2021, atime=Sat Jun 26 00:28:37 2021, length=153117, window=hide
|
dropped
|
|
|
|
C:\Users\user\Desktop\7CCE0000
|
data
|
dropped
|
|
There are 2 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
'C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE' /automation -Embedding
|
|
|
|
C:\Windows\SysWOW64\regsvr32.exe
|
regsvr32 ..\Kro.fis
|
|
|
|
C:\Windows\SysWOW64\regsvr32.exe
|
regsvr32 ..\Kro.fis1
|
|
|
|
C:\Windows\SysWOW64\regsvr32.exe
|
regsvr32 ..\Kro.fis2
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
'C:\Program Files\Microsoft Office\Office14\EXCEL.EXE' /automation -Embedding
|
|
|
|
C:\Windows\System32\regsvr32.exe
|
regsvr32 ..\Kro.fis
|
|
|
|
C:\Windows\System32\regsvr32.exe
|
regsvr32 ..\Kro.fis1
|
|
|
|
C:\Windows\System32\regsvr32.exe
|
regsvr32 ..\Kro.fis2
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://190.14.37.3/44372.7746763889.dat
|
190.14.37.3
|
|
|
|
http://185.183.99.120/44372.7746763889.dat
|
185.183.99.120
|
|
|
|
http://services.msn.com/svcs/oe/certpage.asp?name=%s&email=%s&&Check
|
unknown
|
|
|
|
http://www.windows.com/pctv.
|
unknown
|
|
|
|
http://investor.msn.com
|
unknown
|
|
|
|
http://www.msnbc.com/news/ticker.txt
|
unknown
|
|
|
|
http://www.icra.org/vocabulary/.
|
unknown
|
|
|
|
http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous.
|
unknown
|
|
|
|
http://investor.msn.com/
|
unknown
|
|
|
|
http://190.14.37.3/44372.7698814815.dat
|
190.14.37.3
|
|
|
|
http://www.%s.comPA
|
unknown
|
|
|
|
http://windowsmedia.com/redir/services.asp?WMPFriendly=true
|
unknown
|
|
|
|
http://www.hotmail.com/oe
|
unknown
|
|
|
|
http://servername/isapibackend.dll
|
unknown
|
|
|
|
http://185.183.99.120/44372.7698814815.dat
|
185.183.99.120
|
|
There are 5 hidden URLs, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
190.14.37.3
|
unknown
|
Panama
|
|
|
|
185.183.99.120
|
unknown
|
Netherlands
|
|
|
|
185.240.103.219
|
unknown
|
Russian Federation
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
c21
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
d21
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
LastBootTime
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
ReviewToken
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
18549
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
VBAFiles
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
MSForms
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
MSComctlLib
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
18A98
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
18C1F
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
18D19
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
18DB5
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
ca1
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
271CC
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
273FE
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
ProductFiles
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
en-US
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
en-US
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
EXCELFiles
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
RoamingConfigurableSettings
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
RoamingLastSyncTime
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
RoamingLastWriteTime
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
CacheReady
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
LastRequest
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
CacheReady
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
LastUpdate
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
NextUpdate
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
SpellingAndGrammarFiles_1036
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
SpellingAndGrammarFiles_1033
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
SpellingAndGrammarFiles_3082
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
SpellingAndGrammarFiles_1036
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
SpellingAndGrammarFiles_1036
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
SpellingAndGrammarFiles_1033
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
SpellingAndGrammarFiles_1033
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
SpellingAndGrammarFiles_3082
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
SpellingAndGrammarFiles_3082
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
ProductFiles
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
ProductFiles
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
ProductFiles
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
ProductFiles
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
LastBootTime
|
|
|
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
LastPurgeTime
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
,/9
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
MTTT
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
ReviewToken
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
EC69A
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
VBAFiles
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
DefaultSheetR2L
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
UseSystemSeparators
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
ThousandsSeparator
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
DecimalSeparator
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Max Display
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Max Display
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 1
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 2
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 3
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 4
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 5
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 6
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 7
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 8
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 9
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 10
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 11
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 12
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 13
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 14
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 15
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 16
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 17
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 18
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 19
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 20
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
ECA80
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
ECB7A
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Max Display
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Max Display
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 1
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 2
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 3
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 4
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 5
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 6
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 7
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 8
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 9
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 10
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 11
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 12
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 13
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 14
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 15
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 16
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 17
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 18
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 19
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 20
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
ECC44
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
ECCA2
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
{E7E4BC40-E76A-11CE-A9BB-00AA004AE837} {000214E6-0000-0000-C000-000000000046} 0xFFFF
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
.99
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
LastPurgeTime
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
F9222
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Max Display
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Max Display
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 1
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 2
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 3
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 4
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 5
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 6
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 7
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 8
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 9
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 10
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 11
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 12
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 13
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 14
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 15
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 16
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 17
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 18
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 19
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
Item 20
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
F9482
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
1033
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
1033
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
EXCELFiles
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
ProductFiles
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
SpellingAndGrammarFiles_3082
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
SpellingAndGrammarFiles_3082
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
SpellingAndGrammarFiles_1036
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
SpellingAndGrammarFiles_1036
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
SpellingAndGrammarFiles_1033
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
SpellingAndGrammarFiles_1033
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
SpellingAndGrammarFiles_3082
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
SpellingAndGrammarFiles_3082
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
SpellingAndGrammarFiles_1036
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
SpellingAndGrammarFiles_1036
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
SpellingAndGrammarFiles_1033
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
SpellingAndGrammarFiles_1033
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
ProductFiles
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
ProductFiles
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
ProductFiles
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
ProductFiles
|
|
|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
SavedLegacySettings
|
|
There are 137 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
28651D2A000
|
heap private
|
page read and write
|
|
|
|
787000
|
heap private
|
page read and write
|
|
|
|
133FB7C000
|
unkown
|
page read and write
|
|
|
|
28651AC4000
|
unkown
|
page read and write
|
|
|
|
7FF58BE61000
|
unkown
|
page readonly
|
|
|
|
28651A50000
|
unkown
|
page read and write
|
|
|
|
7FF52B5D1000
|
unkown
|
page readonly
|
|
|
|
17428B50000
|
unkown
|
page read and write
|
|
|
|
7FF52B577000
|
unkown
|
page readonly
|
|
|
|
7FF55D91F000
|
unkown
|
page readonly
|
|
|
|
7FF5C7951000
|
unkown
|
page readonly
|
|
|
|
13B32B60000
|
unkown
|
page readonly
|
|
|
|
353A000
|
heap default
|
page read and write
|
|
|
|
7FF5E09B2000
|
unkown
|
page readonly
|
|
|
|
17428B40000
|
unkown
|
page read and write
|
|
|
|
7FF4F4D92000
|
unkown
|
page readonly
|
|
|
|
7FF58BE5C000
|
unkown
|
page readonly
|
|
|
|
28651AC0000
|
heap default
|
page read and write
|
|
|
|
7FF52B4EA000
|
unkown
|
page readonly
|
|
|
|
28651AB9000
|
unkown
|
page read and write
|
|
|
|
17423610000
|
unkown
|
page readonly
|
|
|
|
13B32B70000
|
unkown
|
page read and write
|
|
|
|
2F50000
|
unkown
|
page read and write
|
|
|
|
2AB8000
|
unkown
|
page readonly
|
|
|
|
7FF58BF83000
|
unkown
|
page readonly
|
|
|
|
265C85C0000
|
unkown
|
page readonly
|
|
|
|
1DF8664F000
|
unkown
|
page read and write
|
|
|
|
174237D0000
|
unkown
|
page read and write
|
|
|
|
28651ACC000
|
unkown
|
page read and write
|
|
|
|
7B4000
|
heap private
|
page read and write
|
|
|
|
7FF52B57D000
|
unkown
|
page readonly
|
|
|
|
17428E4A000
|
unkown
|
page read and write
|
|
|
|
2891000
|
unkown
|
page readonly
|
|
|
|
2FDC000
|
unkown
|
page read and write
|
|
|
|
22B25A13000
|
unkown
|
page read and write
|
|
|
|
7FF520B3F000
|
unkown
|
page readonly
|
|
|
|
DB99FFA000
|
unkown
|
page read and write
|
|
|
|
17423F18000
|
unkown
|
page read and write
|
|
|
|
1742383D000
|
unkown
|
page read and write
|
|
|
|
7FF58BCF8000
|
unkown
|
page readonly
|
|
|
|
1DF8667A000
|
unkown
|
page read and write
|
|
|
|
7FF52B50E000
|
unkown
|
page readonly
|
|
|
|
7FF55E286000
|
unkown
|
page readonly
|
|
|
|
7FF55DAFD000
|
unkown
|
page readonly
|
|
|
|
2F80000
|
unkown
|
page readonly
|
|
|
|
13B32D13000
|
unkown
|
page read and write
|
|
|
|
7FF5E06C8000
|
unkown
|
page readonly
|
|
|
|
7FF58BDC7000
|
unkown
|
page readonly
|
|
|
|
17423600000
|
heap default
|
page read and write
|
|
|
|
1DF86640000
|
unkown
|
page read and write
|
|
|
|
279000
|
unkown
|
page read and write
|
|
|
|
2B2F6858000
|
unkown
|
page read and write
|
|
|
|
2EEB000
|
unkown
|
page read and write
|
|
|
|
7FF52B556000
|
unkown
|
page readonly
|
|
|
|
17423F18000
|
unkown
|
page read and write
|
|
|
|
2BA4000
|
unkown
|
page readonly
|
|
|
|
5E10000
|
unkown
|
page readonly
|
|
|
|
7FF5E0A47000
|
unkown
|
page readonly
|
|
|
|
1DF86646000
|
unkown
|
page read and write
|
|
|
|
28651A32000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E06000
|
unkown
|
page readonly
|
|
|
|
133FD7F000
|
unkown
|
page read and write
|
|
|
|
2AD2000
|
unkown
|
page readonly
|
|
|
|
7FF52B4E6000
|
unkown
|
page readonly
|
|
|
|
28651D10000
|
unkown
|
page read and write
|
|
|
|
7FF520D09000
|
unkown
|
page readonly
|
|
|
|
7FF55E1FC000
|
unkown
|
page readonly
|
|
|
|
1948F370000
|
unkown
|
page readonly
|
|
|
|
2FD8000
|
unkown
|
page read and write
|
|
|
|
1DF8667E000
|
unkown
|
page read and write
|
|
|
|
28652820000
|
unkown
|
page readonly
|
|
|
|
194AF7F000
|
unkown
|
page read and write
|
|
|
|
37E0000
|
unkown
|
page readonly
|
|
|
|
EBD58F9000
|
unkown
|
page read and write
|
|
|
|
2AAE000
|
unkown
|
page readonly
|
|
|
|
1DF865D0000
|
unkown
|
page read and write
|
|
|
|
7FF4F4CBC000
|
unkown
|
page readonly
|
|
|
|
800000
|
heap default
|
page read and write
|
|
|
|
7FF520CFF000
|
unkown
|
page readonly
|
|
|
|
2BA4000
|
unkown
|
page readonly
|
|
|
|
7FF520CC2000
|
unkown
|
page readonly
|
|
|
|
7FF4F4E30000
|
unkown
|
page readonly
|
|
|
|
7FF4F4DCE000
|
unkown
|
page readonly
|
|
|
|
22B25A4C000
|
unkown
|
page read and write
|
|
|
|
29DC000
|
unkown
|
page readonly
|
|
|
|
2B02000
|
unkown
|
page readonly
|
|
|
|
21351F40000
|
heap default
|
page read and write
|
|
|
|
20D5A200000
|
unkown
|
page readonly
|
|
|
|
22B25A00000
|
unkown
|
page read and write
|
|
|
|
DEAD4E000
|
unkown
|
page read and write
|
|
|
|
1DF86644000
|
unkown
|
page read and write
|
|
|
|
2FBA000
|
heap default
|
page read and write
|
|
|
|
7FF5CFC79000
|
unkown
|
page readonly
|
|
|
|
2FD8000
|
unkown
|
page read and write
|
|
|
|
17428D70000
|
unkown
|
page read and write
|
|
|
|
194A31C000
|
unkown
|
page read and write
|
|
|
|
7FF4F6D33000
|
unkown
|
page readonly
|
|
|
|
7FF55E311000
|
unkown
|
page readonly
|
|
|
|
17423913000
|
unkown
|
page read and write
|
|
|
|
17423877000
|
unkown
|
page read and write
|
|
|
|
7FF52B5D9000
|
unkown
|
page readonly
|
|
|
|
2FEE000
|
unkown
|
page read and write
|
|
|
|
28651C99000
|
unkown
|
page read and write
|
|
|
|
22B25A63000
|
unkown
|
page read and write
|
|
|
|
7FF5CFC36000
|
unkown
|
page readonly
|
|
|
|
133FFFD000
|
unkown
|
page read and write
|
|
|
|
2FF0000
|
unkown
|
page readonly
|
|
|
|
2B96000
|
unkown
|
page readonly
|
|
|
|
7FF55E0E9000
|
unkown
|
page readonly
|
|
|
|
28651C80000
|
unkown
|
page read and write
|
|
|
|
2AF6000
|
unkown
|
page readonly
|
|
|
|
20D59879000
|
unkown
|
page read and write
|
|
|
|
20D59730000
|
unkown
|
page readonly
|
|
|
|
7FF52B472000
|
unkown
|
page readonly
|
|
|
|
7FF5E087A000
|
unkown
|
page readonly
|
|
|
|
28651A4D000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E34000
|
unkown
|
page readonly
|
|
|
|
2B18000
|
unkown
|
page readonly
|
|
|
|
2B67000
|
unkown
|
page readonly
|
|
|
|
2B2F66F0000
|
heap default
|
page read and write
|
|
|
|
174236F0000
|
unkown
|
page readonly
|
|
|
|
7FF58BF98000
|
unkown
|
page readonly
|
|
|
|
7FF4F4D88000
|
unkown
|
page readonly
|
|
|
|
730000
|
unkown
|
page read and write
|
|
|
|
7FF4F4DFD000
|
unkown
|
page readonly
|
|
|
|
2B41000
|
unkown
|
page readonly
|
|
|
|
7FF4F4D90000
|
unkown
|
page readonly
|
|
|
|
80A000
|
heap default
|
page read and write
|
|
|
|
2B72000
|
unkown
|
page readonly
|
|
|
|
7FF58BCC8000
|
unkown
|
page readonly
|
|
|
|
20D59829000
|
unkown
|
page read and write
|
|
|
|
17424670000
|
unkown
|
page read and write
|
|
|
|
2ADA000
|
unkown
|
page readonly
|
|
|
|
4E70000
|
unkown
|
page read and write
|
|
|
|
842000
|
unkown
|
page read and write
|
|
|
|
30B0000
|
unkown
|
page readonly
|
|
|
|
7FF4F4DA8000
|
unkown
|
page readonly
|
|
|
|
EBD56FD000
|
unkown
|
page read and write
|
|
|
|
7FF58BDDC000
|
unkown
|
page readonly
|
|
|
|
2B90000
|
unkown
|
page readonly
|
|
|
|
7FF520D45000
|
unkown
|
page readonly
|
|
|
|
2B02000
|
unkown
|
page readonly
|
|
|
|
7FF55DB25000
|
unkown
|
page readonly
|
|
|
|
1948F590000
|
unkown
|
page readonly
|
|
|
|
DB9A27E000
|
unkown
|
page read and write
|
|
|
|
28651AB9000
|
unkown
|
page read and write
|
|
|
|
EBD57FE000
|
unkown
|
page read and write
|
|
|
|
2BF0000
|
unkown
|
page readonly
|
|
|
|
7FF55DB91000
|
unkown
|
page readonly
|
|
|
|
7FF52B37A000
|
unkown
|
page readonly
|
|
|
|
22B25920000
|
unkown
|
page read and write
|
|
|
|
22B25830000
|
unkown
|
page readonly
|
|
|
|
17428C6E000
|
unkown
|
page read and write
|
|
|
|
2E00000
|
unkown
|
page readonly
|
|
|
|
7FF58BC78000
|
unkown
|
page readonly
|
|
|
|
7FF5C7868000
|
unkown
|
page readonly
|
|
|
|
17424750000
|
unkown
|
page readonly
|
|
|
|
2B21000
|
unkown
|
page readonly
|
|
|
|
7FF5E0A1C000
|
unkown
|
page readonly
|
|
|
|
7FF5208F1000
|
unkown
|
page readonly
|
|
|
|
610000
|
unkown
|
page readonly
|
|
|
|
7FF58BD70000
|
unkown
|
page readonly
|
|
|
|
831000
|
unkown
|
page read and write
|
|
|
|
7FF4F7117000
|
unkown
|
page readonly
|
|
|
|
7FF5CFCAC000
|
unkown
|
page readonly
|
|
|
|
7FF5CFC5E000
|
unkown
|
page readonly
|
|
|
|
17424590000
|
unkown
|
page read and write
|
|
|
|
37D7000
|
heap private
|
page read and write
|
|
|
|
1948F380000
|
heap private
|
page read and write
|
|
|
|
7FF55DB06000
|
unkown
|
page readonly
|
|
|
|
7FF520B89000
|
unkown
|
page readonly
|
|
|
|
2B3A000
|
unkown
|
page readonly
|
|
|
|
7FF58BF8C000
|
unkown
|
page readonly
|
|
|
|
28651AC7000
|
unkown
|
page read and write
|
|
|
|
7FF4F4A02000
|
unkown
|
page readonly
|
|
|
|
13B32BA0000
|
unkown
|
page readonly
|
|
|
|
2B23000
|
unkown
|
page readonly
|
|
|
|
17429020000
|
unkown
|
page readonly
|
|
|
|
28651A2A000
|
unkown
|
page read and write
|
|
|
|
7FF4F70AE000
|
unkown
|
page readonly
|
|
|
|
7FF4F4D25000
|
unkown
|
page readonly
|
|
|
|
7FF520CC8000
|
unkown
|
page readonly
|
|
|
|
7FF55E2B7000
|
unkown
|
page readonly
|
|
|
|
2A45000
|
unkown
|
page readonly
|
|
|
|
7FF55E319000
|
unkown
|
page readonly
|
|
|
|
265C8665000
|
unkown
|
page read and write
|
|
|
|
7FF5CFD29000
|
unkown
|
page readonly
|
|
|
|
32D0000
|
unkown
|
page readonly
|
|
|
|
17428EA8000
|
unkown
|
page read and write
|
|
|
|
17423829000
|
unkown
|
page read and write
|
|
|
|
2B45000
|
unkown
|
page readonly
|
|
|
|
7FF5C7959000
|
unkown
|
page readonly
|
|
|
|
2B35000
|
unkown
|
page readonly
|
|
|
|
28651C92000
|
unkown
|
page read and write
|
|
|
|
265C8800000
|
unkown
|
page readonly
|
|
|
|
20D59813000
|
unkown
|
page read and write
|
|
|
|
21352040000
|
unkown
|
page readonly
|
|
|
|
2B2F6800000
|
unkown
|
page read and write
|
|
|
|
22B25A4C000
|
unkown
|
page read and write
|
|
|
|
7FF55DB8E000
|
unkown
|
page readonly
|
|
|
|
28652830000
|
unkown
|
page read and write
|
|
|
|
17423F02000
|
unkown
|
page read and write
|
|
|
|
28651AB9000
|
unkown
|
page read and write
|
|
|
|
28651D25000
|
heap private
|
page read and write
|
|
|
|
17428D54000
|
unkown
|
page readonly
|
|
|
|
2AC1000
|
unkown
|
page readonly
|
|
|
|
7FF58C040000
|
unkown
|
page readonly
|
|
|
|
7FF520D52000
|
unkown
|
page readonly
|
|
|
|
28651A78000
|
unkown
|
page read and write
|
|
|
|
7FF55DAA8000
|
unkown
|
page readonly
|
|
|
|
1DF86653000
|
unkown
|
page read and write
|
|
|
|
72F0000
|
unkown
|
page read and write
|
|
|
|
2B83000
|
unkown
|
page readonly
|
|
|
|
2B07000
|
unkown
|
page readonly
|
|
|
|
17428D64000
|
unkown
|
page write copy
|
|
|
|
265C8613000
|
unkown
|
page read and write
|
|
|
|
7FF4F4A72000
|
unkown
|
page readonly
|
|
|
|
7DFF07871000
|
unkown
|
page readonly
|
|
|
|
5EC9BAB000
|
unkown
|
page read and write
|
|
|
|
265C8E02000
|
unkown
|
page read and write
|
|
|
|
DB9A97F000
|
unkown
|
page read and write
|
|
|
|
3572000
|
unkown
|
page read and write
|
|
|
|
7FF5E0A26000
|
unkown
|
page readonly
|
|
|
|
1DF86800000
|
unkown
|
page readonly
|
|
|
|
DEB27E000
|
unkown
|
page read and write
|
|
|
|
820000
|
unkown
|
page read and write
|
|
|
|
7FF52B582000
|
unkown
|
page readonly
|
|
|
|
265C85E0000
|
unkown
|
page read and write
|
|
|
|
28651ACC000
|
unkown
|
page read and write
|
|
|
|
7FF52B570000
|
unkown
|
page readonly
|
|
|
|
286518E0000
|
unkown
|
page read and write
|
|
|
|
7FF5E0A0D000
|
unkown
|
page readonly
|
|
|
|
2B32000
|
unkown
|
page readonly
|
|
|
|
17424770000
|
unkown
|
page readonly
|
|
|
|
2B95000
|
unkown
|
page readonly
|
|
|
|
7FF520CB0000
|
unkown
|
page readonly
|
|
|
|
7FF58C02C000
|
unkown
|
page readonly
|
|
|
|
D1114FB000
|
unkown
|
page read and write
|
|
|
|
7FF520DB9000
|
unkown
|
page readonly
|
|
|
|
20D59740000
|
unkown
|
page readonly
|
|
|
|
7FF55E226000
|
unkown
|
page readonly
|
|
|
|
7FF4F6D44000
|
unkown
|
page readonly
|
|
|
|
1DF86667000
|
unkown
|
page read and write
|
|
|
|
28651AAF000
|
unkown
|
page read and write
|
|
|
|
1DF86684000
|
unkown
|
page read and write
|
|
|
|
7FF58BCAD000
|
unkown
|
page readonly
|
|
|
|
2B9B000
|
unkown
|
page readonly
|
|
|
|
845000
|
unkown
|
page read and write
|
|
|
|
7FF58C01C000
|
unkown
|
page readonly
|
|
|
|
7FF5E09A0000
|
unkown
|
page readonly
|
|
|
|
1DF8664E000
|
unkown
|
page read and write
|
|
|
|
13B32B50000
|
unkown
|
page readonly
|
|
|
|
7FF5209F3000
|
unkown
|
page readonly
|
|
|
|
28651A4D000
|
unkown
|
page read and write
|
|
|
|
7FF58BE70000
|
unkown
|
page readonly
|
|
|
|
2B90000
|
unkown
|
page readonly
|
|
|
|
1DF8665B000
|
unkown
|
page read and write
|
|
|
|
550000
|
unkown
|
page readonly
|
|
|
|
17423825000
|
unkown
|
page read and write
|
|
|
|
3550000
|
unkown
|
page read and write
|
|
|
|
7FF4F4A6F000
|
unkown
|
page readonly
|
|
|
|
17428C81000
|
unkown
|
page read and write
|
|
|
|
7FF52B574000
|
unkown
|
page readonly
|
|
|
|
FE5507E000
|
unkown
|
page read and write
|
|
|
|
D11197E000
|
unkown
|
page read and write
|
|
|
|
7FF55DFC7000
|
unkown
|
page readonly
|
|
|
|
3553000
|
heap default
|
page read and write
|
|
|
|
7FF55E228000
|
unkown
|
page readonly
|
|
|
|
1DF8663D000
|
unkown
|
page read and write
|
|
|
|
2AF6000
|
unkown
|
page readonly
|
|
|
|
2B45000
|
unkown
|
page readonly
|
|
|
|
7FF4F4A81000
|
unkown
|
page readonly
|
|
|
|
7FF5E06DE000
|
unkown
|
page readonly
|
|
|
|
D111EFE000
|
unkown
|
page read and write
|
|
|
|
28651C96000
|
unkown
|
page read and write
|
|
|
|
2BB8000
|
unkown
|
page readonly
|
|
|
|
7FF5E0678000
|
unkown
|
page readonly
|
|
|
|
20D59660000
|
unkown
|
page readonly
|
|
|
|
7FF58C035000
|
unkown
|
page readonly
|
|
|
|
2EFE000
|
unkown
|
page read and write
|
|
|
|
133FE7E000
|
unkown
|
page read and write
|
|
|
|
2B2F6802000
|
unkown
|
page read and write
|
|
|
|
28651AC5000
|
heap default
|
page read and write
|
|
|
|
28651F40000
|
unkown
|
page readonly
|
|
|
|
20D59902000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E99000
|
unkown
|
page readonly
|
|
|
|
7FF5E0810000
|
unkown
|
page readonly
|
|
|
|
265C8C60000
|
unkown
|
page readonly
|
|
|
|
7FF520A14000
|
unkown
|
page readonly
|
|
|
|
7FF520CF5000
|
unkown
|
page readonly
|
|
|
|
2B2F6E80000
|
unkown
|
page read and write
|
|
|
|
DEACCC000
|
unkown
|
page read and write
|
|
|
|
7FF52B546000
|
unkown
|
page readonly
|
|
|
|
17428C60000
|
unkown
|
page read and write
|
|
|
|
1DF86674000
|
unkown
|
page read and write
|
|
|
|
22B25A2A000
|
unkown
|
page read and write
|
|
|
|
22B25A49000
|
unkown
|
page read and write
|
|
|
|
7FF4F6EFF000
|
unkown
|
page readonly
|
|
|
|
1DF86654000
|
unkown
|
page read and write
|
|
|
|
7FF4F70E6000
|
unkown
|
page readonly
|
|
|
|
2B2F6A00000
|
unkown
|
page readonly
|
|
|
|
7FF4F4E37000
|
unkown
|
page readonly
|
|
|
|
28651D20000
|
heap private
|
page read and write
|
|
|
|
7FF5CFC8D000
|
unkown
|
page readonly
|
|
|
|
2A3C000
|
unkown
|
page readonly
|
|
|
|
17428B60000
|
unkown
|
page read and write
|
|
|
|
28652890000
|
unkown
|
page read and write
|
|
|
|
AD0000
|
unkown
|
page readonly
|
|
|
|
312F000
|
unkown
|
page read and write
|
|
|
|
1DF86679000
|
unkown
|
page read and write
|
|
|
|
FE5537D000
|
unkown
|
page read and write
|
|
|
|
7FF5E0A44000
|
unkown
|
page readonly
|
|
|
|
7FF58BA3A000
|
unkown
|
page readonly
|
|
|
|
7FF55DABA000
|
unkown
|
page readonly
|
|
|
|
7FF58BE79000
|
unkown
|
page readonly
|
|
|
|
7FF58BDCB000
|
unkown
|
page readonly
|
|
|
|
2AF4000
|
unkown
|
page readonly
|
|
|
|
22B27402000
|
unkown
|
page read and write
|
|
|
|
17428CA4000
|
unkown
|
page read and write
|
|
|
|
DB99B8B000
|
unkown
|
page read and write
|
|
|
|
7FF52B4D0000
|
unkown
|
page readonly
|
|
|
|
68605FF000
|
unkown
|
page read and write
|
|
|
|
7FF58BD02000
|
unkown
|
page readonly
|
|
|
|
EBD5879000
|
unkown
|
page read and write
|
|
|
|
1948F385000
|
heap private
|
page read and write
|
|
|
|
28651C99000
|
unkown
|
page read and write
|
|
|
|
7FF58BDE8000
|
unkown
|
page readonly
|
|
|
|
265C8629000
|
unkown
|
page read and write
|
|
|
|
7FF520AE0000
|
unkown
|
page readonly
|
|
|
|
2B12000
|
unkown
|
page readonly
|
|
|
|
7FF55E0B8000
|
unkown
|
page readonly
|
|
|
|
28651AAD000
|
unkown
|
page read and write
|
|
|
|
7FF5CFB95000
|
unkown
|
page readonly
|
|
|
|
2A03000
|
unkown
|
page readonly
|
|
|
|
7FF55E319000
|
unkown
|
page readonly
|
|
|
|
7FF4F4C1F000
|
unkown
|
page readonly
|
|
|
|
2997000
|
unkown
|
page readonly
|
|
|
|
28652890000
|
unkown
|
page read and write
|
|
|
|
7FF52095D000
|
unkown
|
page readonly
|
|
|
|
13B33402000
|
unkown
|
page read and write
|
|
|
|
22B27600000
|
unkown
|
page readonly
|
|
|
|
265C8675000
|
unkown
|
page read and write
|
|
|
|
22B257C0000
|
heap private
|
page read and write
|
|
|
|
28651AAD000
|
unkown
|
page read and write
|
|
|
|
20D59868000
|
unkown
|
page read and write
|
|
|
|
829000
|
unkown
|
page read and write
|
|
|
|
7FF55DFCE000
|
unkown
|
page readonly
|
|
|
|
17424760000
|
unkown
|
page readonly
|
|
|
|
7FF4F7179000
|
unkown
|
page readonly
|
|
|
|
7FF4F7082000
|
unkown
|
page readonly
|
|
|
|
1948F0C0000
|
unkown
|
page readonly
|
|
|
|
20D5A002000
|
unkown
|
page read and write
|
|
|
|
DB9A37F000
|
unkown
|
page read and write
|
|
|
|
7DFDDFAB8000
|
unkown
|
page readonly
|
|
|
|
174247A0000
|
unkown
|
page readonly
|
|
|
|
17423F00000
|
unkown
|
page read and write
|
|
|
|
7FF52B515000
|
unkown
|
page readonly
|
|
|
|
7FF4F6D95000
|
unkown
|
page readonly
|
|
|
|
7FF55DB16000
|
unkown
|
page readonly
|
|
|
|
7FF55E208000
|
unkown
|
page readonly
|
|
|
|
17429010000
|
unkown
|
page readonly
|
|
|
|
1948EFB0000
|
unkown
|
page readonly
|
|
|
|
17428EAD000
|
unkown
|
page read and write
|
|
|
|
7FF55DB99000
|
unkown
|
page readonly
|
|
|
|
7FF55E09F000
|
unkown
|
page readonly
|
|
|
|
7FF520D3C000
|
unkown
|
page readonly
|
|
|
|
17428C90000
|
unkown
|
page read and write
|
|
|
|
13B33532000
|
unkown
|
page read and write
|
|
|
|
2DFF000
|
unkown
|
page read and write
|
|
|
|
540000
|
unkown
|
page readonly
|
|
|
|
787000
|
heap private
|
page read and write
|
|
|
|
265C8602000
|
unkown
|
page read and write
|
|
|
|
17428DC0000
|
unkown
|
page read and write
|
|
|
|
13B32C24000
|
unkown
|
page read and write
|
|
|
|
7FF52B47A000
|
unkown
|
page readonly
|
|
|
|
17428C60000
|
unkown
|
page read and write
|
|
|
|
2C18000
|
unkown
|
page readonly
|
|
|
|
2ADA000
|
unkown
|
page readonly
|
|
|
|
828000
|
unkown
|
page read and write
|
|
|
|
22B25A02000
|
unkown
|
page read and write
|
|
|
|
7FF58BCBC000
|
unkown
|
page readonly
|
|
|
|
13B32C3E000
|
unkown
|
page read and write
|
|
|
|
17428E9A000
|
unkown
|
page read and write
|
|
|
|
7FF58C0A9000
|
unkown
|
page readonly
|
|
|
|
1742388B000
|
unkown
|
page read and write
|
|
|
|
5920000
|
unkown
|
page readonly
|
|
|
|
2AD2000
|
unkown
|
page readonly
|
|
|
|
7FF52B4E8000
|
unkown
|
page readonly
|
|
|
|
2FD3000
|
unkown
|
page read and write
|
|
|
|
760000
|
unkown
|
page readonly
|
|
|
|
1DF86600000
|
unkown
|
page read and write
|
|
|
|
194A9FA000
|
unkown
|
page read and write
|
|
|
|
22B25820000
|
heap default
|
page read and write
|
|
|
|
29DC000
|
unkown
|
page readonly
|
|
|
|
DB9A47D000
|
unkown
|
page read and write
|
|
|
|
7FF4F4D9D000
|
unkown
|
page readonly
|
|
|
|
7FF5E0961000
|
unkown
|
page readonly
|
|
|
|
28651AB7000
|
unkown
|
page read and write
|
|
|
|
7FF55E0D8000
|
unkown
|
page readonly
|
|
|
|
22B25B02000
|
unkown
|
page read and write
|
|
|
|
28651ACC000
|
unkown
|
page read and write
|
|
|
|
7FF58BFF9000
|
unkown
|
page readonly
|
|
|
|
7FF55E25F000
|
unkown
|
page readonly
|
|
|
|
17423E15000
|
unkown
|
page read and write
|
|
|
|
20D59913000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E0C000
|
unkown
|
page readonly
|
|
|
|
2B56000
|
unkown
|
page readonly
|
|
|
|
22B259F0000
|
unkown
|
page read and write
|
|
|
|
286519E8000
|
heap default
|
page read and write
|
|
|
|
7FF58C0A9000
|
unkown
|
page readonly
|
|
|
|
17423DF3000
|
unkown
|
page read and write
|
|
|
|
1948EF70000
|
unkown
|
page read and write
|
|
|
|
28651A9F000
|
unkown
|
page read and write
|
|
|
|
22B25B00000
|
unkown
|
page read and write
|
|
|
|
7FF5CFB53000
|
unkown
|
page readonly
|
|
|
|
20D5985E000
|
unkown
|
page read and write
|
|
|
|
2BB8000
|
unkown
|
page readonly
|
|
|
|
1DF8664A000
|
unkown
|
page read and write
|
|
|
|
194909A0000
|
unkown
|
page readonly
|
|
|
|
7FF4F7088000
|
unkown
|
page readonly
|
|
|
|
7FF58BE0E000
|
unkown
|
page readonly
|
|
|
|
7FF55DB1C000
|
unkown
|
page readonly
|
|
|
|
17424780000
|
unkown
|
page readonly
|
|
|
|
7FF520D26000
|
unkown
|
page readonly
|
|
|
|
17428D34000
|
unkown
|
page readonly
|
|
|
|
7FF5C77E5000
|
unkown
|
page readonly
|
|
|
|
265C865B000
|
unkown
|
page read and write
|
|
|
|
7FF5C786A000
|
unkown
|
page readonly
|
|
|
|
4F94000
|
heap private
|
page read and write
|
|
|
|
2AE1000
|
unkown
|
page readonly
|
|
|
|
17428EAD000
|
unkown
|
page read and write
|
|
|
|
28651A9D000
|
unkown
|
page read and write
|
|
|
|
7FF58BD57000
|
unkown
|
page readonly
|
|
|
|
2C18000
|
unkown
|
page readonly
|
|
|
|
7FF4F70EC000
|
unkown
|
page readonly
|
|
|
|
7FF55DAE9000
|
unkown
|
page readonly
|
|
|
|
286519E0000
|
heap default
|
page read and write
|
|
|
|
5BD000
|
unkown
|
page read and write
|
|
|
|
1948F390000
|
unkown
|
page readonly
|
|
|
|
7FF58BD5E000
|
unkown
|
page readonly
|
|
|
|
7FF4F70E1000
|
unkown
|
page readonly
|
|
|
|
FE5557E000
|
unkown
|
page read and write
|
|
|
|
7FF520D2C000
|
unkown
|
page readonly
|
|
|
|
2B4A000
|
unkown
|
page readonly
|
|
|
|
17424560000
|
unkown
|
page read and write
|
|
|
|
7FF58BE4E000
|
unkown
|
page readonly
|
|
|
|
2B9B000
|
unkown
|
page readonly
|
|
|
|
823000
|
heap default
|
page read and write
|
|
|
|
7FF58BF27000
|
unkown
|
page readonly
|
|
|
|
17423874000
|
unkown
|
page read and write
|
|
|
|
7FF4F703B000
|
unkown
|
page readonly
|
|
|
|
7FF58BC20000
|
unkown
|
page readonly
|
|
|
|
2B2F6D90000
|
unkown
|
page readonly
|
|
|
|
A52414C000
|
unkown
|
page read and write
|
|
|
|
2AF0000
|
unkown
|
page readonly
|
|
|
|
2AF4000
|
unkown
|
page readonly
|
|
|
|
2AEB000
|
unkown
|
page readonly
|
|
|
|
7FF4F4ACE000
|
unkown
|
page readonly
|
|
|
|
17428DC0000
|
unkown
|
page read and write
|
|
|
|
7FF58BFDE000
|
unkown
|
page readonly
|
|
|
|
28651ACC000
|
unkown
|
page read and write
|
|
|
|
1DF8666B000
|
unkown
|
page read and write
|
|
|
|
2B35000
|
unkown
|
page readonly
|
|
|
|
22B25A5C000
|
unkown
|
page read and write
|
|
|
|
7FF5CFD21000
|
unkown
|
page readonly
|
|
|
|
7FF52073B000
|
unkown
|
page readonly
|
|
|
|
2AE6000
|
unkown
|
page readonly
|
|
|
|
7FF4F7114000
|
unkown
|
page readonly
|
|
|
|
3558000
|
unkown
|
page read and write
|
|
|
|
17424790000
|
unkown
|
page readonly
|
|
|
|
1DF865A0000
|
heap default
|
page read and write
|
|
|
|
780000
|
heap private
|
page read and write
|
|
|
|
194ABFC000
|
unkown
|
page read and write
|
|
|
|
7FF4F70FC000
|
unkown
|
page readonly
|
|
|
|
7FF55DC96000
|
unkown
|
page readonly
|
|
|
|
900000
|
unkown
|
page readonly
|
|
|
|
3410000
|
unkown
|
page readonly
|
|
|
|
7FF4F6D30000
|
unkown
|
page readonly
|
|
|
|
17423887000
|
unkown
|
page read and write
|
|
|
|
DB9A57E000
|
unkown
|
page read and write
|
|
|
|
29E5000
|
unkown
|
page readonly
|
|
|
|
22B25A65000
|
unkown
|
page read and write
|
|
|
|
194A777000
|
unkown
|
page read and write
|
|
|
|
7FF55DA90000
|
unkown
|
page readonly
|
|
|
|
DB9A77E000
|
unkown
|
page read and write
|
|
|
|
80C0000
|
unkown
|
page read and write
|
|
|
|
13B32C6D000
|
unkown
|
page read and write
|
|
|
|
760000
|
unkown
|
page read and write
|
|
|
|
7FF55D575000
|
unkown
|
page readonly
|
|
|
|
640000
|
unkown
|
page readonly
|
|
|
|
7FF4F70B5000
|
unkown
|
page readonly
|
|
|
|
1DF86540000
|
heap private
|
page read and write
|
|
|
|
7FF5C043C000
|
unkown
|
page readonly
|
|
|
|
13B32A70000
|
heap default
|
page read and write
|
|
|
|
194ACFB000
|
unkown
|
page read and write
|
|
|
|
2F90000
|
unkown
|
page read and write
|
|
|
|
28651AAF000
|
unkown
|
page read and write
|
|
|
|
7FF58BF6B000
|
unkown
|
page readonly
|
|
|
|
92E000
|
unkown
|
page read and write
|
|
|
|
7FF520DAE000
|
unkown
|
page readonly
|
|
|
|
194AD7F000
|
unkown
|
page read and write
|
|
|
|
7FF52B53D000
|
unkown
|
page readonly
|
|
|
|
842000
|
unkown
|
page read and write
|
|
|
|
7FF4F6ADF000
|
unkown
|
page readonly
|
|
|
|
BC0000
|
unkown
|
page readonly
|
|
|
|
28651AC7000
|
unkown
|
page read and write
|
|
|
|
2B54000
|
unkown
|
page readonly
|
|
|
|
D111D7D000
|
unkown
|
page read and write
|
|
|
|
2B50000
|
unkown
|
page readonly
|
|
|
|
1742389B000
|
unkown
|
page read and write
|
|
|
|
2BF6000
|
unkown
|
page readonly
|
|
|
|
7FF5CFC65000
|
unkown
|
page readonly
|
|
|
|
265C8480000
|
heap private
|
page read and write
|
|
|
|
7FF58BCB6000
|
unkown
|
page readonly
|
|
|
|
781F000
|
unkown
|
page read and write
|
|
|
|
174235A0000
|
heap private
|
page read and write
|
|
|
|
17428E15000
|
unkown
|
page read and write
|
|
|
|
17428E3D000
|
unkown
|
page read and write
|
|
|
|
20D59864000
|
unkown
|
page read and write
|
|
|
|
194A8F9000
|
unkown
|
page read and write
|
|
|
|
A52487E000
|
unkown
|
page read and write
|
|
|
|
7FF4F4CA7000
|
unkown
|
page readonly
|
|
|
|
17424AF0000
|
unkown
|
page read and write
|
|
|
|
29A3000
|
unkown
|
page readonly
|
|
|
|
7FF58BBE5000
|
unkown
|
page readonly
|
|
|
|
134007B000
|
unkown
|
page read and write
|
|
|
|
DEADCE000
|
unkown
|
page read and write
|
|
|
|
4F90000
|
heap private
|
page read and write
|
|
|
|
28651A63000
|
unkown
|
page read and write
|
|
|
|
134017D000
|
unkown
|
page read and write
|
|
|
|
7FF5E09A2000
|
unkown
|
page readonly
|
|
|
|
7FF55E210000
|
unkown
|
page readonly
|
|
|
|
7FF5CF49F000
|
unkown
|
page readonly
|
|
|
|
28651C80000
|
unkown
|
page read and write
|
|
|
|
20D59650000
|
heap default
|
page read and write
|
|
|
|
28651A8E000
|
unkown
|
page read and write
|
|
|
|
22B25B13000
|
unkown
|
page read and write
|
|
|
|
7FF58BA30000
|
unkown
|
page readonly
|
|
|
|
5FE000
|
unkown
|
page read and write
|
|
|
|
1948EFC0000
|
heap default
|
page read and write
|
|
|
|
7FF55E212000
|
unkown
|
page readonly
|
|
|
|
7FF58BFB6000
|
unkown
|
page readonly
|
|
|
|
7FF58BF15000
|
unkown
|
page readonly
|
|
|
|
265C8600000
|
unkown
|
page read and write
|
|
|
|
2B3D000
|
unkown
|
page readonly
|
|
|
|
13B33190000
|
unkown
|
page readonly
|
|
|
|
275000
|
unkown
|
page read and write
|
|
|
|
7FF5E0957000
|
unkown
|
page readonly
|
|
|
|
7FF4F4D0C000
|
unkown
|
page readonly
|
|
|
|
2B10000
|
unkown
|
page readonly
|
|
|
|
7FF4F7171000
|
unkown
|
page readonly
|
|
|
|
740000
|
unkown
|
page read and write
|
|
|
|
7FF5E09EF000
|
unkown
|
page readonly
|
|
|
|
17424570000
|
unkown
|
page read and write
|
|
|
|
194AFFE000
|
unkown
|
page read and write
|
|
|
|
7FF58BCDA000
|
unkown
|
page readonly
|
|
|
|
5EC9EFF000
|
unkown
|
page read and write
|
|
|
|
2831000
|
unkown
|
page readonly
|
|
|
|
28651ACC000
|
unkown
|
page read and write
|
|
|
|
2BB0000
|
unkown
|
page readonly
|
|
|
|
3572000
|
unkown
|
page read and write
|
|
|
|
7FF58C047000
|
unkown
|
page readonly
|
|
|
|
7FF4F4CB0000
|
unkown
|
page readonly
|
|
|
|
7FF55E296000
|
unkown
|
page readonly
|
|
|
|
1948EF90000
|
unkown
|
page read and write
|
|
|
|
17428D30000
|
unkown
|
page read and write
|
|
|
|
2B2F6E90000
|
unkown
|
page read and write
|
|
|
|
20D59900000
|
unkown
|
page read and write
|
|
|
|
174290C0000
|
unkown
|
page readonly
|
|
|
|
17428D90000
|
unkown
|
page read and write
|
|
|
|
7FF58BFA0000
|
unkown
|
page readonly
|
|
|
|
265C866B000
|
unkown
|
page read and write
|
|
|
|
FE54ACC000
|
unkown
|
page read and write
|
|
|
|
7FF5CF5B6000
|
unkown
|
page readonly
|
|
|
|
7FF5E09E5000
|
unkown
|
page readonly
|
|
|
|
7FF520DB1000
|
unkown
|
page readonly
|
|
|
|
22B25940000
|
unkown
|
page read and write
|
|
|
|
7FF520A07000
|
unkown
|
page readonly
|
|
|
|
1DF865C0000
|
unkown
|
page readonly
|
|
|
|
560000
|
unkown
|
page read and write
|
|
|
|
17428E1F000
|
unkown
|
page read and write
|
|
|
|
7FF5E0998000
|
unkown
|
page readonly
|
|
|
|
686067E000
|
unkown
|
page read and write
|
|
|
|
22B25B18000
|
unkown
|
page read and write
|
|
|
|
7FF5C78E5000
|
unkown
|
page readonly
|
|
|
|
7FF5209EA000
|
unkown
|
page readonly
|
|
|
|
22B25A74000
|
unkown
|
page read and write
|
|
|
|
7FF55D716000
|
unkown
|
page readonly
|
|
|
|
265C84E0000
|
heap default
|
page read and write
|
|
|
|
28651A78000
|
unkown
|
page read and write
|
|
|
|
7FF55DADF000
|
unkown
|
page readonly
|
|
|
|
7FF58C044000
|
unkown
|
page readonly
|
|
|
|
450000
|
unkown
|
page readonly
|
|
|
|
17428C80000
|
unkown
|
page read and write
|
|
|
|
604000
|
heap private
|
page read and write
|
|
|
|
5EC9E7E000
|
unkown
|
page read and write
|
|
|
|
1DF8664D000
|
unkown
|
page read and write
|
|
|
|
28651A4D000
|
unkown
|
page read and write
|
|
|
|
1DF86642000
|
unkown
|
page read and write
|
|
|
|
7FF58BCFD000
|
unkown
|
page readonly
|
|
|
|
28651A39000
|
unkown
|
page read and write
|
|
|
|
2831000
|
unkown
|
page readonly
|
|
|
|
D1119FE000
|
unkown
|
page read and write
|
|
|
|
20D595F0000
|
heap private
|
page read and write
|
|
|
|
29E5000
|
unkown
|
page readonly
|
|
|
|
2BB8000
|
unkown
|
page readonly
|
|
|
|
17428D67000
|
unkown
|
page write copy
|
|
|
|
28651A9D000
|
unkown
|
page read and write
|
|
|
|
22B25970000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E16000
|
unkown
|
page readonly
|
|
|
|
21351F00000
|
unkown
|
page read and write
|
|
|
|
7FF5E0AA0000
|
unkown
|
page readonly
|
|
|
|
2B4B000
|
unkown
|
page readonly
|
|
|
|
7FF55E269000
|
unkown
|
page readonly
|
|
|
|
7FF5CF4A1000
|
unkown
|
page readonly
|
|
|
|
13B32C88000
|
unkown
|
page read and write
|
|
|
|
7FF55D7D0000
|
unkown
|
page readonly
|
|
|
|
7FF58BD65000
|
unkown
|
page readonly
|
|
|
|
1DF86647000
|
unkown
|
page read and write
|
|
|
|
4E6F000
|
unkown
|
page read and write
|
|
|
|
28651A48000
|
heap default
|
page read and write
|
|
|
|
28651AAF000
|
unkown
|
page read and write
|
|
|
|
7FF58BFE5000
|
unkown
|
page readonly
|
|
|
|
7FF55DAD5000
|
unkown
|
page readonly
|
|
|
|
7FF5E0AA9000
|
unkown
|
page readonly
|
|
|
|
133FEFC000
|
unkown
|
page read and write
|
|
|
|
2B2F67F0000
|
unkown
|
page read and write
|
|
|
|
1948EFFB000
|
heap default
|
page read and write
|
|
|
|
7FF55D514000
|
unkown
|
page readonly
|
|
|
|
7FF55DB34000
|
unkown
|
page readonly
|
|
|
|
17428DC0000
|
unkown
|
page read and write
|
|
|
|
7FF520D54000
|
unkown
|
page readonly
|
|
|
|
1DF86613000
|
unkown
|
page read and write
|
|
|
|
1DF8664B000
|
unkown
|
page read and write
|
|
|
|
7FF55E24E000
|
unkown
|
page readonly
|
|
|
|
13B32BB0000
|
unkown
|
page write copy
|
|
|
|
17428C90000
|
unkown
|
page read and write
|
|
|
|
174290A0000
|
unkown
|
page readonly
|
|
|
|
7FF4F4DE9000
|
unkown
|
page readonly
|
|
|
|
265C8B90000
|
unkown
|
page readonly
|
|
|
|
7FF55E2B4000
|
unkown
|
page readonly
|
|
|
|
7FF5CF494000
|
unkown
|
page readonly
|
|
|
|
3133000
|
unkown
|
page read and write
|
|
|
|
7FF520A10000
|
unkown
|
page readonly
|
|
|
|
4E2E000
|
unkown
|
page read and write
|
|
|
|
7FF4F4D17000
|
unkown
|
page readonly
|
|
|
|
28651AAF000
|
unkown
|
page read and write
|
|
|
|
34D0000
|
unkown
|
page read and write
|
|
|
|
28651940000
|
unkown
|
page read and write
|
|
|
|
17428E60000
|
unkown
|
page read and write
|
|
|
|
13B32CCD000
|
unkown
|
page read and write
|
|
|
|
20D59750000
|
unkown
|
page read and write
|
|
|
|
17428E00000
|
unkown
|
page read and write
|
|
|
|
19490E40000
|
heap private
|
page read and write
|
|
|
|
1DF86602000
|
unkown
|
page read and write
|
|
|
|
686057D000
|
unkown
|
page read and write
|
|
|
|
7FF520CB2000
|
unkown
|
page readonly
|
|
|
|
1DF86645000
|
unkown
|
page read and write
|
|
|
|
194ADFE000
|
unkown
|
page read and write
|
|
|
|
7FF55DF38000
|
unkown
|
page readonly
|
|
|
|
7FF4F4AE6000
|
unkown
|
page readonly
|
|
|
|
1DF86668000
|
unkown
|
page read and write
|
|
|
|
DEB47F000
|
unkown
|
page read and write
|
|
|
|
1948F320000
|
unkown
|
page readonly
|
|
|
|
7FF520D1D000
|
unkown
|
page readonly
|
|
|
|
7FF4F4DD5000
|
unkown
|
page readonly
|
|
|
|
174237C0000
|
unkown
|
page readonly
|
|
|
|
28651AAD000
|
unkown
|
page read and write
|
|
|
|
D111BFD000
|
unkown
|
page read and write
|
|
|
|
7FF58BF57000
|
unkown
|
page readonly
|
|
|
|
2AE1000
|
unkown
|
page readonly
|
|
|
|
2B0E000
|
unkown
|
page readonly
|
|
|
|
7FF4F4E90000
|
unkown
|
page readonly
|
|
|
|
1DF868D0000
|
unkown
|
page readonly
|
|
|
|
28651980000
|
unkown
|
page readonly
|
|
|
|
5EC9F7E000
|
unkown
|
page read and write
|
|
|
|
13B33270000
|
unkown
|
page readonly
|
|
|
|
1948EFCB000
|
heap default
|
page read and write
|
|
|
|
28651A63000
|
unkown
|
page read and write
|
|
|
|
22B25910000
|
unkown
|
page readonly
|
|
|
|
174247B0000
|
unkown
|
page readonly
|
|
|
|
7FF52B565000
|
unkown
|
page readonly
|
|
|
|
2B23000
|
unkown
|
page readonly
|
|
|
|
7FF5E05E5000
|
unkown
|
page readonly
|
|
|
|
D111C7E000
|
unkown
|
page read and write
|
|
|
|
7FF58C011000
|
unkown
|
page readonly
|
|
|
|
20D5983E000
|
unkown
|
page read and write
|
|
|
|
7FF58BF87000
|
unkown
|
page readonly
|
|
|
|
2B2F6690000
|
heap private
|
page read and write
|
|
|
|
28651A8D000
|
unkown
|
page read and write
|
|
|
|
7FF4F7179000
|
unkown
|
page readonly
|
|
|
|
28651A90000
|
unkown
|
page read and write
|
|
|
|
7FF58BCBF000
|
unkown
|
page readonly
|
|
|
|
7FF55E255000
|
unkown
|
page readonly
|
|
|
|
29A3000
|
unkown
|
page readonly
|
|
|
|
2AB8000
|
unkown
|
page readonly
|
|
|
|
7FF58C09E000
|
unkown
|
page readonly
|
|
|
|
7FF4F70DD000
|
unkown
|
page readonly
|
|
|
|
2B12000
|
unkown
|
page readonly
|
|
|
|
28651C92000
|
unkown
|
page read and write
|
|
|
|
7FF58C00D000
|
unkown
|
page readonly
|
|
|
|
2B62000
|
unkown
|
page readonly
|
|
|
|
7FF55E2A5000
|
unkown
|
page readonly
|
|
|
|
28651C96000
|
unkown
|
page read and write
|
|
|
|
7FF55DB30000
|
unkown
|
page readonly
|
|
|
|
1DF86652000
|
unkown
|
page read and write
|
|
|
|
7FF5E07D7000
|
unkown
|
page readonly
|
|
|
|
7FF58C016000
|
unkown
|
page readonly
|
|
|
|
1DF8666D000
|
unkown
|
page read and write
|
|
|
|
7FF58C026000
|
unkown
|
page readonly
|
|
|
|
7DFDDFA44000
|
unkown
|
page readonly
|
|
|
|
2B30000
|
unkown
|
page readonly
|
|
|
|
7FF58BFB2000
|
unkown
|
page readonly
|
|
|
|
3200000
|
unkown
|
page readonly
|
|
|
|
2B2F6820000
|
unkown
|
page read and write
|
|
|
|
265C8702000
|
unkown
|
page read and write
|
|
|
|
174236E0000
|
unkown
|
page readonly
|
|
|
|
7FF55DEE8000
|
unkown
|
page readonly
|
|
|
|
7FF52B541000
|
unkown
|
page readonly
|
|
|
|
28651A63000
|
unkown
|
page read and write
|
|
|
|
DB9A17C000
|
unkown
|
page read and write
|
|
|
|
17423813000
|
unkown
|
page read and write
|
|
|
|
842000
|
unkown
|
page read and write
|
|
|
|
1DF8662E000
|
unkown
|
page read and write
|
|
|
|
174290E0000
|
unkown
|
page readonly
|
|
|
|
1DF86649000
|
unkown
|
page read and write
|
|
|
|
1EB000
|
unkown
|
page read and write
|
|
|
|
7FF4F70F6000
|
unkown
|
page readonly
|
|
|
|
2B2F67D0000
|
unkown
|
page readonly
|
|
|
|
2F70000
|
unkown
|
page readonly
|
|
|
|
355C000
|
unkown
|
page read and write
|
|
|
|
174238F9000
|
unkown
|
page read and write
|
|
|
|
7FF5C78CC000
|
unkown
|
page readonly
|
|
|
|
28651A32000
|
unkown
|
page read and write
|
|
|
|
DEB17E000
|
unkown
|
page read and write
|
|
|
|
28651D30000
|
unkown
|
page read and write
|
|
|
|
17423F59000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E25000
|
unkown
|
page readonly
|
|
|
|
1DF86665000
|
unkown
|
page read and write
|
|
|
|
7FF52B237000
|
unkown
|
page readonly
|
|
|
|
2BB8000
|
unkown
|
page readonly
|
|
|
|
194B0FD000
|
unkown
|
page read and write
|
|
|
|
D111E7D000
|
unkown
|
page read and write
|
|
|
|
2997000
|
unkown
|
page readonly
|
|
|
|
1DF86650000
|
unkown
|
page read and write
|
|
|
|
7FF4F70BF000
|
unkown
|
page readonly
|
|
|
|
22B25A8D000
|
unkown
|
page read and write
|
|
|
|
17429000000
|
unkown
|
page readonly
|
|
|
|
37D0000
|
heap private
|
page read and write
|
|
|
|
1DF8667B000
|
unkown
|
page read and write
|
|
|
|
13B32CC4000
|
unkown
|
page read and write
|
|
|
|
1742389D000
|
unkown
|
page read and write
|
|
|
|
13B32A80000
|
unkown
|
page readonly
|
|
|
|
194AEFF000
|
unkown
|
page read and write
|
|
|
|
7FF4F4E1C000
|
unkown
|
page readonly
|
|
|
|
17423DD1000
|
unkown
|
page read and write
|
|
|
|
286522D0000
|
unkown
|
page readonly
|
|
|
|
600000
|
heap private
|
page read and write
|
|
|
|
213521E5000
|
heap private
|
page read and write
|
|
|
|
17428DC0000
|
unkown
|
page read and write
|
|
|
|
7FF5209F1000
|
unkown
|
page readonly
|
|
|
|
28651AB9000
|
unkown
|
page read and write
|
|
|
|
7FF52B1EC000
|
unkown
|
page readonly
|
|
|
|
7FF55E27D000
|
unkown
|
page readonly
|
|
|
|
FE5567C000
|
unkown
|
page read and write
|
|
|
|
7FF52B4FA000
|
unkown
|
page readonly
|
|
|
|
7FF55DB0C000
|
unkown
|
page readonly
|
|
|
|
2BA5000
|
unkown
|
page readonly
|
|
|
|
7FF4F4D6A000
|
unkown
|
page readonly
|
|
|
|
1DF86677000
|
unkown
|
page read and write
|
|
|
|
28651C94000
|
unkown
|
page read and write
|
|
|
|
7FF520C45000
|
unkown
|
page readonly
|
|
|
|
7FF5C78DC000
|
unkown
|
page readonly
|
|
|
|
7FF4F49FE000
|
unkown
|
page readonly
|
|
|
|
7FF55DAA6000
|
unkown
|
page readonly
|
|
|
|
7FF55E1A5000
|
unkown
|
page readonly
|
|
|
|
2BFB000
|
unkown
|
page readonly
|
|
|
|
7FF52B253000
|
unkown
|
page readonly
|
|
|
|
7FF4F4DBA000
|
unkown
|
page readonly
|
|
|
|
7FF55E1EA000
|
unkown
|
page readonly
|
|
|
|
2FE1000
|
unkown
|
page read and write
|
|
|
|
7FF5C7959000
|
unkown
|
page readonly
|
|
|
|
FE5527E000
|
unkown
|
page read and write
|
|
|
|
78A000
|
heap private
|
page read and write
|
|
|
|
A52467B000
|
unkown
|
page read and write
|
|
|
|
33C0000
|
heap default
|
page read and write
|
|
|
|
7FF52B25C000
|
unkown
|
page readonly
|
|
|
|
28651A50000
|
unkown
|
page read and write
|
|
|
|
28651A78000
|
unkown
|
page read and write
|
|
|
|
7FF5E05E1000
|
unkown
|
page readonly
|
|
|
|
7FF4F4E8E000
|
unkown
|
page readonly
|
|
|
|
17428E2D000
|
unkown
|
page read and write
|
|
|
|
194B2FF000
|
unkown
|
page read and write
|
|
|
|
17423856000
|
unkown
|
page read and write
|
|
|
|
78A000
|
heap private
|
page read and write
|
|
|
|
F5B000
|
unkown
|
page readonly
|
|
|
|
2B2F6E80000
|
unkown
|
page read and write
|
|
|
|
194AE7F000
|
unkown
|
page read and write
|
|
|
|
28651960000
|
unkown
|
page read and write
|
|
|
|
7FF520B05000
|
unkown
|
page readonly
|
|
|
|
7FF5E0A11000
|
unkown
|
page readonly
|
|
|
|
825000
|
unkown
|
page read and write
|
|
|
|
28651A39000
|
unkown
|
page read and write
|
|
|
|
22B27940000
|
unkown
|
page write copy
|
|
|
|
DA0000
|
unkown
|
page read and write
|
|
|
|
2B90000
|
unkown
|
page readonly
|
|
|
|
7FF4F4E01000
|
unkown
|
page readonly
|
|
|
|
7FF4F4C38000
|
unkown
|
page readonly
|
|
|
|
29F7000
|
unkown
|
page readonly
|
|
|
|
17423F13000
|
unkown
|
page read and write
|
|
|
|
7FF520DB9000
|
unkown
|
page readonly
|
|
|
|
17428DA0000
|
unkown
|
page read and write
|
|
|
|
7FF52B55C000
|
unkown
|
page readonly
|
|
|
|
620000
|
unkown
|
page readonly
|
|
|
|
19490C30000
|
heap private
|
page read and write
|
|
|
|
7FF4F4E99000
|
unkown
|
page readonly
|
|
|
|
2B2F683D000
|
unkown
|
page read and write
|
|
|
|
7FF5CFAC3000
|
unkown
|
page readonly
|
|
|
|
7FF5C78A9000
|
unkown
|
page readonly
|
|
|
|
2B10000
|
unkown
|
page readonly
|
|
|
|
7FF520CA8000
|
unkown
|
page readonly
|
|
|
|
7FF5E0A35000
|
unkown
|
page readonly
|
|
|
|
7FF55E222000
|
unkown
|
page readonly
|
|
|
|
27C1000
|
unkown
|
page readonly
|
|
|
|
7FF4F4BC4000
|
unkown
|
page readonly
|
|
|
|
7FF5E09DE000
|
unkown
|
page readonly
|
|
|
|
21351EE0000
|
unkown
|
page read and write
|
|
|
|
7FF55DC9B000
|
unkown
|
page readonly
|
|
|
|
22B259F0000
|
unkown
|
page read and write
|
|
|
|
7FF4F7070000
|
unkown
|
page readonly
|
|
|
|
28651C90000
|
unkown
|
page read and write
|
|
|
|
17428D30000
|
unkown
|
page write copy
|
|
|
|
28651C80000
|
unkown
|
page read and write
|
|
|
|
2B2F67E0000
|
unkown
|
page readonly
|
|
|
|
28652840000
|
unkown
|
page read and write
|
|
|
|
7FF4F7105000
|
unkown
|
page readonly
|
|
|
|
7FF5E0AA9000
|
unkown
|
page readonly
|
|
|
|
D111AFE000
|
unkown
|
page read and write
|
|
|
|
2FB0000
|
heap default
|
page read and write
|
|
|
|
13B33600000
|
unkown
|
page readonly
|
|
|
|
1DF86641000
|
unkown
|
page read and write
|
|
|
|
2B2F6700000
|
unkown
|
page readonly
|
|
|
|
7FF5CFB37000
|
unkown
|
page readonly
|
|
|
|
7FF55DFD5000
|
unkown
|
page readonly
|
|
|
|
17428CA0000
|
unkown
|
page read and write
|
|
|
|
7CE000
|
unkown
|
page read and write
|
|
|
|
28651CF0000
|
unkown
|
page read and write
|
|
|
|
17428C68000
|
unkown
|
page read and write
|
|
|
|
1DF86639000
|
unkown
|
page read and write
|
|
|
|
7FF4F7047000
|
unkown
|
page readonly
|
|
|
|
7FF5C794E000
|
unkown
|
page readonly
|
|
|
|
286528A0000
|
unkown
|
page read and write
|
|
|
|
7FF55E07E000
|
unkown
|
page readonly
|
|
|
|
A52457F000
|
unkown
|
page read and write
|
|
|
|
13B33500000
|
unkown
|
page read and write
|
|
|
|
194909D0000
|
heap private
|
page read and write
|
|
|
|
7FF55E23A000
|
unkown
|
page readonly
|
|
|
|
133F74C000
|
unkown
|
page read and write
|
|
|
|
7FF55DB37000
|
unkown
|
page readonly
|
|
|
|
66F0000
|
unkown
|
page readonly
|
|
|
|
28651AAD000
|
unkown
|
page read and write
|
|
|
|
134047F000
|
unkown
|
page read and write
|
|
|
|
7FF520B58000
|
unkown
|
page readonly
|
|
|
|
7FF5C7895000
|
unkown
|
page readonly
|
|
|
|
7FF55E30E000
|
unkown
|
page readonly
|
|
|
|
7FF5CFCB5000
|
unkown
|
page readonly
|
|
|
|
2B2F7002000
|
unkown
|
page read and write
|
|
|
|
7FF52B5D9000
|
unkown
|
page readonly
|
|
|
|
17423E00000
|
unkown
|
page read and write
|
|
|
|
7FF58BF77000
|
unkown
|
page readonly
|
|
|
|
17428D57000
|
unkown
|
page readonly
|
|
|
|
7FF55DFE0000
|
unkown
|
page readonly
|
|
|
|
17423E02000
|
unkown
|
page read and write
|
|
|
|
7FF5E098C000
|
unkown
|
page readonly
|
|
|
|
28651C80000
|
unkown
|
page read and write
|
|
|
|
FE54EFE000
|
unkown
|
page read and write
|
|
|
|
28651A39000
|
unkown
|
page read and write
|
|
|
|
2B96000
|
unkown
|
page readonly
|
|
|
|
28652610000
|
unkown
|
page read and write
|
|
|
|
FE5547C000
|
unkown
|
page read and write
|
|
|
|
3575000
|
unkown
|
page read and write
|
|
|
|
7FF5E09B6000
|
unkown
|
page readonly
|
|
|
|
7FF4F6D37000
|
unkown
|
page readonly
|
|
|
|
20D59800000
|
unkown
|
page read and write
|
|
|
|
27C1000
|
unkown
|
page readonly
|
|
|
|
BD0000
|
unkown
|
page read and write
|
|
|
|
28651ABF000
|
unkown
|
page read and write
|
|
|
|
1742386E000
|
unkown
|
page read and write
|
|
|
|
2ADD000
|
unkown
|
page readonly
|
|
|
|
7FF58BFCA000
|
unkown
|
page readonly
|
|
|
|
7FF5E09B8000
|
unkown
|
page readonly
|
|
|
|
19490A20000
|
unkown
|
page readonly
|
|
|
|
68601BC000
|
unkown
|
page read and write
|
|
|
|
340E000
|
unkown
|
page read and write
|
|
|
|
7FF5E0947000
|
unkown
|
page readonly
|
|
|
|
1DF86651000
|
unkown
|
page read and write
|
|
|
|
7FF58BC37000
|
unkown
|
page readonly
|
|
|
|
7FF52B47E000
|
unkown
|
page readonly
|
|
|
|
7FF4F4C5A000
|
unkown
|
page readonly
|
|
|
|
28651CE0000
|
unkown
|
page read and write
|
|
|
|
265C8641000
|
unkown
|
page read and write
|
|
|
|
7FF520CC6000
|
unkown
|
page readonly
|
|
|
|
17423F59000
|
unkown
|
page read and write
|
|
|
|
2AF0000
|
unkown
|
page readonly
|
|
|
|
2B2F6813000
|
unkown
|
page read and write
|
|
|
|
134027E000
|
unkown
|
page read and write
|
|
|
|
19490D2F000
|
heap private
|
page read and write
|
|
|
|
28651A8E000
|
unkown
|
page read and write
|
|
|
|
28651AC6000
|
unkown
|
page read and write
|
|
|
|
13B32E00000
|
unkown
|
page readonly
|
|
|
|
7FF5CFD29000
|
unkown
|
page readonly
|
|
|
|
7FF520A75000
|
unkown
|
page readonly
|
|
|
|
7FF520A80000
|
unkown
|
page readonly
|
|
|
|
265C9000000
|
unkown
|
page readonly
|
|
|
|
7FF5CFB9C000
|
unkown
|
page readonly
|
|
|
|
2B30000
|
unkown
|
page readonly
|
|
|
|
7FF520D36000
|
unkown
|
page readonly
|
|
|
|
1DF86E02000
|
unkown
|
page read and write
|
|
|
|
7FF5CFC38000
|
unkown
|
page readonly
|
|
|
|
2C10000
|
unkown
|
page readonly
|
|
|
|
7FF4F4DA6000
|
unkown
|
page readonly
|
|
|
|
EBD5779000
|
unkown
|
page read and write
|
|
|
|
6DB000
|
unkown
|
page read and write
|
|
|
|
7FF58BE4A000
|
unkown
|
page readonly
|
|
|
|
7FF5CFC3A000
|
unkown
|
page readonly
|
|
|
|
1DF8662A000
|
unkown
|
page read and write
|
|
|
|
7FF58BC3E000
|
unkown
|
page readonly
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
7FF58C0A0000
|
unkown
|
page readonly
|
|
|
|
1DF8663F000
|
unkown
|
page read and write
|
|
|
|
2AE6000
|
unkown
|
page readonly
|
|
|
|
7FF4F4DDF000
|
unkown
|
page readonly
|
|
|
|
3500000
|
unkown
|
page read and write
|
|
|
|
17428DC0000
|
unkown
|
page readonly
|
|
|
|
7FF58BBE1000
|
unkown
|
page readonly
|
|
|
|
EBD537C000
|
unkown
|
page read and write
|
|
|
|
7FF58BD2C000
|
unkown
|
page readonly
|
|
|
|
7FF58BF1C000
|
unkown
|
page readonly
|
|
|
|
2B46000
|
unkown
|
page readonly
|
|
|
|
20D59851000
|
unkown
|
page read and write
|
|
|
|
2BB0000
|
unkown
|
page readonly
|
|
|
|
69A000
|
unkown
|
page read and write
|
|
|
|
7FF5E0A9E000
|
unkown
|
page readonly
|
|
|
|
2B2F6902000
|
unkown
|
page read and write
|
|
|
|
17428D80000
|
unkown
|
page read and write
|
|
|
|
2C04000
|
unkown
|
page readonly
|
|
|
|
5EC9FFF000
|
unkown
|
page read and write
|
|
|
|
DB9A87E000
|
unkown
|
page read and write
|
|
|
|
3558000
|
unkown
|
page read and write
|
|
|
|
17428DB0000
|
unkown
|
page read and write
|
|
|
|
265C84F0000
|
unkown
|
page readonly
|
|
|
|
13B32C13000
|
unkown
|
page read and write
|
|
|
|
7FF5E095A000
|
unkown
|
page readonly
|
|
|
|
7FF520B7A000
|
unkown
|
page readonly
|
|
|
|
2BAA000
|
unkown
|
page readonly
|
|
|
|
7FF55D8BA000
|
unkown
|
page readonly
|
|
|
|
22B273F0000
|
unkown
|
page readonly
|
|
|
|
2B70000
|
unkown
|
page readonly
|
|
|
|
7820000
|
unkown
|
page read and write
|
|
|
|
7FD000
|
unkown
|
page read and write
|
|
|
|
7FF4F7072000
|
unkown
|
page readonly
|
|
|
|
C90000
|
unkown
|
page readonly
|
|
|
|
265C85D0000
|
unkown
|
page readonly
|
|
|
|
1DF86702000
|
unkown
|
page read and write
|
|
|
|
1DF86675000
|
unkown
|
page read and write
|
|
|
|
17428C84000
|
unkown
|
page read and write
|
|
|
|
22B25A59000
|
unkown
|
page read and write
|
|
|
|
28651AAD000
|
unkown
|
page read and write
|
|
|
|
174237E0000
|
unkown
|
page read and write
|
|
|
|
7FF5C78BE000
|
unkown
|
page readonly
|
|
|
|
17423A00000
|
unkown
|
page readonly
|
|
|
|
7FF5CFC96000
|
unkown
|
page readonly
|
|
|
|
13B32CE2000
|
unkown
|
page read and write
|
|
|
|
2AAE000
|
unkown
|
page readonly
|
|
|
|
28651BB0000
|
unkown
|
page readonly
|
|
|
|
1DF8665B000
|
unkown
|
page read and write
|
|
|
|
286519D0000
|
unkown
|
page read and write
|
|
|
|
7FF4F6AE3000
|
unkown
|
page readonly
|
|
|
|
DB9A67F000
|
unkown
|
page read and write
|
|
|
|
7FF58BFB8000
|
unkown
|
page readonly
|
|
|
|
7FF52B484000
|
unkown
|
page readonly
|
|
|
|
2B2F6829000
|
unkown
|
page read and write
|
|
|
|
2F3E000
|
unkown
|
page read and write
|
|
|
|
7FF5E0A16000
|
unkown
|
page readonly
|
|
|
|
7FF4F4D7C000
|
unkown
|
page readonly
|
|
|
|
28651C9E000
|
unkown
|
page read and write
|
|
|
|
7FF520D57000
|
unkown
|
page readonly
|
|
|
|
7B0000
|
heap private
|
page read and write
|
|
|
|
7FF5C043C000
|
unkown
|
page readonly
|
|
|
|
7FF5CF4A6000
|
unkown
|
page readonly
|
|
|
|
3561000
|
unkown
|
page read and write
|
|
|
|
28651C9B000
|
unkown
|
page read and write
|
|
|
|
7FF5C78D6000
|
unkown
|
page readonly
|
|
|
|
7FF55E29C000
|
unkown
|
page readonly
|
|
|
|
2AC1000
|
unkown
|
page readonly
|
|
|
|
213521E0000
|
heap private
|
page read and write
|
|
|
|
17423902000
|
unkown
|
page read and write
|
|
|
|
770000
|
unkown
|
page readonly
|
|
|
|
3572000
|
unkown
|
page read and write
|
|
|
|
7FF4F4DA2000
|
unkown
|
page readonly
|
|
|
|
17428E62000
|
unkown
|
page read and write
|
|
|
|
20D59802000
|
unkown
|
page read and write
|
|
|
|
13B32A10000
|
heap private
|
page read and write
|
|
|
|
20D59A00000
|
unkown
|
page readonly
|
|
|
|
7FF5CFD1E000
|
unkown
|
page readonly
|
|
|
|
22B25F90000
|
unkown
|
page readonly
|
|
|
|
17423890000
|
unkown
|
page read and write
|
|
|
|
7FF55E2B0000
|
unkown
|
page readonly
|
|
|
|
22B259F0000
|
unkown
|
page read and write
|
|
|
|
7FF4F716E000
|
unkown
|
page readonly
|
|
|
|
1948EF10000
|
unkown
|
page readonly
|
|
|
|
7FF52B54C000
|
unkown
|
page readonly
|
|
|
|
134037D000
|
unkown
|
page read and write
|
|
|
|
7FF5CFCA6000
|
unkown
|
page readonly
|
|
|
|
2FF5000
|
unkown
|
page read and write
|
|
|
|
2ADD000
|
unkown
|
page readonly
|
|
|
|
17423800000
|
unkown
|
page read and write
|
|
|
|
2B07000
|
unkown
|
page readonly
|
|
|
|
2AEB000
|
unkown
|
page readonly
|
|
|
|
28651AE0000
|
unkown
|
page readonly
|
|
|
|
17423DF0000
|
unkown
|
page read and write
|
|
|
|
7FF5C7147000
|
unkown
|
page readonly
|
|
|
|
1AA000
|
unkown
|
page read and write
|
|
|
|
7FF4F70C9000
|
unkown
|
page readonly
|
|
|
|
2821000
|
unkown
|
page readonly
|
|
|
|
7FF55E28C000
|
unkown
|
page readonly
|
|
|
|
7FF52B529000
|
unkown
|
page readonly
|
|
|
|
7FF520CA4000
|
unkown
|
page readonly
|
|
|
|
520000
|
unkown
|
page read and write
|
|
|
|
630000
|
heap default
|
page read and write
|
|
|
|
21351F48000
|
heap default
|
page read and write
|
|
|
|
7FF58BF61000
|
unkown
|
page readonly
|
|
|
|
7FF5CF5B1000
|
unkown
|
page readonly
|
|
|
|
13B32D02000
|
unkown
|
page read and write
|
|
|
|
22B25A5C000
|
unkown
|
page read and write
|
|
|
|
28651C9B000
|
unkown
|
page read and write
|
|
|
|
194AAFE000
|
unkown
|
page read and write
|
|
|
|
7FF52B5CE000
|
unkown
|
page readonly
|
|
|
|
7900000
|
unkown
|
page read and write
|
|
|
|
5ECA07E000
|
unkown
|
page read and write
|
|
|
|
2EAB000
|
unkown
|
page read and write
|
|
|
|
7FF5E09F9000
|
unkown
|
page readonly
|
|
|
|
7FF52B4D2000
|
unkown
|
page readonly
|
|
|
|
7FF58BFA2000
|
unkown
|
page readonly
|
|
|
|
28651A32000
|
unkown
|
page read and write
|
|
|
|
7FF58BD06000
|
unkown
|
page readonly
|
|
|
|
BE0000
|
heap default
|
page read and write
|
|
|
|
28651AAF000
|
unkown
|
page read and write
|
|
|
|
7FF55DB99000
|
unkown
|
page readonly
|
|
|
|
28652890000
|
unkown
|
page read and write
|
|
|
|
22B25C00000
|
unkown
|
page readonly
|
|
|
|
7FF520A1D000
|
unkown
|
page readonly
|
|
|
|
28651AAF000
|
heap default
|
page read and write
|
|
|
|
D8F000
|
unkown
|
page read and write
|
|
|
|
FE5517E000
|
unkown
|
page read and write
|
|
|
|
68606FC000
|
unkown
|
page read and write
|
|
|
|
7FF520B20000
|
unkown
|
page readonly
|
|
|
|
2F7E000
|
unkown
|
page read and write
|
|
|
|
7FF5E0A2C000
|
unkown
|
page readonly
|
|
|
|
265C8713000
|
unkown
|
page read and write
|
|
|
|
7FF58BFEF000
|
unkown
|
page readonly
|
|
|
|
22B25900000
|
unkown
|
page readonly
|
|
|
|
1DF8662F000
|
unkown
|
page read and write
|
|
|
|
20D59D90000
|
unkown
|
page readonly
|
|
|
|
7FF58BE68000
|
unkown
|
page readonly
|
|
|
|
22B25A3D000
|
unkown
|
page read and write
|
|
|
|
7FF58BE2F000
|
unkown
|
page readonly
|
|
|
|
17428B10000
|
unkown
|
page readonly
|
|
|
|
37DA000
|
heap private
|
page read and write
|
|
|
|
7FF55DACE000
|
unkown
|
page readonly
|
|
|
|
DEB37E000
|
unkown
|
page read and write
|
|
|
|
2FD5000
|
unkown
|
page read and write
|
|
|
|
3555000
|
unkown
|
page read and write
|
|
|
|
28651990000
|
unkown
|
page readonly
|
|
|
|
7FF5208F5000
|
unkown
|
page readonly
|
|
|
|
22B259B0000
|
unkown
|
page read and write
|
|
|
|
13B32CBC000
|
unkown
|
page read and write
|
|
|
|
13B32C00000
|
unkown
|
page read and write
|
|
|
|
19490A10000
|
heap private
|
page read and write
|
|
|
|
82C000
|
unkown
|
page read and write
|
|
|
|
28651C94000
|
unkown
|
page read and write
|
|
|
|
1948F360000
|
unkown
|
page readonly
|
|
|
|
A00000
|
unkown
|
page readonly
|
|
|
|
3530000
|
heap default
|
page read and write
|
|
|
|
265C8668000
|
unkown
|
page read and write
|
|
|
|
7FF520BC7000
|
unkown
|
page readonly
|
|
|
|
780000
|
heap private
|
page read and write
|
|
|
|
1DF8662D000
|
unkown
|
page read and write
|
|
|
|
932000
|
unkown
|
page read and write
|
|
|
|
1DF865B0000
|
unkown
|
page readonly
|
|
|
|
2B2F6E80000
|
unkown
|
page read and write
|
|
|
|
22B273E0000
|
unkown
|
page readonly
|
|
|
|
A52477E000
|
unkown
|
page read and write
|
|
|
|
2B4A000
|
unkown
|
page readonly
|
|
|
|
1DF8666A000
|
unkown
|
page read and write
|
|
|
|
7FF5CFC9C000
|
unkown
|
page readonly
|
|
|
|
7FF520CEE000
|
unkown
|
page readonly
|
|
|
|
28651C90000
|
unkown
|
page read and write
|
|
|
|
790000
|
unkown
|
page read and write
|
|
|
|
7FF4F4BFE000
|
unkown
|
page readonly
|
|
|
|
73D0000
|
unkown
|
page read and write
|
|
There are 1091 hidden memdumps, click here to show them.