Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
y5ACIMK3tT.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{8E70C929-1241-11EC-90E5-ECF4BB570DC9}.dat
|
Microsoft Word Document
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{B494046A-1241-11EC-90E5-ECF4BB570DC9}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{8E70C92B-1241-11EC-90E5-ECF4BB570DC9}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{B494046C-1241-11EC-90E5-ECF4BB570DC9}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\dnserror[1]
|
HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\errorPageStrings[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\4PB7FJMT\httpErrorPagesScripts[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\down[1]
|
PNG image data, 15 x 15, 8-bit colormap, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\NUEPGTR9\httpErrorPagesScripts[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\NewErrorPageTemplate[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\NewErrorPageTemplate[2]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\dnserror[1]
|
HTML document, UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\down[1]
|
PNG image data, 15 x 15, 8-bit colormap, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\PEJLKQA8\errorPageStrings[1]
|
UTF-8 Unicode (with BOM) text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\JavaDeployReg.log
|
ASCII text, with CRLF line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF56EA5AC75B303922.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF58B12BFEC36A6D12.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DFA5C652E686E58888.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DFEAB2FBB4231FF1CC.TMP
|
data
|
dropped
|
|
There are 19 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\y5ACIMK3tT.exe
|
'C:\Users\user\Desktop\y5ACIMK3tT.exe'
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:4648 CREDAT:17410 /prefetch:2
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:4176 CREDAT:17410 /prefetch:2
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://haverit.xyz/index.htm
|
unknown
|
|
|
|
http://www.nytimes.com/
|
unknown
|
|
|
|
https://sectigo.com/CPS0
|
unknown
|
|
|
|
http://ocsp.sectigo.com0
|
unknown
|
|
|
|
https://haverit.xyz/index.htmdex.htm
|
unknown
|
|
|
|
http://%s=%s&file://&os=%u.%u_%u_%u_x%uindex.html;
|
unknown
|
|
|
|
http://www.youtube.com/
|
unknown
|
|
|
|
http://www.wikipedia.com/
|
unknown
|
|
|
|
http://www.amazon.com/
|
unknown
|
|
|
|
https://haverit.xyz
|
unknown
|
|
|
|
http://crl.sectigo.com/SectigoRSACodeSigningCA.crl0s
|
unknown
|
|
|
|
http://www.live.com/
|
unknown
|
|
|
|
http://crt.sectigo.com/SectigoRSACodeSigningCA.crt0#
|
unknown
|
|
|
|
http://www.reddit.com/
|
unknown
|
|
|
|
http://www.twitter.com/
|
unknown
|
|
|
|
https://haverit.xyz/index.htmRoot
|
unknown
|
|
|
|
http://www.google.com/
|
unknown
|
|
There are 7 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
haverit.xyz
|
unknown
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
{8E70C929-1241-11EC-90E5-ECF4BB570DC9}
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
CVListPingLastYMD
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
CVListPingBitmap
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
CVListPingRandomizedBitmap
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
{B494046A-1241-11EC-90E5-ECF4BB570DC9}
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
There are 19 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
36E0000
|
heap private
|
page read and write
|
|
|
|
D8E000
|
unkown
|
page read and write
|
|
|
|
D1D62FE000
|
unkown
|
page read and write
|
|
|
|
243C8E01000
|
unkown
|
page read and write
|
|
|
|
5E0000
|
unkown
|
page read and write
|
|
|
|
20EE6302000
|
unkown
|
page read and write
|
|
|
|
2DD2FDB0000
|
unkown image
|
page readonly
|
|
|
|
9D59FFE000
|
unkown
|
page read and write
|
|
|
|
7FF4EC5A6000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC748000
|
unkown image
|
page readonly
|
|
|
|
613000
|
unkown
|
page read and write
|
|
|
|
163CA040000
|
unkown image
|
page readonly
|
|
|
|
3B6E17F000
|
unkown
|
page read and write
|
|
|
|
7DF505EF2000
|
unkown image
|
page readonly
|
|
|
|
5ED000
|
unkown
|
page read and write
|
|
|
|
7DF53FAC2000
|
unkown image
|
page readonly
|
|
|
|
5E0000
|
unkown
|
page read and write
|
|
|
|
7FF515ECF000
|
unkown image
|
page readonly
|
|
|
|
7DF5E4B60000
|
unkown image
|
page readonly
|
|
|
|
7FF4F9774000
|
unkown image
|
page readonly
|
|
|
|
7FF4F02E1000
|
unkown image
|
page readonly
|
|
|
|
7FF4F049D000
|
unkown image
|
page readonly
|
|
|
|
7FF5C42E2000
|
unkown image
|
page readonly
|
|
|
|
7FF5C41CE000
|
unkown image
|
page readonly
|
|
|
|
CE75E7B000
|
unkown
|
page read and write
|
|
|
|
7FF5E3070000
|
unkown image
|
page readonly
|
|
|
|
7DF52B7D2000
|
unkown image
|
page readonly
|
|
|
|
29168710000
|
heap default
|
page read and write
|
|
|
|
243C7A74000
|
unkown
|
page read and write
|
|
|
|
163CA630000
|
unkown image
|
page readonly
|
|
|
|
20ECB83D000
|
unkown
|
page read and write
|
|
|
|
243CD2FB000
|
unkown
|
page read and write
|
|
|
|
7FF5E3176000
|
unkown image
|
page readonly
|
|
|
|
7FF4F96F5000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC74F000
|
unkown image
|
page readonly
|
|
|
|
7DF53FAE0000
|
unkown image
|
page readonly
|
|
|
|
7DF50F082000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC683000
|
unkown image
|
page readonly
|
|
|
|
29215602000
|
unkown
|
page read and write
|
|
|
|
7FF515E88000
|
unkown image
|
page readonly
|
|
|
|
36E3000
|
heap private
|
page read and write
|
|
|
|
7FF4F04F7000
|
unkown image
|
page readonly
|
|
|
|
7FF4F05BE000
|
unkown image
|
page readonly
|
|
|
|
20ECB85F000
|
unkown
|
page read and write
|
|
|
|
20EE5FD0000
|
unkown image
|
page readonly
|
|
|
|
20EE5FC0000
|
heap private
|
page read and write
|
|
|
|
7FF52A109000
|
unkown image
|
page readonly
|
|
|
|
163CA0EB000
|
heap default
|
page read and write
|
|
|
|
FAF000
|
unkown
|
page read and write
|
|
|
|
5EE000
|
unkown
|
page read and write
|
|
|
|
7FF4F9443000
|
unkown image
|
page readonly
|
|
|
|
7FF5C42B7000
|
unkown image
|
page readonly
|
|
|
|
20ECB829000
|
unkown
|
page read and write
|
|
|
|
35CD87E000
|
unkown
|
page read and write
|
|
|
|
2DD30450000
|
unkown image
|
page readonly
|
|
|
|
36E3000
|
heap private
|
page read and write
|
|
|
|
1A3ADB65000
|
heap private
|
page read and write
|
|
|
|
7FF4F05EF000
|
unkown image
|
page readonly
|
|
|
|
243C81E0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E2F42000
|
unkown image
|
page readonly
|
|
|
|
1A3AD95F000
|
unkown
|
page read and write
|
|
|
|
626F8FA000
|
unkown
|
page read and write
|
|
|
|
CE7667E000
|
unkown
|
page read and write
|
|
|
|
7FF5E2959000
|
unkown image
|
page readonly
|
|
|
|
1A3AD710000
|
unkown image
|
page readonly
|
|
|
|
7DF50F092000
|
unkown image
|
page readonly
|
|
|
|
7FFB2000
|
unkown image
|
page readonly
|
|
|
|
7DF5E4B52000
|
unkown image
|
page readonly
|
|
|
|
19B000
|
unkown
|
page read and write
|
|
|
|
7FF5CF1A3000
|
unkown image
|
page readonly
|
|
|
|
20ECC002000
|
unkown
|
page read and write
|
|
|
|
163CA030000
|
heap private
|
page read and write
|
|
|
|
163CA060000
|
unkown image
|
page readonly
|
|
|
|
7FFC2000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC6C9000
|
unkown image
|
page readonly
|
|
|
|
F00CB7E000
|
unkown
|
page read and write
|
|
|
|
243CD2DE000
|
unkown
|
page read and write
|
|
|
|
29168C00000
|
unkown image
|
page readonly
|
|
|
|
29214F00000
|
unkown
|
page read and write
|
|
|
|
7FF4EC6C5000
|
unkown image
|
page readonly
|
|
|
|
7FF5CF22B000
|
unkown image
|
page readonly
|
|
|
|
7FF5C4343000
|
unkown image
|
page readonly
|
|
|
|
7FF52A1BE000
|
unkown image
|
page readonly
|
|
|
|
CE75F7F000
|
unkown
|
page read and write
|
|
|
|
1A3AD870000
|
heap default
|
page read and write
|
|
|
|
7DF53FAE0000
|
unkown image
|
page readonly
|
|
|
|
1A3ADB60000
|
heap private
|
page read and write
|
|
|
|
7DF505EE0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F03A8000
|
unkown image
|
page readonly
|
|
|
|
10AD000
|
unkown image
|
page readonly
|
|
|
|
36E3000
|
heap private
|
page read and write
|
|
|
|
7FF4EC69C000
|
unkown image
|
page readonly
|
|
|
|
29169002000
|
unkown
|
page read and write
|
|
|
|
D1D65FE000
|
unkown
|
page read and write
|
|
|
|
29214D80000
|
unkown image
|
page read and write
|
|
|
|
614000
|
unkown
|
page read and write
|
|
|
|
20ECB840000
|
unkown
|
page read and write
|
|
|
|
1000000
|
unkown image
|
page readonly
|
|
|
|
243C8318000
|
unkown
|
page read and write
|
|
|
|
243CCE20000
|
unkown
|
page read and write
|
|
|
|
7DF5020A0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F027A000
|
unkown image
|
page readonly
|
|
|
|
7FF4F05B6000
|
unkown image
|
page readonly
|
|
|
|
1A3AD8D9000
|
heap default
|
page read and write
|
|
|
|
10EF000
|
unkown image
|
page readonly
|
|
|
|
7FF4F96DA000
|
unkown image
|
page readonly
|
|
|
|
5D1000
|
unkown
|
page read and write
|
|
|
|
243CD2EF000
|
unkown
|
page read and write
|
|
|
|
5ED000
|
unkown
|
page read and write
|
|
|
|
7FF5CF199000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0170000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC60E000
|
unkown image
|
page readonly
|
|
|
|
DA0000
|
heap private
|
page read and write
|
|
|
|
7FEB0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0427000
|
unkown image
|
page readonly
|
|
|
|
243C8302000
|
unkown
|
page read and write
|
|
|
|
7DF5E4B52000
|
unkown image
|
page readonly
|
|
|
|
7DF5F8AC0000
|
unkown image
|
page readonly
|
|
|
|
CE75D7F000
|
unkown
|
page read and write
|
|
|
|
7DF4E2A20000
|
unkown image
|
page readonly
|
|
|
|
7FF4F016A000
|
unkown image
|
page readonly
|
|
|
|
5D1000
|
unkown
|
page read and write
|
|
|
|
35CDBFD000
|
unkown
|
page read and write
|
|
|
|
7FF4F02ED000
|
unkown image
|
page readonly
|
|
|
|
163CA070000
|
unkown image
|
page readonly
|
|
|
|
D90000
|
unkown
|
page read and write
|
|
|
|
CE75BFB000
|
unkown
|
page read and write
|
|
|
|
7DF5F8AA2000
|
unkown image
|
page readonly
|
|
|
|
7FF4F00F6000
|
unkown image
|
page readonly
|
|
|
|
5CE000
|
unkown
|
page read and write
|
|
|
|
29168862000
|
unkown
|
page read and write
|
|
|
|
7FF515E35000
|
unkown image
|
page readonly
|
|
|
|
108E000
|
unkown image
|
page write copy
|
|
|
|
35CD8FB000
|
unkown
|
page read and write
|
|
|
|
7FF4EC6BD000
|
unkown image
|
page readonly
|
|
|
|
7FF515ECD000
|
unkown image
|
page readonly
|
|
|
|
2DD2FDD0000
|
unkown
|
page read and write
|
|
|
|
20EE6900000
|
unkown
|
page read and write
|
|
|
|
5ED000
|
unkown
|
page read and write
|
|
|
|
7FF4F04C0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E2ED1000
|
unkown image
|
page readonly
|
|
|
|
243C7CD0000
|
unkown image
|
page readonly
|
|
|
|
608000
|
unkown
|
page read and write
|
|
|
|
5DA000
|
unkown
|
page read and write
|
|
|
|
106A000
|
unkown image
|
page readonly
|
|
|
|
7FF515ECF000
|
unkown image
|
page readonly
|
|
|
|
7DF5F8AC0000
|
unkown image
|
page readonly
|
|
|
|
109D000
|
unkown image
|
page read and write
|
|
|
|
7FF4EC59D000
|
unkown image
|
page readonly
|
|
|
|
7FF5C43CB000
|
unkown image
|
page readonly
|
|
|
|
20EE6D40000
|
unkown image
|
page write copy
|
|
|
|
20ECBE60000
|
unkown
|
page read and write
|
|
|
|
7DF5F8AB0000
|
unkown image
|
page readonly
|
|
|
|
20ECB848000
|
unkown
|
page read and write
|
|
|
|
243CCFF0000
|
unkown
|
page read and write
|
|
|
|
1A3AD8D3000
|
unkown
|
page read and write
|
|
|
|
7FF5CF218000
|
unkown image
|
page readonly
|
|
|
|
2DD2FE13000
|
unkown
|
page read and write
|
|
|
|
243C8060000
|
unkown image
|
page readonly
|
|
|
|
7FF5E30BC000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0164000
|
unkown image
|
page readonly
|
|
|
|
615000
|
unkown
|
page read and write
|
|
|
|
20ECB6B0000
|
unkown image
|
page readonly
|
|
|
|
7DF5E4B60000
|
unkown image
|
page readonly
|
|
|
|
7DF52B7D2000
|
unkown image
|
page readonly
|
|
|
|
7FF515C96000
|
unkown image
|
page readonly
|
|
|
|
7FF5E2E6B000
|
unkown image
|
page readonly
|
|
|
|
7DF429690000
|
unkown image
|
page readonly
|
|
|
|
7FF5C43EB000
|
unkown image
|
page readonly
|
|
|
|
7FF5E2F4D000
|
unkown image
|
page readonly
|
|
|
|
7DF5E4B62000
|
unkown image
|
page readonly
|
|
|
|
3B6E27E000
|
unkown
|
page read and write
|
|
|
|
CE7647F000
|
unkown
|
page read and write
|
|
|
|
243C7A79000
|
unkown
|
page read and write
|
|
|
|
243CD22C000
|
unkown
|
page read and write
|
|
|
|
56A000
|
heap default
|
page read and write
|
|
|
|
35CDCFE000
|
unkown
|
page read and write
|
|
|
|
7DF4D7BC0000
|
unkown image
|
page readonly
|
|
|
|
2DD2FD50000
|
unkown image
|
page readonly
|
|
|
|
7FF4F04E7000
|
unkown image
|
page readonly
|
|
|
|
5C9000
|
unkown
|
page read and write
|
|
|
|
1A3AD8DC000
|
heap default
|
page read and write
|
|
|
|
5F9000
|
unkown
|
page read and write
|
|
|
|
20ECBC00000
|
unkown image
|
page readonly
|
|
|
|
5F9000
|
unkown
|
page read and write
|
|
|
|
291686B0000
|
heap private
|
page read and write
|
|
|
|
2DD2FE00000
|
unkown
|
page read and write
|
|
|
|
7FF5C4307000
|
unkown image
|
page readonly
|
|
|
|
7FF52A133000
|
unkown image
|
page readonly
|
|
|
|
54C000
|
unkown
|
page read and write
|
|
|
|
F00C9FF000
|
unkown
|
page read and write
|
|
|
|
7FF51565D000
|
unkown image
|
page readonly
|
|
|
|
608000
|
unkown
|
page read and write
|
|
|
|
D1E000
|
unkown
|
page read and write
|
|
|
|
7DF50F090000
|
unkown image
|
page readonly
|
|
|
|
9D59DFF000
|
unkown
|
page read and write
|
|
|
|
7FF4F977E000
|
unkown image
|
page readonly
|
|
|
|
20EE6229000
|
unkown
|
page read and write
|
|
|
|
7DF53FAD0000
|
unkown image
|
page readonly
|
|
|
|
460000
|
heap default
|
page read and write
|
|
|
|
1001000
|
unkown image
|
page execute read
|
|
|
|
7FF52A1BB000
|
unkown image
|
page readonly
|
|
|
|
243C7990000
|
unkown
|
page read and write
|
|
|
|
58B000
|
heap default
|
page read and write
|
|
|
|
29168870000
|
unkown
|
page read and write
|
|
|
|
7FF5E2EA1000
|
unkown image
|
page readonly
|
|
|
|
243C7A77000
|
unkown
|
page read and write
|
|
|
|
20ECB846000
|
unkown
|
page read and write
|
|
|
|
20EE6802000
|
unkown
|
page read and write
|
|
|
|
7FF515EB4000
|
unkown image
|
page readonly
|
|
|
|
20ECB6B0000
|
unkown image
|
page readonly
|
|
|
|
5CD000
|
unkown
|
page read and write
|
|
|
|
291686F0000
|
unkown image
|
page readonly
|
|
|
|
1093000
|
unkown image
|
page read and write
|
|
|
|
7FF5E3031000
|
unkown image
|
page readonly
|
|
|
|
2DD30530000
|
unkown
|
page read and write
|
|
|
|
7FF4F05DB000
|
unkown image
|
page readonly
|
|
|
|
7DF5F8AA2000
|
unkown image
|
page readonly
|
|
|
|
5D3000
|
unkown
|
page read and write
|
|
|
|
163CA0FA000
|
unkown
|
page read and write
|
|
|
|
40000
|
unkown image
|
page readonly
|
|
|
|
243CD110000
|
unkown
|
page read and write
|
|
|
|
243CCE30000
|
unkown
|
page read and write
|
|
|
|
7DF53FAD2000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0555000
|
unkown image
|
page readonly
|
|
|
|
7DF5F8AB2000
|
unkown image
|
page readonly
|
|
|
|
7FF5E2984000
|
unkown image
|
page readonly
|
|
|
|
639000
|
unkown
|
page read and write
|
|
|
|
7FF4F96C5000
|
unkown image
|
page readonly
|
|
|
|
35CD77C000
|
unkown
|
page read and write
|
|
|
|
7FF4F0340000
|
unkown image
|
page readonly
|
|
|
|
20ECBD80000
|
unkown image
|
page readonly
|
|
|
|
7FF5E309C000
|
unkown image
|
page readonly
|
|
|
|
29214DA0000
|
unkown image
|
page readonly
|
|
|
|
243CCFF0000
|
unkown
|
page read and write
|
|
|
|
7FF4EC78F000
|
unkown image
|
page readonly
|
|
|
|
5DF000
|
unkown
|
page read and write
|
|
|
|
7FF4F0177000
|
unkown image
|
page readonly
|
|
|
|
7FF5E30A7000
|
unkown image
|
page readonly
|
|
|
|
2DD30530000
|
unkown
|
page read and write
|
|
|
|
1005000
|
unkown image
|
page read and write
|
|
|
|
29168E70000
|
unkown
|
page read and write
|
|
|
|
626FEFF000
|
unkown
|
page read and write
|
|
|
|
35CD5FE000
|
unkown
|
page read and write
|
|
|
|
7FF52A1AD000
|
unkown image
|
page readonly
|
|
|
|
7FF5E319B000
|
unkown image
|
page readonly
|
|
|
|
2DD2FE20000
|
unkown
|
page read and write
|
|
|
|
7FF4EC672000
|
unkown image
|
page readonly
|
|
|
|
7FF4F96A8000
|
unkown image
|
page readonly
|
|
|
|
163CA4B0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F017F000
|
unkown image
|
page readonly
|
|
|
|
F00CDFD000
|
unkown
|
page read and write
|
|
|
|
5D1000
|
unkown
|
page read and write
|
|
|
|
7DF4F6970000
|
unkown image
|
page readonly
|
|
|
|
7FF515C6D000
|
unkown image
|
page readonly
|
|
|
|
20ECB884000
|
unkown
|
page read and write
|
|
|
|
CE7637F000
|
unkown
|
page read and write
|
|
|
|
7FF5C43E4000
|
unkown image
|
page readonly
|
|
|
|
243CD261000
|
unkown
|
page read and write
|
|
|
|
2B3000
|
unkown
|
page read and write
|
|
|
|
603000
|
unkown
|
page read and write
|
|
|
|
2700000
|
heap private
|
page read and write
|
|
|
|
7FF5C43CE000
|
unkown image
|
page readonly
|
|
|
|
7FF4F053A000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC6F5000
|
unkown image
|
page readonly
|
|
|
|
7FF5E2ED3000
|
unkown image
|
page readonly
|
|
|
|
7FF5C42F7000
|
unkown image
|
page readonly
|
|
|
|
7FF4F9687000
|
unkown image
|
page readonly
|
|
|
|
29168902000
|
unkown
|
page read and write
|
|
|
|
7FF5CF157000
|
unkown image
|
page readonly
|
|
|
|
87DC978000
|
unkown
|
page read and write
|
|
|
|
7FF4EFD99000
|
unkown image
|
page readonly
|
|
|
|
7FF52A1B4000
|
unkown image
|
page readonly
|
|
|
|
243CD0F0000
|
unkown
|
page read and write
|
|
|
|
243C7ED0000
|
unkown image
|
page readonly
|
|
|
|
20ECB84E000
|
unkown
|
page read and write
|
|
|
|
7FF4EC697000
|
unkown image
|
page readonly
|
|
|
|
5DA000
|
unkown
|
page read and write
|
|
|
|
7FF4F05ED000
|
unkown image
|
page readonly
|
|
|
|
7FF5E319E000
|
unkown image
|
page readonly
|
|
|
|
F00CEFD000
|
unkown
|
page read and write
|
|
|
|
243C78F0000
|
unkown image
|
page read and write
|
|
|
|
2610000
|
unkown
|
page read and write
|
|
|
|
7FF5E3092000
|
unkown image
|
page readonly
|
|
|
|
7FF4EBFD4000
|
unkown image
|
page readonly
|
|
|
|
3B4F000
|
unkown
|
page read and write
|
|
|
|
7FF4F9748000
|
unkown image
|
page readonly
|
|
|
|
1A3AD720000
|
unkown image
|
page readonly
|
|
|
|
7FF5C42B0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F04C8000
|
unkown image
|
page readonly
|
|
|
|
1098000
|
unkown image
|
page read and write
|
|
|
|
1A3AD95F000
|
unkown
|
page read and write
|
|
|
|
7FF515BD7000
|
unkown image
|
page readonly
|
|
|
|
9D599FB000
|
unkown
|
page read and write
|
|
|
|
243C7960000
|
heap default
|
page read and write
|
|
|
|
29214E3E000
|
unkown
|
page read and write
|
|
|
|
7DF52B7C0000
|
unkown image
|
page readonly
|
|
|
|
7DF53FAC2000
|
unkown image
|
page readonly
|
|
|
|
1094000
|
unkown image
|
page write copy
|
|
|
|
292152E0000
|
unkown image
|
page readonly
|
|
|
|
40000
|
unkown image
|
page readonly
|
|
|
|
29214E13000
|
unkown
|
page read and write
|
|
|
|
7FF5E30DD000
|
unkown image
|
page readonly
|
|
|
|
9D59EFB000
|
unkown
|
page read and write
|
|
|
|
7FF4F05EF000
|
unkown image
|
page readonly
|
|
|
|
243CD20E000
|
unkown
|
page read and write
|
|
|
|
20EE6213000
|
unkown
|
page read and write
|
|
|
|
7FF5C43FF000
|
unkown image
|
page readonly
|
|
|
|
20EE5FF0000
|
unkown image
|
page readonly
|
|
|
|
87DD27C000
|
unkown
|
page read and write
|
|
|
|
243CCFE1000
|
unkown
|
page read and write
|
|
|
|
29214E28000
|
unkown
|
page read and write
|
|
|
|
7DF5E4B70000
|
unkown image
|
page readonly
|
|
|
|
7FF4F974F000
|
unkown image
|
page readonly
|
|
|
|
7FF5D0C59000
|
unkown image
|
page readonly
|
|
|
|
20ECB861000
|
unkown
|
page read and write
|
|
|
|
5CD000
|
unkown
|
page read and write
|
|
|
|
87DCDFE000
|
unkown
|
page read and write
|
|
|
|
30000
|
unkown image
|
page read and write
|
|
|
|
7FF5CF24B000
|
unkown image
|
page readonly
|
|
|
|
243CD302000
|
unkown
|
page read and write
|
|
|
|
54A000
|
unkown
|
page readonly
|
|
|
|
7FF515E9B000
|
unkown image
|
page readonly
|
|
|
|
7FF5CF21F000
|
unkown image
|
page readonly
|
|
|
|
7FF5CF18D000
|
unkown image
|
page readonly
|
|
|
|
20ECB857000
|
unkown
|
page read and write
|
|
|
|
7DF505EE2000
|
unkown image
|
page readonly
|
|
|
|
243C8190000
|
unkown image
|
page readonly
|
|
|
|
600000
|
unkown
|
page read and write
|
|
|
|
7FF5C43C6000
|
unkown image
|
page readonly
|
|
|
|
7FFC2000
|
unkown image
|
page readonly
|
|
|
|
7FF5CEF16000
|
unkown image
|
page readonly
|
|
|
|
1A3AD93F000
|
heap default
|
page read and write
|
|
|
|
29168D80000
|
unkown image
|
page readonly
|
|
|
|
7FF4F015B000
|
unkown image
|
page readonly
|
|
|
|
7FF5C42EC000
|
unkown image
|
page readonly
|
|
|
|
1A3AD810000
|
unkown
|
page read and write
|
|
|
|
7FF5E2D7B000
|
unkown image
|
page readonly
|
|
|
|
29214E00000
|
unkown
|
page read and write
|
|
|
|
7FF515DB2000
|
unkown image
|
page readonly
|
|
|
|
1A3AD8B4000
|
unkown
|
page read and write
|
|
|
|
29168913000
|
unkown
|
page read and write
|
|
|
|
7DF50F090000
|
unkown image
|
page readonly
|
|
|
|
243C7910000
|
unkown image
|
page readonly
|
|
|
|
1A3AD8DB000
|
unkown
|
page read and write
|
|
|
|
7FF4F0313000
|
unkown image
|
page readonly
|
|
|
|
7FF5C43FF000
|
unkown image
|
page readonly
|
|
|
|
7DF505EF2000
|
unkown image
|
page readonly
|
|
|
|
20ECB85C000
|
unkown
|
page read and write
|
|
|
|
243CD000000
|
unkown
|
page read and write
|
|
|
|
7FF5CEF58000
|
unkown image
|
page readonly
|
|
|
|
7FFD0000
|
unkown image
|
page readonly
|
|
|
|
243C89E0000
|
unkown
|
page read and write
|
|
|
|
29168800000
|
unkown
|
page read and write
|
|
|
|
CE7627F000
|
unkown
|
page read and write
|
|
|
|
7FF5E2C5F000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC468000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0464000
|
unkown image
|
page readonly
|
|
|
|
1A3AD830000
|
unkown
|
page read and write
|
|
|
|
7FF5E30B7000
|
unkown image
|
page readonly
|
|
|
|
C80000
|
unkown
|
page read and write
|
|
|
|
7FF4EC687000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC6DA000
|
unkown image
|
page readonly
|
|
|
|
7FF52A1CF000
|
unkown image
|
page readonly
|
|
|
|
1A3AE193000
|
unkown
|
page read and write
|
|
|
|
87DCFFB000
|
unkown
|
page read and write
|
|
|
|
7FF5CF25F000
|
unkown image
|
page readonly
|
|
|
|
291686C0000
|
unkown image
|
page readonly
|
|
|
|
7FFB2000
|
unkown image
|
page readonly
|
|
|
|
29215460000
|
unkown image
|
page readonly
|
|
|
|
7FF4F04E3000
|
unkown image
|
page readonly
|
|
|
|
87DCE7E000
|
unkown
|
page read and write
|
|
|
|
7FF5E3194000
|
unkown image
|
page readonly
|
|
|
|
7FF5E2EA3000
|
unkown image
|
page readonly
|
|
|
|
7FF5C4145000
|
unkown image
|
page readonly
|
|
|
|
5ED000
|
unkown
|
page read and write
|
|
|
|
CDE000
|
unkown
|
page read and write
|
|
|
|
7FF4EC77B000
|
unkown image
|
page readonly
|
|
|
|
7FF515E8F000
|
unkown image
|
page readonly
|
|
|
|
1A3AD93F000
|
unkown
|
page read and write
|
|
|
|
243C8202000
|
unkown
|
page read and write
|
|
|
|
D40000
|
heap private
|
page read and write
|
|
|
|
243C7A00000
|
unkown
|
page read and write
|
|
|
|
243CCFE0000
|
unkown
|
page read and write
|
|
|
|
7DF5D9D02000
|
unkown image
|
page readonly
|
|
|
|
5D1000
|
unkown
|
page read and write
|
|
|
|
7FF515DBC000
|
unkown image
|
page readonly
|
|
|
|
3B6E0FF000
|
unkown
|
page read and write
|
|
|
|
163CA106000
|
unkown
|
page read and write
|
|
|
|
7DF53FAD0000
|
unkown image
|
page readonly
|
|
|
|
20ECB813000
|
unkown
|
page read and write
|
|
|
|
1A3AD8E7000
|
unkown
|
page read and write
|
|
|
|
2DD30460000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC52D000
|
unkown image
|
page readonly
|
|
|
|
7FF52A105000
|
unkown image
|
page readonly
|
|
|
|
7FF4F02E3000
|
unkown image
|
page readonly
|
|
|
|
3C4D000
|
unkown
|
page read and write
|
|
|
|
29214E64000
|
unkown
|
page read and write
|
|
|
|
7DF5D9CF2000
|
unkown image
|
page readonly
|
|
|
|
35CCF8B000
|
unkown
|
page read and write
|
|
|
|
243C81F0000
|
unkown
|
page read and write
|
|
|
|
29214D90000
|
heap private
|
page read and write
|
|
|
|
440000
|
unkown image
|
page readonly
|
|
|
|
2DD30800000
|
unkown
|
page read and write
|
|
|
|
7FFB0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E2D54000
|
unkown image
|
page readonly
|
|
|
|
7FF5CF130000
|
unkown image
|
page readonly
|
|
|
|
1A3AD8E7000
|
unkown
|
page read and write
|
|
|
|
7FF5CE9DB000
|
unkown image
|
page readonly
|
|
|
|
7FF4EFDE5000
|
unkown image
|
page readonly
|
|
|
|
243C7A55000
|
unkown
|
page read and write
|
|
|
|
1A3AD970000
|
unkown image
|
page readonly
|
|
|
|
35CD3FB000
|
unkown
|
page read and write
|
|
|
|
7FF5CF230000
|
unkown image
|
page readonly
|
|
|
|
5D3000
|
unkown
|
page read and write
|
|
|
|
163CA2B0000
|
unkown image
|
page readonly
|
|
|
|
7DF5D9D00000
|
unkown image
|
page readonly
|
|
|
|
7FF515B5A000
|
unkown image
|
page readonly
|
|
|
|
7DF52B7E0000
|
unkown image
|
page readonly
|
|
|
|
D90000
|
unkown
|
page read and write
|
|
|
|
7FF515EBE000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC774000
|
unkown image
|
page readonly
|
|
|
|
2DD2FE58000
|
unkown
|
page read and write
|
|
|
|
7FF4F952D000
|
unkown image
|
page readonly
|
|
|
|
7DF5D9D02000
|
unkown image
|
page readonly
|
|
|
|
7FF4F96BD000
|
unkown image
|
page readonly
|
|
|
|
35CD9FC000
|
unkown
|
page read and write
|
|
|
|
243C7B13000
|
unkown
|
page read and write
|
|
|
|
163CA108000
|
unkown
|
page read and write
|
|
|
|
1A3AE180000
|
unkown
|
page read and write
|
|
|
|
7FF4EC78D000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC78B000
|
unkown image
|
page readonly
|
|
|
|
163CA040000
|
unkown image
|
page readonly
|
|
|
|
243CD2E4000
|
unkown
|
page read and write
|
|
|
|
7FF5C43B8000
|
unkown image
|
page readonly
|
|
|
|
20ECB700000
|
heap default
|
page read and write
|
|
|
|
291687F0000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC2EA000
|
unkown image
|
page readonly
|
|
|
|
7FF5E31AF000
|
unkown image
|
page readonly
|
|
|
|
7DF3FFF50000
|
unkown image
|
page readonly
|
|
|
|
615000
|
unkown
|
page read and write
|
|
|
|
243C8E20000
|
unkown
|
page read and write
|
|
|
|
1A3AE183000
|
unkown
|
page read and write
|
|
|
|
609000
|
unkown
|
page read and write
|
|
|
|
7FF52A1A0000
|
unkown image
|
page readonly
|
|
|
|
7DF52B7C2000
|
unkown image
|
page readonly
|
|
|
|
7FF4F978F000
|
unkown image
|
page readonly
|
|
|
|
20EE6020000
|
heap default
|
page read and write
|
|
|
|
1A3AD8B4000
|
heap default
|
page read and write
|
|
|
|
36E3000
|
heap private
|
page read and write
|
|
|
|
EAC000
|
unkown
|
page read and write
|
|
|
|
20ECB863000
|
unkown
|
page read and write
|
|
|
|
7FF4EC456000
|
unkown image
|
page readonly
|
|
|
|
243C7900000
|
heap private
|
page read and write
|
|
|
|
20EE61F0000
|
unkown
|
page read and write
|
|
|
|
20ECB832000
|
unkown
|
page read and write
|
|
|
|
7DF5D9D10000
|
unkown image
|
page readonly
|
|
|
|
7DF52B7E0000
|
unkown image
|
page readonly
|
|
|
|
1000000
|
unkown image
|
page readonly
|
|
|
|
20ECB86A000
|
unkown
|
page read and write
|
|
|
|
7DF5F8AA0000
|
unkown image
|
page readonly
|
|
|
|
1A3AD927000
|
unkown
|
page read and write
|
|
|
|
7DF52B7C2000
|
unkown image
|
page readonly
|
|
|
|
8A0000
|
unkown image
|
page readonly
|
|
|
|
5D5000
|
unkown
|
page read and write
|
|
|
|
7FF4F02DC000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC6A8000
|
unkown image
|
page readonly
|
|
|
|
7DF52B7C0000
|
unkown image
|
page readonly
|
|
|
|
7FF5C43BF000
|
unkown image
|
page readonly
|
|
|
|
1A3AD8D3000
|
heap default
|
page read and write
|
|
|
|
7FF4F9760000
|
unkown image
|
page readonly
|
|
|
|
7DF5E4B50000
|
unkown image
|
page readonly
|
|
|
|
7FF5E311D000
|
unkown image
|
page readonly
|
|
|
|
2DD30530000
|
unkown
|
page read and write
|
|
|
|
5E3000
|
unkown
|
page read and write
|
|
|
|
7FF5CF16D000
|
unkown image
|
page readonly
|
|
|
|
20ECB7E0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E316F000
|
unkown image
|
page readonly
|
|
|
|
7FF5E2F00000
|
unkown image
|
page readonly
|
|
|
|
1A3ADB30000
|
unkown
|
page read and write
|
|
|
|
7FF5C432D000
|
unkown image
|
page readonly
|
|
|
|
7FF515E05000
|
unkown image
|
page readonly
|
|
|
|
29214E79000
|
unkown
|
page read and write
|
|
|
|
7FF4F04C4000
|
unkown image
|
page readonly
|
|
|
|
7FF4F02DA000
|
unkown image
|
page readonly
|
|
|
|
243C8358000
|
unkown
|
page read and write
|
|
|
|
7FF5E317B000
|
unkown image
|
page readonly
|
|
|
|
5D3000
|
unkown
|
page read and write
|
|
|
|
243CD120000
|
unkown
|
page read and write
|
|
|
|
7FFB0000
|
unkown image
|
page readonly
|
|
|
|
20EE6100000
|
unkown image
|
page readonly
|
|
|
|
7FF52A135000
|
unkown image
|
page readonly
|
|
|
|
D1D607B000
|
unkown
|
page read and write
|
|
|
|
7FF5CEF08000
|
unkown image
|
page readonly
|
|
|
|
26F0000
|
heap private
|
page read and write
|
|
|
|
7DF52B7D0000
|
unkown image
|
page readonly
|
|
|
|
87DCA79000
|
unkown
|
page read and write
|
|
|
|
1A3AD960000
|
unkown
|
page read and write
|
|
|
|
87DCC7E000
|
unkown
|
page read and write
|
|
|
|
1100000
|
unkown image
|
page readonly
|
|
|
|
20EE6932000
|
unkown
|
page read and write
|
|
|
|
7FF52A113000
|
unkown image
|
page readonly
|
|
|
|
20ECB85A000
|
unkown
|
page read and write
|
|
|
|
7DF502092000
|
unkown image
|
page readonly
|
|
|
|
1A3AD927000
|
heap default
|
page read and write
|
|
|
|
7FF4F05BB000
|
unkown image
|
page readonly
|
|
|
|
5D3000
|
unkown
|
page read and write
|
|
|
|
2DD2FDA0000
|
heap default
|
page read and write
|
|
|
|
243C8215000
|
unkown
|
page read and write
|
|
|
|
7FF4F05A8000
|
unkown image
|
page readonly
|
|
|
|
243CD100000
|
unkown
|
page read and write
|
|
|
|
1A3AD927000
|
unkown
|
page read and write
|
|
|
|
593000
|
heap default
|
page read and write
|
|
|
|
F00CF7E000
|
unkown
|
page read and write
|
|
|
|
29214DA0000
|
unkown image
|
page readonly
|
|
|
|
7FF515E13000
|
unkown image
|
page readonly
|
|
|
|
626FCFB000
|
unkown
|
page read and write
|
|
|
|
243CD090000
|
unkown
|
page read and write
|
|
|
|
7DF505EE0000
|
unkown image
|
page readonly
|
|
|
|
7FF515EAD000
|
unkown image
|
page readonly
|
|
|
|
7FF4F04D2000
|
unkown image
|
page readonly
|
|
|
|
7FF5C429D000
|
unkown image
|
page readonly
|
|
|
|
1A3AD95F000
|
unkown
|
page read and write
|
|
|
|
1A3AD8AF000
|
unkown
|
page read and write
|
|
|
|
2DD2FE29000
|
unkown
|
page read and write
|
|
|
|
7FF4F043F000
|
unkown image
|
page readonly
|
|
|
|
243C7930000
|
unkown image
|
page readonly
|
|
|
|
7DF5D9CF0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F04FC000
|
unkown image
|
page readonly
|
|
|
|
7FF5C4339000
|
unkown image
|
page readonly
|
|
|
|
20ECB800000
|
unkown
|
page read and write
|
|
|
|
C6D000
|
unkown
|
page read and write
|
|
|
|
7FF515EBB000
|
unkown image
|
page readonly
|
|
|
|
7FF5CF167000
|
unkown image
|
page readonly
|
|
|
|
465000
|
heap default
|
page read and write
|
|
|
|
20ECB87E000
|
unkown
|
page read and write
|
|
|
|
7FF5E3084000
|
unkown image
|
page readonly
|
|
|
|
5E3000
|
unkown
|
page read and write
|
|
|
|
60B000
|
unkown
|
page read and write
|
|
|
|
7DF502092000
|
unkown image
|
page readonly
|
|
|
|
20EE6313000
|
unkown
|
page read and write
|
|
|
|
20EE5FB0000
|
unkown image
|
page read and write
|
|
|
|
2DD30602000
|
unkown
|
page read and write
|
|
|
|
D1D64FF000
|
unkown
|
page read and write
|
|
|
|
243CCFE4000
|
unkown
|
page read and write
|
|
|
|
29168877000
|
unkown
|
page read and write
|
|
|
|
7FF5E2E6E000
|
unkown image
|
page readonly
|
|
|
|
7FF515ECB000
|
unkown image
|
page readonly
|
|
|
|
7FF5E30E5000
|
unkown image
|
page readonly
|
|
|
|
243CCFC0000
|
unkown
|
page read and write
|
|
|
|
1A3AE193000
|
unkown
|
page read and write
|
|
|
|
7DF5F8AB2000
|
unkown image
|
page readonly
|
|
|
|
CE7657E000
|
unkown
|
page read and write
|
|
|
|
7DF505EE2000
|
unkown image
|
page readonly
|
|
|
|
243CD2A1000
|
unkown
|
page read and write
|
|
|
|
243CD300000
|
unkown
|
page read and write
|
|
|
|
243C7A29000
|
unkown
|
page read and write
|
|
|
|
20ECB902000
|
unkown
|
page read and write
|
|
|
|
260F000
|
unkown
|
page read and write
|
|
|
|
608000
|
unkown
|
page read and write
|
|
|
|
7DF502090000
|
unkown image
|
page readonly
|
|
|
|
29168813000
|
unkown
|
page read and write
|
|
|
|
243C79A0000
|
unkown image
|
page read and write
|
|
|
|
7FF5CF244000
|
unkown image
|
page readonly
|
|
|
|
1A0000
|
unkown image
|
page readonly
|
|
|
|
1A3AD8FA000
|
heap default
|
page read and write
|
|
|
|
7FF5C414D000
|
unkown image
|
page readonly
|
|
|
|
7FF5C3C44000
|
unkown image
|
page readonly
|
|
|
|
7FF515C8C000
|
unkown image
|
page readonly
|
|
|
|
7FF515BCD000
|
unkown image
|
page readonly
|
|
|
|
163CA0D0000
|
unkown image
|
page readonly
|
|
|
|
7DF5E4B62000
|
unkown image
|
page readonly
|
|
|
|
7FF4F975B000
|
unkown image
|
page readonly
|
|
|
|
243C8300000
|
unkown
|
page read and write
|
|
|
|
243CD2F7000
|
unkown
|
page read and write
|
|
|
|
20EE6600000
|
unkown image
|
page readonly
|
|
|
|
29168D90000
|
unkown image
|
page readonly
|
|
|
|
163CA0B0000
|
unkown
|
page read and write
|
|
|
|
7FF4F0384000
|
unkown image
|
page readonly
|
|
|
|
603000
|
unkown
|
page read and write
|
|
|
|
7FF4F03BC000
|
unkown image
|
page readonly
|
|
|
|
609000
|
unkown
|
page read and write
|
|
|
|
7DF502082000
|
unkown image
|
page readonly
|
|
|
|
7DF5D9D00000
|
unkown image
|
page readonly
|
|
|
|
7DF50F0A0000
|
unkown image
|
page readonly
|
|
|
|
243CD0D0000
|
unkown
|
page read and write
|
|
|
|
7FF4F03A3000
|
unkown image
|
page readonly
|
|
|
|
20ECB865000
|
unkown
|
page read and write
|
|
|
|
7FF4F05DE000
|
unkown image
|
page readonly
|
|
|
|
7FFD0000
|
unkown image
|
page readonly
|
|
|
|
7FF52A1CF000
|
unkown image
|
page readonly
|
|
|
|
5DA000
|
unkown
|
page read and write
|
|
|
|
7DF50F092000
|
unkown image
|
page readonly
|
|
|
|
7FF5CF24E000
|
unkown image
|
page readonly
|
|
|
|
626FD7C000
|
unkown
|
page read and write
|
|
|
|
7FF4EC36B000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC2EE000
|
unkown image
|
page readonly
|
|
|
|
243C8359000
|
unkown
|
page read and write
|
|
|
|
20ECB862000
|
unkown
|
page read and write
|
|
|
|
20ECB690000
|
unkown image
|
page read and write
|
|
|
|
7FF5C434A000
|
unkown image
|
page readonly
|
|
|
|
243CD200000
|
unkown
|
page read and write
|
|
|
|
243CCFC0000
|
unkown
|
page read and write
|
|
|
|
3B6E07C000
|
unkown
|
page read and write
|
|
|
|
7FF5C43EE000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0193000
|
unkown image
|
page readonly
|
|
|
|
2DD2FD70000
|
unkown image
|
page readonly
|
|
|
|
7DF502080000
|
unkown image
|
page readonly
|
|
|
|
9C000
|
unkown
|
page read and write
|
|
|
|
615000
|
unkown
|
page read and write
|
|
|
|
7FF4EC77E000
|
unkown image
|
page readonly
|
|
|
|
7FF4F92C0000
|
unkown image
|
page readonly
|
|
|
|
D1D63FE000
|
unkown
|
page read and write
|
|
|
|
2DD2FF02000
|
unkown
|
page read and write
|
|
|
|
7FF515DC3000
|
unkown image
|
page readonly
|
|
|
|
7FF5E31AF000
|
unkown image
|
page readonly
|
|
|
|
7FF5CEFFD000
|
unkown image
|
page readonly
|
|
|
|
7FF5C4335000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC67C000
|
unkown image
|
page readonly
|
|
|
|
7FF5E29A5000
|
unkown image
|
page readonly
|
|
|
|
2DD2FD80000
|
unkown image
|
page readonly
|
|
|
|
20ECB831000
|
unkown
|
page read and write
|
|
|
|
7FF4F96D3000
|
unkown image
|
page readonly
|
|
|
|
7FF515DC7000
|
unkown image
|
page readonly
|
|
|
|
243CD2A5000
|
unkown
|
page read and write
|
|
|
|
243CCEC0000
|
unkown
|
page read and write
|
|
|
|
2DD2FD30000
|
unkown image
|
page read and write
|
|
|
|
20ECB87D000
|
unkown
|
page read and write
|
|
|
|
243C7A9C000
|
unkown
|
page read and write
|
|
|
|
1010000
|
unkown image
|
page execute read
|
|
|
|
7FF4F02F7000
|
unkown image
|
page readonly
|
|
|
|
7DF505F00000
|
unkown image
|
page readonly
|
|
|
|
3B6E2FF000
|
unkown
|
page read and write
|
|
|
|
5E1000
|
unkown
|
page read and write
|
|
|
|
1A3AD6E0000
|
unkown image
|
page readonly
|
|
|
|
243C7A6F000
|
unkown
|
page read and write
|
|
|
|
7FF4EC756000
|
unkown image
|
page readonly
|
|
|
|
618000
|
unkown
|
page read and write
|
|
|
|
607000
|
unkown
|
page read and write
|
|
|
|
243CD2AC000
|
unkown
|
page read and write
|
|
|
|
20EE62C3000
|
unkown
|
page read and write
|
|
|
|
C20000
|
unkown image
|
page readonly
|
|
|
|
7FF515C62000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC685000
|
unkown image
|
page readonly
|
|
|
|
400000
|
unkown
|
page read and write
|
|
|
|
243C7A59000
|
unkown
|
page read and write
|
|
|
|
639000
|
unkown
|
page read and write
|
|
|
|
7DF53FAC0000
|
unkown image
|
page readonly
|
|
|
|
626FC7E000
|
unkown
|
page read and write
|
|
|
|
7DF50F080000
|
unkown image
|
page readonly
|
|
|
|
7DF5E4B70000
|
unkown image
|
page readonly
|
|
|
|
7FF5E30E9000
|
unkown image
|
page readonly
|
|
|
|
29214DC0000
|
unkown image
|
page readonly
|
|
|
|
7DF5D9CF2000
|
unkown image
|
page readonly
|
|
|
|
20ECB868000
|
unkown
|
page read and write
|
|
|
|
1A3AD95C000
|
unkown
|
page read and write
|
|
|
|
7FF5E30FA000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC664000
|
unkown image
|
page readonly
|
|
|
|
7FF5C408A000
|
unkown image
|
page readonly
|
|
|
|
1A3AD93F000
|
unkown
|
page read and write
|
|
|
|
7FF4EC23F000
|
unkown image
|
page readonly
|
|
|
|
7FF4F05D4000
|
unkown image
|
page readonly
|
|
|
|
7FF4F009F000
|
unkown image
|
page readonly
|
|
|
|
20EE6400000
|
unkown image
|
page readonly
|
|
|
|
20ECB6E0000
|
unkown image
|
page readonly
|
|
|
|
7FF5CF1AA000
|
unkown image
|
page readonly
|
|
|
|
243CD0E0000
|
unkown
|
page read and write
|
|
|
|
1003000
|
unkown image
|
page readonly
|
|
|
|
7FF5E3102000
|
unkown image
|
page readonly
|
|
|
|
87DC55C000
|
unkown
|
page read and write
|
|
|
|
598000
|
heap default
|
page read and write
|
|
|
|
7DF40CF50000
|
unkown image
|
page readonly
|
|
|
|
7FF5CF143000
|
unkown image
|
page readonly
|
|
|
|
87DCB7A000
|
unkown
|
page read and write
|
|
|
|
7FF5C430C000
|
unkown image
|
page readonly
|
|
|
|
7FF4F8F1C000
|
unkown image
|
page readonly
|
|
|
|
7DF502080000
|
unkown image
|
page readonly
|
|
|
|
7FF515D4E000
|
unkown image
|
page readonly
|
|
|
|
291686C0000
|
unkown image
|
page readonly
|
|
|
|
2DD2FD40000
|
heap private
|
page read and write
|
|
|
|
F00CA7E000
|
unkown
|
page read and write
|
|
|
|
7DF505EF0000
|
unkown image
|
page readonly
|
|
|
|
243CCFCE000
|
unkown
|
page read and write
|
|
|
|
87DD0FE000
|
unkown
|
page read and write
|
|
|
|
7FF5E30F3000
|
unkown image
|
page readonly
|
|
|
|
1A3ADAF0000
|
unkown image
|
page readonly
|
|
|
|
1000000
|
unkown image
|
page readonly
|
|
|
|
20EE6000000
|
unkown image
|
page readonly
|
|
|
|
7FF5E31AD000
|
unkown image
|
page readonly
|
|
|
|
614000
|
unkown
|
page read and write
|
|
|
|
7FF5C3F31000
|
unkown image
|
page readonly
|
|
|
|
29168A00000
|
unkown image
|
page readonly
|
|
|
|
D90000
|
unkown
|
page read and write
|
|
|
|
7FF4EFDE7000
|
unkown image
|
page readonly
|
|
|
|
7FF5E302E000
|
unkown image
|
page readonly
|
|
|
|
20EE6780000
|
unkown image
|
page readonly
|
|
|
|
614000
|
unkown
|
page read and write
|
|
|
|
243CD23E000
|
unkown
|
page read and write
|
|
|
|
7FF4F0311000
|
unkown image
|
page readonly
|
|
|
|
7FF52A188000
|
unkown image
|
page readonly
|
|
|
|
163CA0E0000
|
heap default
|
page read and write
|
|
|
|
7FF5E3168000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0525000
|
unkown image
|
page readonly
|
|
|
|
29215550000
|
unkown
|
page read and write
|
|
|
|
243C7A41000
|
unkown
|
page read and write
|
|
|
|
540000
|
unkown
|
page read and write
|
|
|
|
1A3AD8FA000
|
unkown
|
page read and write
|
|
|
|
2916883F000
|
unkown
|
page read and write
|
|
|
|
CE7607D000
|
unkown
|
page read and write
|
|
|
|
626FE7F000
|
unkown
|
page read and write
|
|
|
|
29214DF0000
|
heap default
|
page read and write
|
|
|
|
7DF502090000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0508000
|
unkown image
|
page readonly
|
|
|
|
20EE626D000
|
unkown
|
page read and write
|
|
|
|
163CA020000
|
unkown image
|
page read and write
|
|
|
|
7DF5E4B50000
|
unkown image
|
page readonly
|
|
|
|
20EE62CC000
|
unkown
|
page read and write
|
|
|
|
7FF52A0FD000
|
unkown image
|
page readonly
|
|
|
|
291686A0000
|
unkown image
|
page read and write
|
|
|
|
7FF4F02AE000
|
unkown image
|
page readonly
|
|
|
|
D1D617E000
|
unkown
|
page read and write
|
|
|
|
2DD2FD50000
|
unkown image
|
page readonly
|
|
|
|
9D5A0FE000
|
unkown
|
page read and write
|
|
|
|
614000
|
unkown
|
page read and write
|
|
|
|
450000
|
unkown
|
page execute and read and write
|
|
|
|
7DF53FAC0000
|
unkown image
|
page readonly
|
|
|
|
10AB000
|
unkown image
|
page read and write
|
|
|
|
7FF4F051D000
|
unkown image
|
page readonly
|
|
|
|
1A3AE194000
|
unkown
|
page read and write
|
|
|
|
C70000
|
unkown
|
page execute and read and write
|
|
|
|
20ECB842000
|
unkown
|
page read and write
|
|
|
|
87DD17F000
|
unkown
|
page read and write
|
|
|
|
626F97E000
|
unkown
|
page read and write
|
|
|
|
243C7B02000
|
unkown
|
page read and write
|
|
|
|
5F8000
|
unkown
|
page read and write
|
|
|
|
7FF5C4116000
|
unkown image
|
page readonly
|
|
|
|
7FF4F969C000
|
unkown image
|
page readonly
|
|
|
|
AA0000
|
unkown image
|
page readonly
|
|
|
|
20EE6200000
|
unkown
|
page read and write
|
|
|
|
626F9FE000
|
unkown
|
page read and write
|
|
|
|
1F0000
|
unkown
|
page read and write
|
|
|
|
7FF5D0C59000
|
unkown image
|
page readonly
|
|
|
|
540000
|
unkown
|
page execute and read and write
|
|
|
|
20ECB859000
|
unkown
|
page read and write
|
|
|
|
20ECB875000
|
unkown
|
page read and write
|
|
|
|
20EE62BB000
|
unkown
|
page read and write
|
|
|
|
29214E02000
|
unkown
|
page read and write
|
|
|
|
7FF515E96000
|
unkown image
|
page readonly
|
|
|
|
7FF4F05EB000
|
unkown image
|
page readonly
|
|
|
|
7FF5C4177000
|
unkown image
|
page readonly
|
|
|
|
243CCFC8000
|
unkown
|
page read and write
|
|
|
|
2B7000
|
unkown
|
page read and write
|
|
|
|
7FF4F05CD000
|
unkown image
|
page readonly
|
|
|
|
7FF5CF25D000
|
unkown image
|
page readonly
|
|
|
|
20EE623E000
|
unkown
|
page read and write
|
|
|
|
1A3AD8E7000
|
heap default
|
page read and write
|
|
|
|
5DA000
|
unkown
|
page read and write
|
|
|
|
243C8318000
|
unkown
|
page read and write
|
|
|
|
7DF505F00000
|
unkown image
|
page readonly
|
|
|
|
7FF5CF195000
|
unkown image
|
page readonly
|
|
|
|
600000
|
unkown
|
page read and write
|
|
|
|
36E3000
|
heap private
|
page read and write
|
|
|
|
106A000
|
unkown image
|
page readonly
|
|
|
|
243CD25D000
|
unkown
|
page read and write
|
|
|
|
243C81C0000
|
unkown image
|
page readonly
|
|
|
|
7DF5D9CF0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E2F7D000
|
unkown image
|
page readonly
|
|
|
|
7FFC0000
|
unkown image
|
page readonly
|
|
|
|
608000
|
unkown
|
page read and write
|
|
|
|
7DF43D990000
|
unkown image
|
page readonly
|
|
|
|
7FFC0000
|
unkown image
|
page readonly
|
|
|
|
87DD47F000
|
unkown
|
page read and write
|
|
|
|
7DF50F082000
|
unkown image
|
page readonly
|
|
|
|
108E000
|
unkown image
|
page read and write
|
|
|
|
35CD6FE000
|
unkown
|
page read and write
|
|
|
|
243C81B0000
|
unkown image
|
page readonly
|
|
|
|
20ECB844000
|
unkown
|
page read and write
|
|
|
|
1090000
|
unkown image
|
page write copy
|
|
|
|
7FF515DDC000
|
unkown image
|
page readonly
|
|
|
|
7FF515DA4000
|
unkown image
|
page readonly
|
|
|
|
7FF4F978F000
|
unkown image
|
page readonly
|
|
|
|
7DF53FAD2000
|
unkown image
|
page readonly
|
|
|
|
87DCD7B000
|
unkown
|
page read and write
|
|
|
|
541000
|
unkown
|
page execute read
|
|
|
|
7FF515E1A000
|
unkown image
|
page readonly
|
|
|
|
87DCEFF000
|
unkown
|
page read and write
|
|
|
|
2DD302D0000
|
unkown image
|
page readonly
|
|
|
|
29168829000
|
unkown
|
page read and write
|
|
|
|
20ECB858000
|
unkown
|
page read and write
|
|
|
|
7FF4F04DC000
|
unkown image
|
page readonly
|
|
|
|
7FF4F04A0000
|
unkown image
|
page readonly
|
|
|
|
7FF52A18F000
|
unkown image
|
page readonly
|
|
|
|
10EF000
|
unkown image
|
page readonly
|
|
|
|
FED000
|
unkown
|
page read and write
|
|
|
|
7FF4EBF82000
|
unkown image
|
page readonly
|
|
|
|
20ECB6A0000
|
heap private
|
page read and write
|
|
|
|
1A3ADB70000
|
unkown image
|
page readonly
|
|
|
|
7FF5CF1C5000
|
unkown image
|
page readonly
|
|
|
|
7FF5CF23D000
|
unkown image
|
page readonly
|
|
|
|
1001000
|
unkown image
|
page execute read
|
|
|
|
1A3AD8FA000
|
unkown
|
page read and write
|
|
|
|
7FF4EC5B2000
|
unkown image
|
page readonly
|
|
|
|
163CA035000
|
heap private
|
page read and write
|
|
|
|
7FF515DE8000
|
unkown image
|
page readonly
|
|
|
|
291686E0000
|
unkown image
|
page readonly
|
|
|
|
20ECBA00000
|
unkown image
|
page readonly
|
|
|
|
1A3AD6F0000
|
unkown image
|
page readonly
|
|
|
|
1006000
|
unkown image
|
page readonly
|
|
|
|
7FF515DD8000
|
unkown image
|
page readonly
|
|
|
|
29214E68000
|
unkown
|
page read and write
|
|
|
|
20ECB874000
|
unkown
|
page read and write
|
|
|
|
20EE62E5000
|
unkown
|
page read and write
|
|
|
|
626FDFC000
|
unkown
|
page read and write
|
|
|
|
7FF4EC604000
|
unkown image
|
page readonly
|
|
|
|
F00C55C000
|
unkown
|
page read and write
|
|
|
|
1A3AE183000
|
unkown
|
page read and write
|
|
|
|
243CD004000
|
unkown
|
page read and write
|
|
|
|
29214F13000
|
unkown
|
page read and write
|
|
|
|
7DF5F8AB0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E318D000
|
unkown image
|
page readonly
|
|
|
|
243C81F3000
|
unkown
|
page read and write
|
|
|
|
7FF5CF120000
|
unkown image
|
page readonly
|
|
|
|
CE7617D000
|
unkown
|
page read and write
|
|
|
|
243CD120000
|
unkown
|
page read and write
|
|
|
|
243CCEA0000
|
unkown
|
page read and write
|
|
|
|
243CCEB0000
|
unkown
|
page read and write
|
|
|
|
7FF4EC522000
|
unkown image
|
page readonly
|
|
|
|
7FF5E30A3000
|
unkown image
|
page readonly
|
|
|
|
5FA000
|
unkown
|
page read and write
|
|
|
|
29215470000
|
unkown image
|
page readonly
|
|
|
|
608000
|
unkown
|
page read and write
|
|
|
|
20ECB86D000
|
unkown
|
page read and write
|
|
|
|
7DF50F080000
|
unkown image
|
page readonly
|
|
|
|
2916885A000
|
unkown
|
page read and write
|
|
|
|
7FF5E31AB000
|
unkown image
|
page readonly
|
|
|
|
7FF5E30C8000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0529000
|
unkown image
|
page readonly
|
|
|
|
1A3AD878000
|
heap default
|
page read and write
|
|
|
|
20ECB87B000
|
unkown
|
page read and write
|
|
|
|
87DD07F000
|
unkown
|
page read and write
|
|
|
|
7FF4F9756000
|
unkown image
|
page readonly
|
|
|
|
243C7970000
|
unkown image
|
page readonly
|
|
|
|
7DF5D9D10000
|
unkown image
|
page readonly
|
|
|
|
243CD120000
|
unkown
|
page read and write
|
|
|
|
243C8050000
|
unkown image
|
page readonly
|
|
|
|
D1D60FE000
|
unkown
|
page read and write
|
|
|
|
5CD000
|
unkown
|
page read and write
|
|
|
|
20ECB860000
|
unkown
|
page read and write
|
|
|
|
54E000
|
unkown
|
page readonly
|
|
|
|
7FF4F038D000
|
unkown image
|
page readonly
|
|
|
|
614000
|
unkown
|
page read and write
|
|
|
|
7FF4F04A7000
|
unkown image
|
page readonly
|
|
|
|
7DF403DB0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F02A9000
|
unkown image
|
page readonly
|
|
|
|
10AD000
|
unkown image
|
page readonly
|
|
|
|
7FF515EA0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F96C9000
|
unkown image
|
page readonly
|
|
|
|
7FF4F04B0000
|
unkown image
|
page readonly
|
|
|
|
1A3AD6D0000
|
unkown image
|
page read and write
|
|
|
|
20ECB83A000
|
unkown
|
page read and write
|
|
|
|
243C7A91000
|
unkown
|
page read and write
|
|
|
|
35CDAFE000
|
unkown
|
page read and write
|
|
|
|
7FF515C9F000
|
unkown image
|
page readonly
|
|
|
|
CE757FB000
|
unkown
|
page read and write
|
|
|
|
7FF5E3115000
|
unkown image
|
page readonly
|
|
|
|
5E0000
|
unkown
|
page read and write
|
|
|
|
7FF52A196000
|
unkown image
|
page readonly
|
|
|
|
7DF50F0A0000
|
unkown image
|
page readonly
|
|
|
|
20EE6289000
|
unkown
|
page read and write
|
|
|
|
607000
|
unkown
|
page read and write
|
|
|
|
29214E58000
|
unkown
|
page read and write
|
|
|
|
3B6E37E000
|
unkown
|
page read and write
|
|
|
|
243C81D0000
|
unkown image
|
page readonly
|
|
|
|
20ECB6D0000
|
unkown image
|
page readonly
|
|
|
|
7FF5C4365000
|
unkown image
|
page readonly
|
|
|
|
7FF5E3088000
|
unkown image
|
page readonly
|
|
|
|
1099000
|
unkown image
|
page execute and read and write
|
|
|
|
243CD21C000
|
unkown
|
page read and write
|
|
|
|
614000
|
unkown
|
page read and write
|
|
|
|
7FF515DFD000
|
unkown image
|
page readonly
|
|
|
|
243C7AFE000
|
unkown
|
page read and write
|
|
|
|
5D5000
|
unkown
|
page read and write
|
|
|
|
243CD24B000
|
unkown
|
page read and write
|
|
|
|
243C8501000
|
unkown
|
page read and write
|
|
|
|
7FF5CF226000
|
unkown image
|
page readonly
|
|
|
|
1A3ADB30000
|
unkown
|
page read and write
|
|
|
|
7FF515E09000
|
unkown image
|
page readonly
|
|
|
|
243C7ABC000
|
unkown
|
page read and write
|
|
|
|
2DD300D0000
|
unkown image
|
page readonly
|
|
|
|
292152D0000
|
unkown image
|
page readonly
|
|
|
|
7DF505EF0000
|
unkown image
|
page readonly
|
|
|
|
7DF5F8AA0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E3033000
|
unkown image
|
page readonly
|
|
|
|
7FF52A0DE000
|
unkown image
|
page readonly
|
|
|
|
7FF5E3180000
|
unkown image
|
page readonly
|
|
|
|
7FF5C43DD000
|
unkown image
|
page readonly
|
|
|
|
1A3ADB30000
|
unkown
|
page read and write
|
|
|
|
7FF4EFD87000
|
unkown image
|
page readonly
|
|
|
|
243C7940000
|
unkown image
|
page readonly
|
|
|
|
20ECB86B000
|
unkown
|
page read and write
|
|
|
|
7FF4EC75B000
|
unkown image
|
page readonly
|
|
|
|
29214DD0000
|
unkown image
|
page readonly
|
|
|
|
560000
|
heap default
|
page read and write
|
|
|
|
614000
|
unkown
|
page read and write
|
|
|
|
7FF4F978B000
|
unkown image
|
page readonly
|
|
|
|
F00CCFE000
|
unkown
|
page read and write
|
|
|
|
F00CC7D000
|
unkown
|
page read and write
|
|
|
|
7FF4F977B000
|
unkown image
|
page readonly
|
|
|
|
243C8313000
|
unkown
|
page read and write
|
|
|
|
7FF4EC6D3000
|
unkown image
|
page readonly
|
|
|
|
2DD2FE02000
|
unkown
|
page read and write
|
|
|
|
2DD2FE3D000
|
unkown
|
page read and write
|
|
|
|
29168802000
|
unkown
|
page read and write
|
|
|
|
20ECB845000
|
unkown
|
page read and write
|
|
|
|
7FF4EC76D000
|
unkown image
|
page readonly
|
|
|
|
243C81A0000
|
unkown image
|
page readonly
|
|
|
|
7FF5C3F06000
|
unkown image
|
page readonly
|
|
|
|
7FF4F05AF000
|
unkown image
|
page readonly
|
|
|
|
7DF52B7D0000
|
unkown image
|
page readonly
|
|
|
|
7FF4EC75E000
|
unkown image
|
page readonly
|
|
|
|
7DF502082000
|
unkown image
|
page readonly
|
|
|
|
243CD120000
|
unkown
|
page read and write
|
|
|
|
243CD2FD000
|
unkown
|
page read and write
|
|
|
|
243C7A13000
|
unkown
|
page read and write
|
|
|
|
292150D0000
|
unkown image
|
page readonly
|
|
|
|
7FF4F0533000
|
unkown image
|
page readonly
|
|
|
|
20EE6110000
|
unkown image
|
page readonly
|
|
|
|
1A3AD8D6000
|
unkown
|
page read and write
|
|
|
|
163CA0F5000
|
unkown
|
page read and write
|
|
|
|
243C8900000
|
unkown image
|
page read and write
|
|
|
|
7DF5020A0000
|
unkown image
|
page readonly
|
|
|
|
1A3AD6F0000
|
unkown image
|
page readonly
|
|
|
|
20ECB864000
|
unkown
|
page read and write
|
|
|
|
7FF5C42AD000
|
unkown image
|
page readonly
|
|
|
|
20ECB86F000
|
unkown
|
page read and write
|
|
|
|
243C7910000
|
unkown image
|
page readonly
|
|
|
|
7FF5C43FD000
|
unkown image
|
page readonly
|
|
|
|
7FF5CF25F000
|
unkown image
|
page readonly
|
|
|
|
20EE5FD0000
|
unkown image
|
page readonly
|
|
|
|
243C7A8B000
|
unkown
|
page read and write
|
|
|
|
7FF4EC78F000
|
unkown image
|
page readonly
|
|
|
|
243C8200000
|
unkown
|
page read and write
|
|
|
|
20ECB841000
|
unkown
|
page read and write
|
|
|
|
163CA090000
|
unkown
|
page read and write
|
|
|
|
29214F02000
|
unkown
|
page read and write
|
|
|
|
7FF4F0121000
|
unkown image
|
page readonly
|
|
There are 969 hidden memdumps, click here to show them.