Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\plAI22fb26.exe
|
'C:\Users\user\Desktop\plAI22fb26.exe'
|
 |
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://www.instagram.com/invertexto/
|
unknown
|
 |
|
|
http://94.228.123.161/dashboard/
|
unknown
|
|
|
|
http://www.indyproject.org/
|
unknown
|
|
|
|
https://pagead2.goog
|
unknown
|
|
|
|
http://abrilprorock2018.webcindario.com/br/config.php
|
unknown
|
|
|
|
https://www.invertexto.com/
|
unknown
|
|
|
|
https://www.invertexto.com/aja
|
unknown
|
|
|
|
http://94.228.126.231/lending/
|
unknown
|
|
|
|
https://www.invertexto.com/img/face-note.png
|
unknown
|
|
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
www.invertexto.com
|
54.207.65.61
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
54.207.65.61
|
www.invertexto.com
|
United States
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\plAI22fb26.exe
|
AlphaColor
|
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
2AF77258000
|
unkown
|
page read and write
|
|
|
|
7FF57A1CA000
|
unkown image
|
page readonly
|
|
|
|
6070000
|
unkown
|
page read and write
|
|
|
|
1150000
|
unkown image
|
page write copy
|
|
|
|
7FF50213F000
|
unkown image
|
page readonly
|
|
|
|
7FF57A16C000
|
unkown image
|
page readonly
|
|
|
|
7DF58D930000
|
unkown image
|
page readonly
|
|
|
|
2A6D9702000
|
unkown
|
page read and write
|
|
|
|
2AF77200000
|
unkown
|
page read and write
|
|
|
|
7FF502194000
|
unkown image
|
page readonly
|
|
|
|
1ED537E0000
|
unkown
|
page read and write
|
|
|
|
7FF57B542000
|
unkown image
|
page readonly
|
|
|
|
1FEF7E90000
|
unkown image
|
page read and write
|
|
|
|
2A6DEC60000
|
unkown
|
page read and write
|
|
|
|
20D3EF60000
|
unkown image
|
page read and write
|
|
|
|
7FF57B62E000
|
unkown image
|
page readonly
|
|
|
|
2A6DEB70000
|
unkown
|
page read and write
|
|
|
|
7FF515DBA000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB725000
|
unkown image
|
page readonly
|
|
|
|
1147000
|
unkown image
|
page read and write
|
|
|
|
1651000
|
heap default
|
page read and write
|
|
|
|
7FF5BB323000
|
unkown image
|
page readonly
|
|
|
|
1910A44A000
|
unkown
|
page read and write
|
|
|
|
7FF57A235000
|
unkown image
|
page readonly
|
|
|
|
7DF5283A0000
|
unkown image
|
page readonly
|
|
|
|
22A665F0000
|
unkown image
|
page readonly
|
|
|
|
11A4000
|
unkown image
|
page readonly
|
|
|
|
2A6DA570000
|
unkown
|
page read and write
|
|
|
|
1C2D47A0000
|
unkown
|
page read and write
|
|
|
|
7FF5FFFD0000
|
unkown image
|
page readonly
|
|
|
|
1C2D427D000
|
unkown
|
page read and write
|
|
|
|
2A6DEBD0000
|
unkown
|
page read and write
|
|
|
|
162B000
|
heap default
|
page read and write
|
|
|
|
20D3EFD0000
|
heap default
|
page read and write
|
|
|
|
7FF545ACE000
|
unkown image
|
page readonly
|
|
|
|
2A6D9F13000
|
unkown
|
page read and write
|
|
|
|
2A6DEC22000
|
unkown
|
page read and write
|
|
|
|
1C2D424D000
|
unkown
|
page read and write
|
|
|
|
2A6DED04000
|
unkown
|
page read and write
|
|
|
|
1055000
|
unkown image
|
page write copy
|
|
|
|
2A6D962A000
|
unkown
|
page read and write
|
|
|
|
2A6D9676000
|
unkown
|
page read and write
|
|
|
|
114E000
|
unkown image
|
page write copy
|
|
|
|
7FF579E62000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB751000
|
unkown image
|
page readonly
|
|
|
|
2AF77780000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB75C000
|
unkown image
|
page readonly
|
|
|
|
7FF57A1DC000
|
unkown image
|
page readonly
|
|
|
|
3C88000
|
unkown
|
page read and write
|
|
|
|
94BB1FB000
|
unkown
|
page read and write
|
|
|
|
180000
|
unkown
|
page read and write
|
|
|
|
7FF5BB667000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8D6B000
|
unkown image
|
page readonly
|
|
|
|
1ED5387F000
|
unkown
|
page read and write
|
|
|
|
1626000
|
heap default
|
page read and write
|
|
|
|
7FF545D12000
|
unkown image
|
page readonly
|
|
|
|
65D2000
|
unkown
|
page read and write
|
|
|
|
7FF545B7E000
|
unkown image
|
page readonly
|
|
|
|
1910A2C0000
|
heap default
|
page read and write
|
|
|
|
1FEF8580000
|
unkown image
|
page readonly
|
|
|
|
59F137F000
|
unkown
|
page read and write
|
|
|
|
7FF5BB76C000
|
unkown image
|
page readonly
|
|
|
|
1A34000
|
unkown
|
page read and write
|
|
|
|
7FF57A297000
|
unkown image
|
page readonly
|
|
|
|
1910A402000
|
unkown
|
page read and write
|
|
|
|
1C2D4240000
|
unkown
|
page read and write
|
|
|
|
2A6D94A0000
|
heap private
|
page read and write
|
|
|
|
7FF57A27C000
|
unkown image
|
page readonly
|
|
|
|
7DF5CDAF0000
|
unkown image
|
page readonly
|
|
|
|
EADB47B000
|
unkown
|
page read and write
|
|
|
|
7DF48B800000
|
unkown image
|
page readonly
|
|
|
|
7DF570EB0000
|
unkown image
|
page readonly
|
|
|
|
7FF51601C000
|
unkown image
|
page readonly
|
|
|
|
3490000
|
unkown
|
page read and write
|
|
|
|
22A66E02000
|
unkown
|
page read and write
|
|
|
|
7FF5BB05A000
|
unkown image
|
page readonly
|
|
|
|
2AF77790000
|
unkown image
|
page readonly
|
|
|
|
401000
|
unkown image
|
page execute read
|
|
|
|
7FF5FFFD0000
|
unkown image
|
page readonly
|
|
|
|
1C2D4200000
|
unkown
|
page read and write
|
|
|
|
1910A2A0000
|
unkown image
|
page readonly
|
|
|
|
107A000
|
unkown image
|
page read and write
|
|
|
|
1652000
|
unkown
|
page read and write
|
|
|
|
E91807F000
|
unkown
|
page read and write
|
|
|
|
1C2D4120000
|
unkown image
|
page readonly
|
|
|
|
107F000
|
unkown image
|
page write copy
|
|
|
|
2A6DEC4F000
|
unkown
|
page read and write
|
|
|
|
7FF515F90000
|
unkown image
|
page readonly
|
|
|
|
59F14FC000
|
unkown
|
page read and write
|
|
|
|
1A0000
|
unkown
|
page read and write
|
|
|
|
7FF5E8E26000
|
unkown image
|
page readonly
|
|
|
|
1C2D4242000
|
unkown
|
page read and write
|
|
|
|
2A6DEB60000
|
unkown
|
page read and write
|
|
|
|
1C2D4020000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB766000
|
unkown image
|
page readonly
|
|
|
|
1695000
|
unkown
|
page read and write
|
|
|
|
5CDC47E000
|
unkown
|
page read and write
|
|
|
|
1649000
|
unkown
|
page read and write
|
|
|
|
7FF57B471000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB5A1000
|
unkown image
|
page readonly
|
|
|
|
22A66620000
|
heap default
|
page read and write
|
|
|
|
7FF545E19000
|
unkown image
|
page readonly
|
|
|
|
7DF5FB1C0000
|
unkown image
|
page readonly
|
|
|
|
1FEF7FE0000
|
unkown image
|
page readonly
|
|
|
|
1631000
|
unkown
|
page read and write
|
|
|
|
7FF515ED7000
|
unkown image
|
page readonly
|
|
|
|
1910A800000
|
unkown image
|
page readonly
|
|
|
|
1C2D423A000
|
unkown
|
page read and write
|
|
|
|
DEA0177000
|
unkown
|
page read and write
|
|
|
|
1673000
|
unkown
|
page read and write
|
|
|
|
7FF57B140000
|
unkown image
|
page readonly
|
|
|
|
59F197F000
|
unkown
|
page read and write
|
|
|
|
3490000
|
unkown
|
page read and write
|
|
|
|
2A6DA9F0000
|
unkown
|
page read and write
|
|
|
|
411B000
|
unkown
|
page read and write
|
|
|
|
7FF57A1E8000
|
unkown image
|
page readonly
|
|
|
|
15E9000
|
heap default
|
page read and write
|
|
|
|
1692000
|
unkown
|
page read and write
|
|
|
|
7FF5BB739000
|
unkown image
|
page readonly
|
|
|
|
2A6D9600000
|
unkown
|
page read and write
|
|
|
|
7FF55EAB0000
|
unkown image
|
page readonly
|
|
|
|
7FF502108000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8A63000
|
unkown image
|
page readonly
|
|
|
|
19F1000
|
unkown
|
page read and write
|
|
|
|
1C2D3FE0000
|
heap private
|
page read and write
|
|
|
|
114A000
|
unkown image
|
page read and write
|
|
|
|
7DF558120000
|
unkown image
|
page readonly
|
|
|
|
2A6DEE24000
|
unkown
|
page read and write
|
|
|
|
7DF455FE0000
|
unkown image
|
page readonly
|
|
|
|
1682000
|
unkown
|
page read and write
|
|
|
|
EADB27B000
|
unkown
|
page read and write
|
|
|
|
1C2D4279000
|
unkown
|
page read and write
|
|
|
|
1A7D000
|
unkown
|
page read and write
|
|
|
|
22A66600000
|
unkown image
|
page readonly
|
|
|
|
EADB6FE000
|
unkown
|
page read and write
|
|
|
|
114C000
|
unkown image
|
page write copy
|
|
|
|
94BB477000
|
unkown
|
page read and write
|
|
|
|
2E4BB4C000
|
unkown
|
page read and write
|
|
|
|
65B9000
|
unkown
|
page read and write
|
|
|
|
7FF502197000
|
unkown image
|
page readonly
|
|
|
|
2A6D968A000
|
unkown
|
page read and write
|
|
|
|
2A6DED02000
|
unkown
|
page read and write
|
|
|
|
656F000
|
unkown
|
page read and write
|
|
|
|
150000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB7E9000
|
unkown image
|
page readonly
|
|
|
|
7FF55EAC6000
|
unkown image
|
page readonly
|
|
|
|
7FF5E86E9000
|
unkown image
|
page readonly
|
|
|
|
7FF57B575000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB3FF000
|
unkown image
|
page readonly
|
|
|
|
6589000
|
unkown
|
page read and write
|
|
|
|
1910AC02000
|
unkown
|
page read and write
|
|
|
|
7FF545603000
|
unkown image
|
page readonly
|
|
|
|
1C2D4268000
|
unkown
|
page read and write
|
|
|
|
7DFDC15FD000
|
unkown image
|
page readonly
|
|
|
|
EE000
|
unkown
|
page read and write
|
|
|
|
1910A508000
|
unkown
|
page read and write
|
|
|
|
7FF545E19000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB6A1000
|
unkown image
|
page readonly
|
|
|
|
7FF57B5BC000
|
unkown image
|
page readonly
|
|
|
|
1C2D4284000
|
unkown
|
page read and write
|
|
|
|
E917AF9000
|
unkown
|
page read and write
|
|
|
|
6576000
|
unkown
|
page read and write
|
|
|
|
1ED5383C000
|
unkown
|
page read and write
|
|
|
|
15C0000
|
unkown
|
page execute and read and write
|
|
|
|
EADBCFF000
|
unkown
|
page read and write
|
|
|
|
22A665D0000
|
unkown image
|
page readonly
|
|
|
|
65C2000
|
unkown
|
page read and write
|
|
|
|
2A6D9670000
|
unkown
|
page read and write
|
|
|
|
7FF50211A000
|
unkown image
|
page readonly
|
|
|
|
65B4000
|
unkown
|
page read and write
|
|
|
|
1682000
|
unkown
|
page read and write
|
|
|
|
2A6DECFE000
|
unkown
|
page read and write
|
|
|
|
1049000
|
unkown image
|
page write copy
|
|
|
|
168F000
|
unkown
|
page read and write
|
|
|
|
7FF545AE0000
|
unkown image
|
page readonly
|
|
|
|
7FF5FFFE0000
|
unkown image
|
page readonly
|
|
|
|
161C000
|
heap default
|
page read and write
|
|
|
|
7FF57A11C000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB6C7000
|
unkown image
|
page readonly
|
|
|
|
65E0000
|
unkown
|
page read and write
|
|
|
|
117D000
|
unkown image
|
page read and write
|
|
|
|
7FF5BB6AB000
|
unkown image
|
page readonly
|
|
|
|
7FF579EE1000
|
unkown image
|
page readonly
|
|
|
|
33A0000
|
unkown image
|
page readonly
|
|
|
|
7FF5FFFE2000
|
unkown image
|
page readonly
|
|
|
|
7FF501FE8000
|
unkown image
|
page readonly
|
|
|
|
1676000
|
unkown
|
page read and write
|
|
|
|
2A6DEEC0000
|
unkown
|
page read and write
|
|
|
|
1ED53740000
|
unkown image
|
page read and write
|
|
|
|
DE9FE7E000
|
unkown
|
page read and write
|
|
|
|
7FF515FD5000
|
unkown image
|
page readonly
|
|
|
|
7DF5FB1C0000
|
unkown image
|
page readonly
|
|
|
|
7FF515FA2000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8E35000
|
unkown image
|
page readonly
|
|
|
|
2E4C0FE000
|
unkown
|
page read and write
|
|
|
|
59F13FC000
|
unkown
|
page read and write
|
|
|
|
6593000
|
unkown
|
page read and write
|
|
|
|
2AF771C0000
|
unkown
|
page read and write
|
|
|
|
2AF77A02000
|
unkown
|
page read and write
|
|
|
|
22A66DB0000
|
unkown
|
page read and write
|
|
|
|
7DF558112000
|
unkown image
|
page readonly
|
|
|
|
DEA007B000
|
unkown
|
page read and write
|
|
|
|
20D3EFB0000
|
unkown image
|
page readonly
|
|
|
|
7FF51600C000
|
unkown image
|
page readonly
|
|
|
|
1FEF8002000
|
unkown
|
page read and write
|
|
|
|
7FF5BB7E0000
|
unkown image
|
page readonly
|
|
|
|
1198000
|
unkown image
|
page read and write
|
|
|
|
7FF516099000
|
unkown image
|
page readonly
|
|
|
|
7FF57ADFA000
|
unkown image
|
page readonly
|
|
|
|
1059000
|
unkown image
|
page read and write
|
|
|
|
1FEF8029000
|
unkown
|
page read and write
|
|
|
|
16A0000
|
unkown
|
page read and write
|
|
|
|
1093000
|
unkown image
|
page read and write
|
|
|
|
2A6DA690000
|
unkown image
|
page readonly
|
|
|
|
2E4C1FE000
|
unkown
|
page read and write
|
|
|
|
22A6683D000
|
unkown
|
page read and write
|
|
|
|
7FF57A177000
|
unkown image
|
page readonly
|
|
|
|
7FF4FDEA0000
|
unkown image
|
page readonly
|
|
|
|
EADB8FD000
|
unkown
|
page read and write
|
|
|
|
DEA037F000
|
unkown
|
page read and write
|
|
|
|
1884000
|
unkown
|
page read and write
|
|
|
|
20D3EF80000
|
unkown image
|
page readonly
|
|
|
|
7FF502003000
|
unkown image
|
page readonly
|
|
|
|
7FF57B5D4000
|
unkown image
|
page readonly
|
|
|
|
1C2D4802000
|
unkown
|
page read and write
|
|
|
|
2A6DECF2000
|
unkown
|
page read and write
|
|
|
|
1079000
|
unkown image
|
page write copy
|
|
|
|
1C2D3FD0000
|
unkown image
|
page read and write
|
|
|
|
1C2D4263000
|
unkown
|
page read and write
|
|
|
|
119C000
|
unkown image
|
page write copy
|
|
|
|
20D3EFA0000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB6F6000
|
unkown image
|
page readonly
|
|
|
|
7DF570EC2000
|
unkown image
|
page readonly
|
|
|
|
2A6DEB90000
|
unkown
|
page read and write
|
|
|
|
2A6DECA3000
|
unkown
|
page read and write
|
|
|
|
1910A500000
|
unkown
|
page read and write
|
|
|
|
1C2D426D000
|
unkown
|
page read and write
|
|
|
|
1C2D4251000
|
unkown
|
page read and write
|
|
|
|
1FEF8100000
|
unkown
|
page read and write
|
|
|
|
2A6DECA0000
|
unkown
|
page read and write
|
|
|
|
65FE000
|
unkown
|
page read and write
|
|
|
|
2AF77202000
|
unkown
|
page read and write
|
|
|
|
1C2D4256000
|
unkown
|
page read and write
|
|
|
|
7FF5BB3F6000
|
unkown image
|
page readonly
|
|
|
|
2AF77213000
|
unkown
|
page read and write
|
|
|
|
7FF55EB45000
|
unkown image
|
page readonly
|
|
|
|
7FF57A110000
|
unkown image
|
page readonly
|
|
|
|
2A6D9DD1000
|
unkown
|
page read and write
|
|
|
|
2A6DEC54000
|
unkown
|
page read and write
|
|
|
|
1ED5388B000
|
unkown
|
page read and write
|
|
|
|
7DF58D950000
|
unkown image
|
page readonly
|
|
|
|
2A6D94E0000
|
unkown image
|
page readonly
|
|
|
|
7FF545DB4000
|
unkown image
|
page readonly
|
|
|
|
1166000
|
unkown image
|
page read and write
|
|
|
|
7FF5BB56F000
|
unkown image
|
page readonly
|
|
|
|
7FF57A290000
|
unkown image
|
page readonly
|
|
|
|
7FF579E5E000
|
unkown image
|
page readonly
|
|
|
|
7FF5FFFF0000
|
unkown image
|
page readonly
|
|
|
|
7FF545DA5000
|
unkown image
|
page readonly
|
|
|
|
2A6DEEC0000
|
unkown
|
page read and write
|
|
|
|
1FEF808A000
|
unkown
|
page read and write
|
|
|
|
7FF5BB775000
|
unkown image
|
page readonly
|
|
|
|
15E0000
|
heap default
|
page read and write
|
|
|
|
7FF5E8E0D000
|
unkown image
|
page readonly
|
|
|
|
1910A980000
|
unkown image
|
page readonly
|
|
|
|
2A6D9F18000
|
unkown
|
page read and write
|
|
|
|
7FF57A098000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB5B0000
|
unkown image
|
page readonly
|
|
|
|
7FF545E11000
|
unkown image
|
page readonly
|
|
|
|
1ED5384A000
|
unkown
|
page read and write
|
|
|
|
1FEF7EA0000
|
heap private
|
page read and write
|
|
|
|
7FF545E0E000
|
unkown image
|
page readonly
|
|
|
|
E917EFB000
|
unkown
|
page read and write
|
|
|
|
2AF7723F000
|
unkown
|
page read and write
|
|
|
|
7FF502037000
|
unkown image
|
page readonly
|
|
|
|
1679000
|
unkown
|
page read and write
|
|
|
|
1C2D4265000
|
unkown
|
page read and write
|
|
|
|
7FF501FBE000
|
unkown image
|
page readonly
|
|
|
|
1ED54002000
|
unkown
|
page read and write
|
|
|
|
1FEF8802000
|
unkown
|
page read and write
|
|
|
|
107B000
|
unkown image
|
page write copy
|
|
|
|
1FEF8108000
|
unkown
|
page read and write
|
|
|
|
2A6DEB70000
|
unkown
|
page read and write
|
|
|
|
7DF5283B0000
|
unkown image
|
page readonly
|
|
|
|
1C2D427A000
|
unkown
|
page read and write
|
|
|
|
1ED53855000
|
unkown
|
page read and write
|
|
|
|
7DF58C610000
|
unkown image
|
page readonly
|
|
|
|
7DF58D942000
|
unkown image
|
page readonly
|
|
|
|
22A66802000
|
unkown
|
page read and write
|
|
|
|
2A6DEE21000
|
unkown
|
page read and write
|
|
|
|
7FF5E8DEF000
|
unkown image
|
page readonly
|
|
|
|
1910A513000
|
unkown
|
page read and write
|
|
|
|
7DF514510000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB46C000
|
unkown image
|
page readonly
|
|
|
|
1FEF8066000
|
unkown
|
page read and write
|
|
|
|
2A6DECB3000
|
unkown
|
page read and write
|
|
|
|
19E5000
|
unkown
|
page read and write
|
|
|
|
7FF57B57F000
|
unkown image
|
page readonly
|
|
|
|
7FF502176000
|
unkown image
|
page readonly
|
|
|
|
7DF5CDB00000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8EA1000
|
unkown image
|
page readonly
|
|
|
|
1157000
|
unkown image
|
page write copy
|
|
|
|
7FF57B546000
|
unkown image
|
page readonly
|
|
|
|
2AF77600000
|
unkown image
|
page readonly
|
|
|
|
7DF58D932000
|
unkown image
|
page readonly
|
|
|
|
1073000
|
unkown image
|
page read and write
|
|
|
|
10B3000
|
unkown image
|
page write copy
|
|
|
|
6594000
|
unkown
|
page read and write
|
|
|
|
1054000
|
unkown image
|
page read and write
|
|
|
|
7FF55EADA000
|
unkown image
|
page readonly
|
|
|
|
2A6DEA60000
|
unkown
|
page read and write
|
|
|
|
7FF5BB6C3000
|
unkown image
|
page readonly
|
|
|
|
1910A600000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB404000
|
unkown image
|
page readonly
|
|
|
|
19F8000
|
unkown
|
page read and write
|
|
|
|
1FEF807F000
|
unkown
|
page read and write
|
|
|
|
1C2D427E000
|
unkown
|
page read and write
|
|
|
|
1C2D4258000
|
unkown
|
page read and write
|
|
|
|
4122000
|
unkown
|
page read and write
|
|
|
|
E91817F000
|
unkown
|
page read and write
|
|
|
|
7DF58C5F2000
|
unkown image
|
page readonly
|
|
|
|
7FF515F0C000
|
unkown image
|
page readonly
|
|
|
|
1092000
|
unkown image
|
page write copy
|
|
|
|
2A6DEC15000
|
unkown
|
page read and write
|
|
|
|
2A6DEBA4000
|
unkown
|
page read and write
|
|
|
|
7DF5CDAF2000
|
unkown image
|
page readonly
|
|
|
|
7FF515FCE000
|
unkown image
|
page readonly
|
|
|
|
2A6D967A000
|
unkown
|
page read and write
|
|
|
|
22A667F0000
|
unkown
|
page read and write
|
|
|
|
7FF57A202000
|
unkown image
|
page readonly
|
|
|
|
2A6D94D0000
|
unkown image
|
page readonly
|
|
|
|
3AF4000
|
unkown
|
page read and write
|
|
|
|
2A6D9C60000
|
unkown
|
page read and write
|
|
|
|
7FF55EAFF000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB3ED000
|
unkown image
|
page readonly
|
|
|
|
7FF57B532000
|
unkown image
|
page readonly
|
|
|
|
104B000
|
unkown image
|
page read and write
|
|
|
|
2A6DA680000
|
unkown image
|
page readonly
|
|
|
|
1195000
|
unkown image
|
page write copy
|
|
|
|
59F0CDC000
|
unkown
|
page read and write
|
|
|
|
7DF5CDAF2000
|
unkown image
|
page readonly
|
|
|
|
7FF515E88000
|
unkown image
|
page readonly
|
|
|
|
65F2000
|
unkown
|
page read and write
|
|
|
|
59F167D000
|
unkown
|
page read and write
|
|
|
|
2AF77070000
|
unkown image
|
page readonly
|
|
|
|
1C2D422A000
|
unkown
|
page read and write
|
|
|
|
1C2D4255000
|
unkown
|
page read and write
|
|
|
|
7FF5E8DB2000
|
unkown image
|
page readonly
|
|
|
|
65F3000
|
unkown
|
page read and write
|
|
|
|
2A6D9500000
|
heap default
|
page read and write
|
|
|
|
1156000
|
unkown image
|
page read and write
|
|
|
|
7FF5BB655000
|
unkown image
|
page readonly
|
|
|
|
20D3F06F000
|
unkown
|
page read and write
|
|
|
|
2AF77400000
|
unkown image
|
page readonly
|
|
|
|
658C000
|
unkown
|
page read and write
|
|
|
|
2A6D9F02000
|
unkown
|
page read and write
|
|
|
|
115C000
|
unkown image
|
page read and write
|
|
|
|
1ED53850000
|
unkown
|
page read and write
|
|
|
|
7FF5BB7DE000
|
unkown image
|
page readonly
|
|
|
|
7FF515FA6000
|
unkown image
|
page readonly
|
|
|
|
94BB0FE000
|
unkown
|
page read and write
|
|
|
|
7DF558122000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB780000
|
unkown image
|
page readonly
|
|
|
|
562F000
|
unkown
|
page read and write
|
|
|
|
7FF5BB6E2000
|
unkown image
|
page readonly
|
|
|
|
3AFE000
|
unkown
|
page read and write
|
|
|
|
7FF5E8DDE000
|
unkown image
|
page readonly
|
|
|
|
1D0000
|
unkown image
|
page readonly
|
|
|
|
1B0D000
|
heap private
|
page read and write
|
|
|
|
7FF55EAF5000
|
unkown image
|
page readonly
|
|
|
|
2AF77070000
|
unkown image
|
page readonly
|
|
|
|
7FF57B5AC000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB54E000
|
unkown image
|
page readonly
|
|
|
|
E9184FF000
|
unkown
|
page read and write
|
|
|
|
7FF57A2F0000
|
unkown image
|
page readonly
|
|
|
|
1078000
|
unkown image
|
page read and write
|
|
|
|
110E000
|
unkown image
|
page write copy
|
|
|
|
1910A471000
|
unkown
|
page read and write
|
|
|
|
7DF5FB1B0000
|
unkown image
|
page readonly
|
|
|
|
20D3EF70000
|
heap private
|
page read and write
|
|
|
|
1910A47E000
|
unkown
|
page read and write
|
|
|
|
7FF515FE9000
|
unkown image
|
page readonly
|
|
|
|
7FF57B130000
|
unkown image
|
page readonly
|
|
|
|
2A6DECDB000
|
unkown
|
page read and write
|
|
|
|
7FF5021F9000
|
unkown image
|
page readonly
|
|
|
|
7DF5FB1B2000
|
unkown image
|
page readonly
|
|
|
|
7FF57A208000
|
unkown image
|
page readonly
|
|
|
|
7FF545D7D000
|
unkown image
|
page readonly
|
|
|
|
10000
|
unkown image
|
page read and write
|
|
|
|
2A6D96A6000
|
unkown
|
page read and write
|
|
|
|
1C2D4780000
|
unkown image
|
page readonly
|
|
|
|
7FF57A1F0000
|
unkown image
|
page readonly
|
|
|
|
1C2D426F000
|
unkown
|
page read and write
|
|
|
|
5CDC3FB000
|
unkown
|
page read and write
|
|
|
|
1910A454000
|
unkown
|
page read and write
|
|
|
|
1C2D4600000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8EA9000
|
unkown image
|
page readonly
|
|
|
|
22A66D80000
|
unkown image
|
page readonly
|
|
|
|
1FEF8000000
|
unkown
|
page read and write
|
|
|
|
20D3F660000
|
unkown image
|
page readonly
|
|
|
|
1074000
|
unkown image
|
page write copy
|
|
|
|
1ED53760000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB4A5000
|
unkown image
|
page readonly
|
|
|
|
2A6D94B0000
|
unkown image
|
page readonly
|
|
|
|
7FF55EB26000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB5B9000
|
unkown image
|
page readonly
|
|
|
|
22A66700000
|
unkown image
|
page readonly
|
|
|
|
7FF57B55A000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8E1C000
|
unkown image
|
page readonly
|
|
|
|
2A6D96AD000
|
unkown
|
page read and write
|
|
|
|
7FF57A249000
|
unkown image
|
page readonly
|
|
|
|
5CDBF3E000
|
unkown
|
page read and write
|
|
|
|
7FF5021F1000
|
unkown image
|
page readonly
|
|
|
|
7FF57A22E000
|
unkown image
|
page readonly
|
|
|
|
3B17000
|
unkown
|
page read and write
|
|
|
|
7FF545D10000
|
unkown image
|
page readonly
|
|
|
|
1ED53760000
|
unkown image
|
page readonly
|
|
|
|
7FF57A0BB000
|
unkown image
|
page readonly
|
|
|
|
7FF55EAEE000
|
unkown image
|
page readonly
|
|
|
|
20D3F013000
|
unkown
|
page read and write
|
|
|
|
7FF50200D000
|
unkown image
|
page readonly
|
|
|
|
7FF545D8C000
|
unkown image
|
page readonly
|
|
|
|
1682000
|
unkown
|
page read and write
|
|
|
|
7FF57A2F9000
|
unkown image
|
page readonly
|
|
|
|
7FF50206C000
|
unkown image
|
page readonly
|
|
|
|
1F0000
|
unkown image
|
page readonly
|
|
|
|
7FF5FFFD2000
|
unkown image
|
page readonly
|
|
|
|
1FEF8061000
|
unkown
|
page read and write
|
|
|
|
7FF57A05E000
|
unkown image
|
page readonly
|
|
|
|
2A6DEBA0000
|
unkown
|
page read and write
|
|
|
|
7FF545CFC000
|
unkown image
|
page readonly
|
|
|
|
1192000
|
unkown image
|
page write copy
|
|
|
|
7FF515F92000
|
unkown image
|
page readonly
|
|
|
|
416D000
|
unkown
|
page read and write
|
|
|
|
1FEF805B000
|
unkown
|
page read and write
|
|
|
|
1673000
|
unkown
|
page read and write
|
|
|
|
7FF545BB8000
|
unkown image
|
page readonly
|
|
|
|
7DF5FB1A2000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8E44000
|
unkown image
|
page readonly
|
|
|
|
7FF545D9C000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB50B000
|
unkown image
|
page readonly
|
|
|
|
E917DFB000
|
unkown
|
page read and write
|
|
|
|
6624000
|
unkown
|
page read and write
|
|
|
|
7FF516030000
|
unkown image
|
page readonly
|
|
|
|
20D3F2D0000
|
unkown image
|
page readonly
|
|
|
|
7FF55E8DA000
|
unkown image
|
page readonly
|
|
|
|
7DF558130000
|
unkown image
|
page readonly
|
|
|
|
1682000
|
unkown
|
page read and write
|
|
|
|
1082000
|
unkown image
|
page write copy
|
|
|
|
7FF5FFFE0000
|
unkown image
|
page readonly
|
|
|
|
1695000
|
heap default
|
page read and write
|
|
|
|
2AF7722A000
|
unkown
|
page read and write
|
|
|
|
1090000
|
unkown image
|
page read and write
|
|
|
|
11A2000
|
unkown image
|
page readonly
|
|
|
|
1141000
|
unkown image
|
page read and write
|
|
|
|
22A66A00000
|
unkown image
|
page readonly
|
|
|
|
7DF558120000
|
unkown image
|
page readonly
|
|
|
|
1ED53CD0000
|
unkown image
|
page readonly
|
|
|
|
7DF570EB0000
|
unkown image
|
page readonly
|
|
|
|
E917F7F000
|
unkown
|
page read and write
|
|
|
|
7FF57AE83000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB6CC000
|
unkown image
|
page readonly
|
|
|
|
9265A7F000
|
unkown
|
page read and write
|
|
|
|
1910A270000
|
unkown image
|
page readonly
|
|
|
|
1695000
|
unkown
|
page read and write
|
|
|
|
1910A42A000
|
unkown
|
page read and write
|
|
|
|
7FF5BB49E000
|
unkown image
|
page readonly
|
|
|
|
7FF55EBAE000
|
unkown image
|
page readonly
|
|
|
|
658C000
|
unkown
|
page read and write
|
|
|
|
3DE0000
|
unkown
|
page read and write
|
|
|
|
1FEF803C000
|
unkown
|
page read and write
|
|
|
|
7FF5459E8000
|
unkown image
|
page readonly
|
|
|
|
2A6D96FC000
|
unkown
|
page read and write
|
|
|
|
400000
|
unkown image
|
page readonly
|
|
|
|
7FF57B5B6000
|
unkown image
|
page readonly
|
|
|
|
2E4BBCE000
|
unkown
|
page read and write
|
|
|
|
7FF5E8A74000
|
unkown image
|
page readonly
|
|
|
|
2AF77276000
|
unkown
|
page read and write
|
|
|
|
7DF58C600000
|
unkown image
|
page readonly
|
|
|
|
1ED53AD0000
|
unkown image
|
page readonly
|
|
|
|
7FF57B4AC000
|
unkown image
|
page readonly
|
|
|
|
16A0000
|
unkown
|
page read and write
|
|
|
|
7FF50212E000
|
unkown image
|
page readonly
|
|
|
|
2A6DECB1000
|
unkown
|
page read and write
|
|
|
|
5770000
|
unkown
|
page read and write
|
|
|
|
168F000
|
unkown
|
page read and write
|
|
|
|
1C2D425E000
|
unkown
|
page read and write
|
|
|
|
7FF55EB54000
|
unkown image
|
page readonly
|
|
|
|
7FF545CA5000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8E11000
|
unkown image
|
page readonly
|
|
|
|
7FF502031000
|
unkown image
|
page readonly
|
|
|
|
1611000
|
heap default
|
page read and write
|
|
|
|
7FF55EBB9000
|
unkown image
|
page readonly
|
|
|
|
7DF5CDAE2000
|
unkown image
|
page readonly
|
|
|
|
7DF5FB1A0000
|
unkown image
|
page readonly
|
|
|
|
2A6DEEC0000
|
unkown
|
page read and write
|
|
|
|
1053000
|
unkown image
|
page write copy
|
|
|
|
3B3C000
|
unkown
|
page read and write
|
|
|
|
7FF5BAF9F000
|
unkown image
|
page readonly
|
|
|
|
7DF5FB1B0000
|
unkown image
|
page readonly
|
|
|
|
20D3F0E2000
|
unkown
|
page read and write
|
|
|
|
7FF5E8AC5000
|
unkown image
|
page readonly
|
|
|
|
7FF545D28000
|
unkown image
|
page readonly
|
|
|
|
7DF5FB1A0000
|
unkown image
|
page readonly
|
|
|
|
7FF57B35A000
|
unkown image
|
page readonly
|
|
|
|
7FF545CEA000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB787000
|
unkown image
|
page readonly
|
|
|
|
2A6DA6A0000
|
unkown image
|
page readonly
|
|
|
|
1C2D4010000
|
unkown image
|
page readonly
|
|
|
|
59F127F000
|
unkown
|
page read and write
|
|
|
|
3490000
|
unkown
|
page read and write
|
|
|
|
2A6DEC42000
|
unkown
|
page read and write
|
|
|
|
7FF545D5F000
|
unkown image
|
page readonly
|
|
|
|
7FF55EB50000
|
unkown image
|
page readonly
|
|
|
|
1ED53902000
|
unkown
|
page read and write
|
|
|
|
7FF515ED1000
|
unkown image
|
page readonly
|
|
|
|
1693000
|
unkown
|
page read and write
|
|
|
|
1636000
|
unkown
|
page read and write
|
|
|
|
9265B7E000
|
unkown
|
page read and write
|
|
|
|
1FEF7EE0000
|
unkown image
|
page readonly
|
|
|
|
1682000
|
unkown
|
page read and write
|
|
|
|
7FF516025000
|
unkown image
|
page readonly
|
|
|
|
1193000
|
unkown image
|
page read and write
|
|
|
|
2A6DEB60000
|
unkown
|
page read and write
|
|
|
|
7DF514502000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB321000
|
unkown image
|
page readonly
|
|
|
|
7FF57B3FE000
|
unkown image
|
page readonly
|
|
|
|
1649000
|
unkown
|
page read and write
|
|
|
|
7FF5E8DB8000
|
unkown image
|
page readonly
|
|
|
|
7FF55EB09000
|
unkown image
|
page readonly
|
|
|
|
10C4000
|
unkown image
|
page write copy
|
|
|
|
7DF58D942000
|
unkown image
|
page readonly
|
|
|
|
1C2D4275000
|
unkown
|
page read and write
|
|
|
|
16AD000
|
unkown
|
page read and write
|
|
|
|
119C000
|
unkown image
|
page write copy
|
|
|
|
168E000
|
unkown
|
page read and write
|
|
|
|
5CDBFBE000
|
unkown
|
page read and write
|
|
|
|
7FF502102000
|
unkown image
|
page readonly
|
|
|
|
20D3F0BB000
|
unkown
|
page read and write
|
|
|
|
1098000
|
unkown image
|
page write copy
|
|
|
|
7FF501CEA000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB51C000
|
unkown image
|
page readonly
|
|
|
|
7DF514502000
|
unkown image
|
page readonly
|
|
|
|
7FF5BB377000
|
unkown image
|
page readonly
|
|
|
|
2A6DA650000
|
unkown image
|
page readonly
|
|
|
|
20D3F087000
|
unkown
|
page read and write
|
|
|
|
20D3F802000
|
unkown
|
page read and write
|
|
|
|
1086000
|
unkown image
|
page write copy
|
|
|
|
94BB07E000
|
unkown
|
page read and write
|
|
|
|
7FF57B5D7000
|
unkown image
|
page readonly
|
|
|
|
1682000
|
heap default
|
page read and write
|
|
|
|
7DF570ED0000
|
unkown image
|
page readonly
|
|
|
|
2A6DEB90000
|
unkown
|
page read and write
|
|
|
|
113E000
|
unkown image
|
page read and write
|
|
|
|
7FF5BB528000
|
unkown image
|
page readonly
|
|
|
|
3C74000
|
unkown
|
page read and write
|
|
|
|
3553000
|
heap private
|
page read and write
|
|
|
|
7FF502166000
|
unkown image
|
page readonly
|
|
|
|
7FF57A07F000
|
unkown image
|
page readonly
|
|
|
|
7FF515E69000
|
unkown image
|
page readonly
|
|
|
|
7DF558110000
|
unkown image
|
page readonly
|
|
|
|
65B7000
|
unkown
|
page read and write
|
|
|
|
2A6D9490000
|
unkown image
|
page read and write
|
|
|
|
7FF515B90000
|
unkown image
|
page readonly
|
|
|
|
22A66902000
|
unkown
|
page read and write
|
|
|
|
7FF57A285000
|
unkown image
|
page readonly
|
|
|
|
19C9000
|
unkown
|
page read and write
|
|
|
|
7FF55EBB1000
|
unkown image
|
page readonly
|
|
|
|
7FF57B589000
|
unkown image
|
page readonly
|
|
|
|
2AF77050000
|
unkown image
|
page read and write
|
|
|
|
22A66824000
|
unkown
|
page read and write
|
|
|
|
1FEF805E000
|
unkown
|
page read and write
|
|
|
|
5870000
|
unkown
|
page read and write
|
|
|
|
11A2000
|
unkown image
|
page readonly
|
|
