Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
cd.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{F14FAF2F-15AF-11EC-90E5-ECF4BB2D2496}.dat
|
Microsoft Word Document
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{F14FAF31-15AF-11EC-90E5-ECF4BB2D2496}.dat
|
Microsoft Word Document
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-17529550060\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-18270793970\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-21706820\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-4759708130\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-6757900\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin-8760897390\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20259167780\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin20332743330\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Tiles\pin8215062560\msapplication.xml
|
XML 1.0 document, ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\imagestore\wlm7n14\imagestore.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\0V71R0V5.htm
|
HTML document, ASCII text, with CRLF, LF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\d4a6d4bd[1].htm
|
HTML document, ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\3Y2ADQKS\rs=AA2YrTtiIgpyWC3dfQkzVoOu4jFUo5DWgw[1].js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\1G7O03DV.htm
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\favicon[1].ico
|
MS Windows icon resource - 1 icon, 39x34, 32 bits/pixel
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9QTQHWWN\googlelogo_color_84x28dp[1].png
|
PNG image data, 84 x 28, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\LM1X3BMT.htm
|
HTML document, UTF-8 Unicode text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\G62TDH9B\rs=AA2YrTt5urjnc1-as0vV15aU6T-f2ANE9g[1].css
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\desktop_searchbox_sprites318_hr[1].png
|
PNG image data, 40 x 124, 8-bit colormap, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\googlelogo_color_272x92dp[1].png
|
PNG image data, 544 x 184, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OTUW0Q90\index[1].htm
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\JavaDeployReg.log
|
ASCII text, with CRLF line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DF1C6E09CA4CF5EBDD.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DFFAD0E470126C2D77.TMP
|
data
|
dropped
|
|
There are 17 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\cd.exe
|
'C:\Users\user\Desktop\cd.exe'
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
|
|
|
|
C:\Program Files (x86)\Internet Explorer\iexplore.exe
|
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:4568 CREDAT:17410 /prefetch:2
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://menehleibe.com/images/bjM3gVEtKlUeWm2NnKw3/UycpbcugJuZhqNGVGh8/kwk4esZ_2F2xjDYD_2BSa_/2F328cjxY6AQM/kA5SneVc/JKL1AVTBXoV77D1JaKVgbri/d8lSYHOR5C/_2FOPoUzuMMso_2Bp/A_2Ffbx4wppa/aSm6IWIjM6R/Y44GbYY.avi
|
173.239.8.164
|
|
|
|
http://menehleibe.com/
|
173.239.8.164
|
|
|
|
http://google.com/
|
142.250.203.110
|
|
|
|
https://www.zotero.org/
|
unknown
|
|
|
|
https://ims-prod06.adobelogin.com
|
unknown
|
|
|
|
https://policies.google.com/privacy?hl=en-GB&fg=1&utm_source=ucbs
|
unknown
|
|
|
|
https://ogs.google.com/widget/app/so?bc=1
|
unknown
|
|
|
|
https://www.mendeley.com?dgcid=Mendeley_Desktop_Help-menu-website
|
unknown
|
|
|
|
http://www.broofa.com
|
unknown
|
|
|
|
https://service.elsevier.com/app/home/supporthub/mendeley/?dgcid=Mendeley_Desktop_Help-menu-FAQ
|
unknown
|
|
|
|
https://accounts.google.com/ServiceLogin?hl
|
unknown
|
|
|
|
https://crashpad.chromium.org/bug/new
|
unknown
|
|
|
|
https://www.gmu.edu/
|
unknown
|
|
|
|
https://www.google.co.uk/intl/en/about/products
|
unknown
|
|
|
|
https://www.google.com/index.php?url_bnm_redirect=http://google.com/?gws_rd=ssl_bnm_redirect=http://
|
unknown
|
|
|
|
https://p226681.mybetterdl.com/adServe/domainClick?ai=qR193HoKV_skvRDJ1Xl7Z2EMSqLSlBmindZv5NojCHOwn03uCMUnWWP1f_rG7YbjKg1peh-_obzBIj3uZHPpnj9EVoFzCvr6nUsZVZhWVPP-29LJmEHdmZ7b6Qy9a1mHTiLNxNNj-331YCaynPT02WREUdU8hBvdAVtzW-BnG_JiVnQIGgxQDiU7ugF2M-yuSZspRWMKjI0oZaL4_NY6BA8B78vhYDGtjMUdyxHqWTbxnarhY6PRQCoyupr1mhPBjhdEqJB6Nj2XmDvYXWw9hp-qFZn5gpnPqtE9sbJicJwX2fEbVjxB9kp2QAzznS8_6fjhgUFt3sQISiZ3D8mF7LCm2HeI0S938_gGwpSXr3tSAMcY_H2x07HFovOGSDpNKiXhLmiyflhHQ2DhJtv57Pgpt-TBvcxCEwrLEAaOW_go6oM85zEqQcFJgSFbjHo8VjLddbnKrYw&ui=PmRMc57CnhbNSfHhL5kCGmvi5v6ZZrF7dLiTNq3P25qokS0sVeF3FkXI0PDyooqap4CS6zytrLbvtEDBZZLJWA-odODn3W3LTPqV0hvm1VqP--qZkGGf_8AXd3hExnhV&si=1&oref=a606ca39dc85b39bdaa2bf88832fa198&optunit=SZspRWMKjI3Y6yHw-JV9WQ&rb=mhdAWEBiphk&rr=1&abtg=0
|
173.192.101.24
|
|
|
|
http://www.sysinternals.com
|
unknown
|
|
|
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
http://www.amazon.com/
|
unknown
|
|
|
|
https://www.mendeley.com/guides/using-citation-editor?dgcid=Mendeley_Desktop_Onboarding-Help-Cite
|
unknown
|
|
|
|
https://www.virustotal.com/about/terms-of-service%s
|
unknown
|
|
|
|
http://google.com
|
unknown
|
|
|
|
http://www.twitter.com/
|
unknown
|
|
|
|
https://crashpad.chromium.org/https://crashpad.chromium.org/bug/new
|
unknown
|
|
|
|
https://rrchnm.org/
|
unknown
|
|
|
|
https://artsandculture.google.com/partner/museo-reina-sofia
|
unknown
|
|
|
|
http://schema.org/WebPage
|
unknown
|
|
|
|
https://www.elsevier.com/legal/elsevier-website-terms-and-conditions
|
unknown
|
|
|
|
https://www.mendeley.com/guides?dgcid=Mendeley_Desktop_Help-menu-Help-guides
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crxupdate_urlBrowser
|
unknown
|
|
|
|
https://github.com/Juris-M/citeproc-js
|
unknown
|
|
|
|
http://www.sysinternals.comWindowPositionSOFTWARE
|
unknown
|
|
|
|
https://www.google.com
|
unknown
|
|
|
|
http://ww9.menehleibe.com/
|
unknown
|
|
|
|
https://consent.google.com/s?continue
|
unknown
|
|
|
|
https://mendeley.com/reference-management/web-importer/#id_1?dgcid=Mendeley_Desktop_Onboarding-Add-I
|
unknown
|
|
|
|
https://plasma.kde.org
|
unknown
|
|
|
|
https://ogs.google.com/widget/callout?prid=19025503
|
unknown
|
|
|
|
https://consent.google.com/d?continue
|
unknown
|
|
|
|
https://www.google.com/?gws_rd=ssl_bnm_redirect=http://google.com/?gws_rd=ssl
|
unknown
|
|
|
|
https://www.virustotal.comPOST4e3202fdbe953d628f650229af5b3eb49cd46b2d3bfe5546ae3c5fa48b554e0capikey
|
unknown
|
|
|
|
https://donate.google.com/checkout?campaignid%3D6420545008435200
|
unknown
|
|
|
|
https://adservice.google.com/adsid/google/ui
|
unknown
|
|
|
|
https://trends.google.com/hottrends
|
unknown
|
|
|
|
https://www.sysinternals.comntdllRtlInitUnicodeStringNtOpenDirectoryObjectNtQuerySectionNtQueryDirec
|
unknown
|
|
|
|
https://www.google.com/url?q=https://www.google.com/chrome/download-chrome-for-search/%3Fbrand%3DOKW
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
http://www.sysinternals.comopenFolder
|
unknown
|
|
|
|
https://gertrk.com/nlp/index.php?url_bnm_redirect=http://google.comRoot
|
unknown
|
|
|
|
https://www.mendeley.com/guides/desktop/04-read-highlight-annotate?dgcid=Mendeley_Desktop_Onboarding
|
unknown
|
|
|
|
http://www.reddit.com/
|
unknown
|
|
|
|
https://www.google.com/images/searchbox/desktop_searchbox_sprites318_hr.png
|
142.250.102.106
|
|
|
|
https://gertrk.com/nlp/index.php?url_bnm_redirect=http://google.com
|
168.119.139.96
|
|
|
|
https://service.elsevier.com/app/answers/detail/a_id/22094/kw/migrate/supporthub/mendeley/
|
unknown
|
|
|
|
https://www.google.com/?gws_rd%3Dssl
|
unknown
|
|
|
|
https://crashpad.chromium.org/
|
unknown
|
|
|
|
http://www.nytimes.com/
|
unknown
|
|
|
|
https://ims-na1-stg1.adobelogin.com
|
unknown
|
|
|
|
https://policies.google.com/terms?hl=en-GB&fg=1&utm_source=ucbs
|
unknown
|
|
|
|
https://mybetterdl.com/aS/feedclick?s=PmRMc57CnhYhj70e-I9ky5kfJerKhwxlfSMU3tyux_x5AGZrWUPSJmPzN2c9f2
|
unknown
|
|
|
|
https://www.google.com/?gws_rd=ssl
|
142.250.102.106
|
|
|
|
https://service.elsevier.com/app/answers/detail/a_id/19601/kw/connectivity/supporthub/mendeley/1setU
|
unknown
|
|
|
|
https://www.google.com/_/og/promos/
|
unknown
|
|
|
|
https://csl.mendeley.com
|
unknown
|
|
|
|
https://www.google.com/gen_204?ei=rKtAYY2rHY25kwWZrp3YAw&vet=10ahUKEwiNsaLc0P7yAhWN3KQKHRlXBzsQhJAHCBQ..s&gl=GB&pc=SEARCH_HOMEPAGE&isMobile=false
|
142.250.102.106
|
|
|
|
http://support.mendeley.com/customer/portal/articles/227955
|
unknown
|
|
|
|
https://gertrk.com/favicon.ico
|
168.119.139.96
|
|
|
|
https://www.elsevier.com/legal/privacy-policy
|
unknown
|
|
|
|
https://www.google.com/search?gws_rd%3Dssl%26q%3Dnebulae%26um%3D1%26ie%3DUTF-8%26tbm%3Disch%26csf%3D
|
unknown
|
|
|
|
http://agoogleaday.com/%23date%3D2011-06-04
|
unknown
|
|
|
|
http://creativecommons.org/licenses/by-sa/3.0/
|
unknown
|
|
|
|
https://service.elsevier.com/app/answers/detail/a_id/19611/kw/duplicates/supporthub/mendeley/Yes
|
unknown
|
|
|
|
https://www.google.com/images/branding/googlelogo/2x/googlelogo_color_272x92dp.png
|
142.250.102.106
|
|
|
|
http://p.yusukekamiyamane.com/
|
unknown
|
|
|
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://service.elsevier.com/app/contact/supporthub/mendeley?dgcid=Mendeley_Desktop_Help-menu-Contac
|
unknown
|
|
|
|
https://www.mendeley.com/library
|
unknown
|
|
|
|
https://www.mendeley.com/guides?dgcid=Mendeley_Desktop_Help-menu-Help-guideshttps://www.mendeley.com
|
unknown
|
|
|
|
http://citationstyles.org/
|
unknown
|
|
|
|
https://www.google.com/?gws_rd=ssl_bnm_redirect=http://google.com
|
unknown
|
|
|
|
http://www.sysinternals.comopenConnection
|
unknown
|
|
|
|
http://www.youtube.com/
|
unknown
|
|
|
|
https://github.com/citation-style-language/styles
|
unknown
|
|
|
|
http://www.wikipedia.com/
|
unknown
|
|
|
|
http://www.live.com/
|
unknown
|
|
|
|
http://www.sysinternals.comFileVersionLegalCopyright
|
unknown
|
|
|
|
https://citationstyles.org
|
unknown
|
|
|
|
http://menehleibe.com/Root
|
unknown
|
|
|
|
http://www.google.com/
|
142.250.102.106
|
|
There are 79 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
menehleibe.com
|
173.239.8.164
|
|
|
|
google.com
|
142.250.203.110
|
|
|
|
www.google.com
|
142.250.102.106
|
|
|
|
mybetterdl.com
|
173.192.101.24
|
|
|
|
gertrk.com
|
168.119.139.96
|
|
|
|
p226681.mybetterdl.com
|
173.192.101.24
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
173.239.8.164
|
menehleibe.com
|
United States
|
|
|
|
173.192.101.24
|
mybetterdl.com
|
United States
|
|
|
|
142.250.102.106
|
www.google.com
|
United States
|
|
|
|
142.250.203.110
|
google.com
|
United States
|
|
|
|
168.119.139.96
|
gertrk.com
|
Germany
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\internet explorer\iexplore.exe
|
{F14FAF2F-15AF-11EC-90E5-ECF4BB2D2496}
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Blocked
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Count
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
Time
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LoadTimeArray
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
CVListPingLastYMD
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
CVListPingBitmap
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
CVListPingRandomizedBitmap
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
DecayDateQueue
|
|
|
|
C:\Program Files\internet explorer\iexplore.exe
|
LastProcessed
|
|
There are 7 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
3138000
|
heap private
|
page read and write
|
|
|
|
3138000
|
heap private
|
page read and write
|
|
|
|
3138000
|
heap private
|
page read and write
|
|
|
|
3138000
|
heap private
|
page read and write
|
|
|
|
3138000
|
heap private
|
page read and write
|
|
|
|
3138000
|
heap private
|
page read and write
|
|
|
|
3138000
|
heap private
|
page read and write
|
|
|
|
3138000
|
heap private
|
page read and write
|
|
|
|
3138000
|
heap private
|
page read and write
|
|
|
|
2B8EA370000
|
unkown
|
page read and write
|
|
|
|
7FF598661000
|
unkown image
|
page readonly
|
|
|
|
24A8D84B000
|
heap default
|
page read and write
|
|
|
|
7FF5AE328000
|
unkown image
|
page readonly
|
|
|
|
7FF57AA92000
|
unkown image
|
page readonly
|
|
|
|
28E2A3D0000
|
unkown
|
page read and write
|
|
|
|
22F711B7000
|
unkown
|
page read and write
|
|
|
|
7DF564F80000
|
unkown image
|
page readonly
|
|
|
|
7FF598D09000
|
unkown image
|
page readonly
|
|
|
|
7FF543E1F000
|
unkown image
|
page readonly
|
|
|
|
22F70913000
|
unkown
|
page read and write
|
|
|
|
1FFC5A02000
|
unkown
|
page read and write
|
|
|
|
1E74347C000
|
unkown
|
page read and write
|
|
|
|
7DF5B8992000
|
unkown image
|
page readonly
|
|
|
|
96F000
|
unkown
|
page read and write
|
|
|
|
7FF562DFF000
|
unkown image
|
page readonly
|
|
|
|
1E74344A000
|
unkown
|
page read and write
|
|
|
|
7FF57ADAA000
|
unkown image
|
page readonly
|
|
|
|
2D1F000
|
unkown
|
page read and write
|
|
|
|
1FFC5264000
|
unkown
|
page read and write
|
|
|
|
7DF56CC92000
|
unkown image
|
page readonly
|
|
|
|
741B67E000
|
unkown
|
page read and write
|
|
|
|
7FF543CF7000
|
unkown image
|
page readonly
|
|
|
|
7DF46AB60000
|
unkown image
|
page readonly
|
|
|
|
7DF5A2450000
|
unkown image
|
page readonly
|
|
|
|
28E2A3F0000
|
unkown
|
page read and write
|
|
|
|
7FF598B5E000
|
unkown image
|
page readonly
|
|
|
|
EE5A67F000
|
unkown
|
page read and write
|
|
|
|
1E743600000
|
unkown image
|
page readonly
|
|
|
|
1E743513000
|
unkown
|
page read and write
|
|
|
|
7DF584B82000
|
unkown image
|
page readonly
|
|
|
|
7DF5B8980000
|
unkown image
|
page readonly
|
|
|
|
22F71162000
|
unkown
|
page read and write
|
|
|
|
7FF598CD7000
|
unkown image
|
page readonly
|
|
|
|
28E24D70000
|
unkown image
|
page read and write
|
|
|
|
22F7115E000
|
unkown
|
page read and write
|
|
|
|
28E24E3D000
|
unkown
|
page read and write
|
|
|
|
22F71163000
|
unkown
|
page read and write
|
|
|
|
7DF564F72000
|
unkown image
|
page readonly
|
|
|
|
1A6B3402000
|
unkown
|
page read and write
|
|
|
|
7FF57ACB0000
|
unkown image
|
page readonly
|
|
|
|
22F708C2000
|
unkown
|
page read and write
|
|
|
|
BE23979000
|
unkown
|
page read and write
|
|
|
|
7DF54DCE0000
|
unkown image
|
page readonly
|
|
|
|
28E2A2F0000
|
unkown
|
page read and write
|
|
|
|
430000
|
unkown image
|
page write copy
|
|
|
|
2809000
|
heap private
|
page read and write
|
|
|
|
28E2A4A0000
|
unkown
|
page read and write
|
|
|
|
22F71663000
|
unkown
|
page read and write
|
|
|
|
28E2A410000
|
unkown
|
page read and write
|
|
|
|
7FF57AC85000
|
unkown image
|
page readonly
|
|
|
|
22F7119F000
|
unkown
|
page read and write
|
|
|
|
7FF5985D6000
|
unkown image
|
page readonly
|
|
|
|
22F71166000
|
unkown
|
page read and write
|
|
|
|
1FFC5300000
|
unkown
|
page read and write
|
|
|
|
CD0000
|
heap private
|
page read and write
|
|
|
|
7FF543CBA000
|
unkown image
|
page readonly
|
|
|
|
92E000
|
heap default
|
page read and write
|
|
|
|
28E2A620000
|
unkown
|
page read and write
|
|
|
|
24A8DCC0000
|
unkown image
|
page readonly
|
|
|
|
7FF57AB1B000
|
unkown image
|
page readonly
|
|
|
|
22F70870000
|
unkown
|
page read and write
|
|
|
|
28E2A2C8000
|
unkown
|
page read and write
|
|
|
|
7FF598607000
|
unkown image
|
page readonly
|
|
|
|
1FFC528A000
|
unkown
|
page read and write
|
|
|
|
24A8D840000
|
heap default
|
page read and write
|
|
|
|
22F708D8000
|
unkown
|
page read and write
|
|
|
|
22F711B0000
|
unkown
|
page read and write
|
|
|
|
7FF55B0DD000
|
unkown image
|
page readonly
|
|
|
|
7FF5439D1000
|
unkown image
|
page readonly
|
|
|
|
1FFC5213000
|
unkown
|
page read and write
|
|
|
|
24A8D866000
|
unkown
|
page read and write
|
|
|
|
22F70750000
|
unkown image
|
page readonly
|
|
|
|
7DF5B8982000
|
unkown image
|
page readonly
|
|
|
|
7DF5A2BC2000
|
unkown image
|
page readonly
|
|
|
|
7FF5AEBE7000
|
unkown image
|
page readonly
|
|
|
|
7FF598609000
|
unkown image
|
page readonly
|
|
|
|
22F71163000
|
unkown
|
page read and write
|
|
|
|
7FEB0000
|
unkown image
|
page readonly
|
|
|
|
22F71176000
|
unkown
|
page read and write
|
|
|
|
7DF5A2460000
|
unkown image
|
page readonly
|
|
|
|
7FF543EFA000
|
unkown image
|
page readonly
|
|
|
|
7DF564F80000
|
unkown image
|
page readonly
|
|
|
|
810000
|
unkown image
|
page readonly
|
|
|
|
7FF598D46000
|
unkown image
|
page readonly
|
|
|
|
7FF598B6B000
|
unkown image
|
page readonly
|
|
|
|
77C807E000
|
unkown
|
page read and write
|
|
|
|
7FF57AD29000
|
unkown image
|
page readonly
|
|
|
|
2B8E9530000
|
unkown
|
page read and write
|
|
|
|
77C8477000
|
unkown
|
page read and write
|
|
|
|
BB91B7C000
|
unkown
|
page read and write
|
|
|
|
40000
|
unkown image
|
page readonly
|
|
|
|
404000
|
unkown image
|
page readonly
|
|
|
|
7FF57A959000
|
unkown image
|
page readonly
|
|
|
|
22F707E0000
|
unkown
|
page read and write
|
|
|
|
22F70829000
|
unkown
|
page read and write
|
|
|
|
22F71176000
|
unkown
|
page read and write
|
|
|
|
7FF598D3D000
|
unkown image
|
page readonly
|
|
|
|
28E25615000
|
unkown
|
page read and write
|
|
|
|
24A8D790000
|
unkown
|
page read and write
|
|
|
|
28E24C10000
|
unkown image
|
page readonly
|
|
|
|
77C827E000
|
unkown
|
page read and write
|
|
|
|
7DF5A2BC0000
|
unkown image
|
page readonly
|
|
|
|
1FFC5291000
|
unkown
|
page read and write
|
|
|
|
328F000
|
unkown
|
page read and write
|
|
|
|
7FF543D35000
|
unkown image
|
page readonly
|
|
|
|
7FF598BCD000
|
unkown image
|
page readonly
|
|
|
|
7DF4A0A90000
|
unkown image
|
page readonly
|
|
|
|
28E255D0000
|
unkown
|
page read and write
|
|
|
|
400000
|
unkown image
|
page readonly
|
|
|
|
7FF543E6D000
|
unkown image
|
page readonly
|
|
|
|
1FFC5253000
|
unkown
|
page read and write
|
|
|
|
1E743502000
|
unkown
|
page read and write
|
|
|
|
24A8D680000
|
unkown image
|
page readonly
|
|
|
|
28E2A4EF000
|
unkown
|
page read and write
|
|
|
|
2B8EA340000
|
unkown
|
page read and write
|
|
|
|
22F7116E000
|
unkown
|
page read and write
|
|
|
|
7FF562DEF000
|
unkown image
|
page readonly
|
|
|
|
77C87FE000
|
unkown
|
page read and write
|
|
|
|
24A8D810000
|
heap private
|
page read and write
|
|
|
|
7FF57ACF6000
|
unkown image
|
page readonly
|
|
|
|
28E25758000
|
unkown
|
page read and write
|
|
|
|
2B8EA080000
|
unkown
|
page read and write
|
|
|
|
7FF543EE4000
|
unkown image
|
page readonly
|
|
|
|
B1B38F7000
|
unkown
|
page read and write
|
|
|
|
22F70856000
|
unkown
|
page read and write
|
|
|
|
741BAFF000
|
unkown
|
page read and write
|
|
|
|
28E25718000
|
unkown
|
page read and write
|
|
|
|
22F7118F000
|
unkown
|
page read and write
|
|
|
|
22F71602000
|
unkown
|
page read and write
|
|
|
|
7DF564F60000
|
unkown image
|
page readonly
|
|
|
|
1FFC5160000
|
unkown image
|
page readonly
|
|
|
|
7FF543F27000
|
unkown image
|
page readonly
|
|
|
|
7FF598D66000
|
unkown image
|
page readonly
|
|
|
|
22F71190000
|
unkown
|
page read and write
|
|
|
|
2B8E95A9000
|
heap private
|
page read and write
|
|
|
|
22F7119D000
|
unkown
|
page read and write
|
|
|
|
7FF57A65A000
|
unkown image
|
page readonly
|
|
|
|
EE5A57E000
|
unkown
|
page read and write
|
|
|
|
330E000
|
unkown
|
page read and write
|
|
|
|
7FF543D38000
|
unkown image
|
page readonly
|
|
|
|
EE5A97F000
|
unkown
|
page read and write
|
|
|
|
2B8E962D000
|
unkown
|
page read and write
|
|
|
|
8DB000
|
unkown image
|
page read and write
|
|
|
|
430000
|
unkown image
|
page read and write
|
|
|
|
7FF562D00000
|
unkown image
|
page readonly
|
|
|
|
7FF543E33000
|
unkown image
|
page readonly
|
|
|
|
7FF55AFD8000
|
unkown image
|
page readonly
|
|
|
|
2B8EA360000
|
unkown
|
page read and write
|
|
|
|
28E24C60000
|
heap default
|
page read and write
|
|
|
|
22F711C5000
|
unkown
|
page read and write
|
|
|
|
85E000
|
unkown
|
page read and write
|
|
|
|
77C8379000
|
unkown
|
page read and write
|
|
|
|
7FF598E13000
|
unkown image
|
page readonly
|
|
|
|
2B8E9400000
|
unkown
|
page read and write
|
|
|
|
2B8E95C8000
|
heap default
|
page read and write
|
|
|
|
2B8E95C0000
|
heap default
|
page read and write
|
|
|
|
7FF57AA98000
|
unkown image
|
page readonly
|
|
|
|
22F71195000
|
unkown
|
page read and write
|
|
|
|
28E24E29000
|
unkown
|
page read and write
|
|
|
|
28E2A4F5000
|
unkown
|
page read and write
|
|
|
|
7DF4A0320000
|
unkown image
|
page readonly
|
|
|
|
7DF5A2BE0000
|
unkown image
|
page readonly
|
|
|
|
7FF55AFD5000
|
unkown image
|
page readonly
|
|
|
|
7FF55B18B000
|
unkown image
|
page readonly
|
|
|
|
7FF598CD5000
|
unkown image
|
page readonly
|
|
|
|
7FF57ACE3000
|
unkown image
|
page readonly
|
|
|
|
1A6B2AA0000
|
unkown image
|
page readonly
|
|
|
|
8DD000
|
unkown image
|
page readonly
|
|
|
|
356000
|
unkown
|
page read and write
|
|
|
|
24A8D660000
|
unkown image
|
page readonly
|
|
|
|
408000
|
unkown image
|
page readonly
|
|
|
|
7DF54DCD2000
|
unkown image
|
page readonly
|
|
|
|
7DF564F62000
|
unkown image
|
page readonly
|
|
|
|
1FFC5313000
|
unkown
|
page read and write
|
|
|
|
22F711A1000
|
unkown
|
page read and write
|
|
|
|
22F7084E000
|
unkown
|
page read and write
|
|
|
|
22F71113000
|
unkown
|
page read and write
|
|
|
|
741B7FE000
|
unkown
|
page read and write
|
|
|
|
22F71174000
|
unkown
|
page read and write
|
|
|
|
7FF55B10D000
|
unkown image
|
page readonly
|
|
|
|
24A8D86D000
|
unkown
|
page read and write
|
|
|
|
7FF55B19A000
|
unkown image
|
page readonly
|
|
|
|
7FF57A5A3000
|
unkown image
|
page readonly
|
|
|
|
1E7432C0000
|
unkown image
|
page readonly
|
|
|
|
1FFC525A000
|
unkown
|
page read and write
|
|
|
|
7DF5A2460000
|
unkown image
|
page readonly
|
|
|
|
22F71163000
|
unkown
|
page read and write
|
|
|
|
22F70850000
|
unkown
|
page read and write
|
|
|
|
2B8E95E1000
|
heap default
|
page read and write
|
|
|
|
28E24BF0000
|
unkown image
|
page read and write
|
|
|
|
340F000
|
unkown
|
page read and write
|
|
|
|
7FF598D4A000
|
unkown image
|
page readonly
|
|
|
|
7FF598D6D000
|
unkown image
|
page readonly
|
|
|
|
7FFB0000
|
unkown image
|
page readonly
|
|
|
|
28E2A2E1000
|
unkown
|
page read and write
|
|
|
|
22F7084C000
|
unkown
|
page read and write
|
|
|
|
2B8EA350000
|
unkown
|
page readonly
|
|
|
|
BB91AFF000
|
unkown
|
page read and write
|
|
|
|
1FFC5280000
|
unkown
|
page read and write
|
|
|
|
22F711B8000
|
unkown
|
page read and write
|
|
|
|
22F707E0000
|
unkown
|
page read and write
|
|
|
|
7FF562E0D000
|
unkown image
|
page readonly
|
|
|
|
EE5A37F000
|
unkown
|
page read and write
|
|
|
|
7FF543E2F000
|
unkown image
|
page readonly
|
|
|
|
BE2358E000
|
unkown
|
page read and write
|
|
|
|
1FFC525C000
|
unkown
|
page read and write
|
|
|
|
28E25DF0000
|
unkown image
|
page readonly
|
|
|
|
7DF5B89A0000
|
unkown image
|
page readonly
|
|
|
|
30000
|
unkown image
|
page read and write
|
|
|
|
7FF55B0F2000
|
unkown image
|
page readonly
|
|
|
|
1A6B2C6C000
|
unkown
|
page read and write
|
|
|
|
7FF597E8B000
|
unkown image
|
page readonly
|
|
|
|
22F71162000
|
unkown
|
page read and write
|
|
|
|
7FF543F27000
|
unkown image
|
page readonly
|
|
|
|
28E255C0000
|
unkown
|
page read and write
|
|
|
|
7DF5B89A0000
|
unkown image
|
page readonly
|
|
|
|
2B8E9608000
|
unkown
|
page read and write
|
|
|
|
22F71191000
|
unkown
|
page read and write
|
|
|
|
7FF5AE96C000
|
unkown image
|
page readonly
|
|
|
|
28E2A2F0000
|
unkown
|
page read and write
|
|
|
|
1E74348A000
|
unkown
|
page read and write
|
|
|
|
7FF543EE7000
|
unkown image
|
page readonly
|
|
|
|
7FF57ACB9000
|
unkown image
|
page readonly
|
|
|
|
22F71602000
|
unkown
|
page read and write
|
|
|
|
7FF5AEA21000
|
unkown image
|
page readonly
|
|
|
|
7FF5435D4000
|
unkown image
|
page readonly
|
|
|
|
22F71178000
|
unkown
|
page read and write
|
|
|
|
7FF598D04000
|
unkown image
|
page readonly
|
|
|
|
22F7083C000
|
unkown
|
page read and write
|
|
|
|
7DF5A2462000
|
unkown image
|
page readonly
|
|
|
|
7DF5A2470000
|
unkown image
|
page readonly
|
|
|
|
24A8D871000
|
unkown
|
page read and write
|
|
|
|
24A8D860000
|
unkown
|
page read and write
|
|
|
|
7FF59867B000
|
unkown image
|
page readonly
|
|
|
|
28E24DF3000
|
unkown
|
page read and write
|
|
|
|
7FF55B177000
|
unkown image
|
page readonly
|
|
|
|
28E24E00000
|
unkown
|
page read and write
|
|
|
|
35F000
|
unkown
|
page read and write
|
|
|
|
7FF543F22000
|
unkown image
|
page readonly
|
|
|
|
7FF57AAE0000
|
unkown image
|
page readonly
|
|
|
|
1B0000
|
unkown image
|
page readonly
|
|
|
|
1A6B2E00000
|
unkown image
|
page readonly
|
|
|
|
7FF57AD2E000
|
unkown image
|
page readonly
|
|
|
|
22F71602000
|
unkown
|
page read and write
|
|
|
|
7FF5AEBE7000
|
unkown image
|
page readonly
|
|
|
|
7FF55B0E6000
|
unkown image
|
page readonly
|
|
|
|
22F711A6000
|
unkown
|
page read and write
|
|
|
|
7FF5AE31E000
|
unkown image
|
page readonly
|
|
|
|
22F70CD0000
|
unkown image
|
page readonly
|
|
|
|
28E24C40000
|
unkown image
|
page readonly
|
|
|
|
7FF543CE7000
|
unkown image
|
page readonly
|
|
|
|
880000
|
heap default
|
page read and write
|
|
|
|
7DF56CC90000
|
unkown image
|
page readonly
|
|
|
|
7DF56CCB0000
|
unkown image
|
page readonly
|
|
|
|
28E25200000
|
unkown image
|
page readonly
|
|
|
|
24A8DB40000
|
unkown image
|
page readonly
|
|
|
|
28E2A424000
|
unkown
|
page read and write
|
|
|
|
7FF598982000
|
unkown image
|
page readonly
|
|
|
|
7FF55B1C7000
|
unkown image
|
page readonly
|
|
|
|
7FF598D21000
|
unkown image
|
page readonly
|
|
|
|
BE2350B000
|
unkown
|
page read and write
|
|
|
|
AEF599B000
|
unkown
|
page read and write
|
|
|
|
7FF593A8B000
|
unkown image
|
page readonly
|
|
|
|
7DF5B8990000
|
unkown image
|
page readonly
|
|
|
|
28E24EFF000
|
unkown
|
page read and write
|
|
|
|
28E2A44E000
|
unkown
|
page read and write
|
|
|
|
AEF5CFE000
|
unkown
|
page read and write
|
|
|
|
7FF598D77000
|
unkown image
|
page readonly
|
|
|
|
7FF55AC77000
|
unkown image
|
page readonly
|
|
|
|
22F7115E000
|
unkown
|
page read and write
|
|
|
|
7FF55B0CF000
|
unkown image
|
page readonly
|
|
|
|
EE5A2FF000
|
unkown
|
page read and write
|
|
|
|
352000
|
unkown
|
page read and write
|
|
|
|
28E2A390000
|
unkown
|
page read and write
|
|
|
|
7FF5985FB000
|
unkown image
|
page readonly
|
|
|
|
7FF598C30000
|
unkown image
|
page readonly
|
|
|
|
7FF55AFD0000
|
unkown image
|
page readonly
|
|
|
|
7FF57AC98000
|
unkown image
|
page readonly
|
|
|
|
7FF5AEB2D000
|
unkown image
|
page readonly
|
|
|
|
7FF55B106000
|
unkown image
|
page readonly
|
|
|
|
7DF56CCA2000
|
unkown image
|
page readonly
|
|
|
|
7FF5AEB39000
|
unkown image
|
page readonly
|
|
|
|
1A6B2BD0000
|
unkown image
|
page readonly
|
|
|
|
22F711A1000
|
unkown
|
page read and write
|
|
|
|
7FF5AE32D000
|
unkown image
|
page readonly
|
|
|
|
22F70851000
|
unkown
|
page read and write
|
|
|
|
22F711B8000
|
unkown
|
page read and write
|
|
|
|
2B8E9430000
|
unkown image
|
page readonly
|
|
|
|
7FF57A997000
|
unkown image
|
page readonly
|
|
|
|
7FF5AEBD3000
|
unkown image
|
page readonly
|
|
|
|
2B8E9410000
|
unkown image
|
page readonly
|
|
|
|
32C0000
|
heap private
|
page read and write
|
|
|
|
7FF5986B7000
|
unkown image
|
page readonly
|
|
|
|
7FF55AE31000
|
unkown image
|
page readonly
|
|
|
|
7FF55AC71000
|
unkown image
|
page readonly
|
|
|
|
1A6B2C3C000
|
unkown
|
page read and write
|
|
|
|
426000
|
unkown image
|
page readonly
|
|
|
|
1E743290000
|
unkown image
|
page readonly
|
|
|
|
2B8E961E000
|
unkown
|
page read and write
|
|
|
|
7FF562EF7000
|
unkown image
|
page readonly
|
|
|
|
7FF59868A000
|
unkown image
|
page readonly
|
|
|
|
22F7115E000
|
unkown
|
page read and write
|
|
|
|
22F7085A000
|
unkown
|
page read and write
|
|
|
|
7FF562D05000
|
unkown image
|
page readonly
|
|
|
|
7FF55AF87000
|
unkown image
|
page readonly
|
|
|
|
1E7432E0000
|
heap default
|
page read and write
|
|
|
|
28E2A304000
|
unkown
|
page read and write
|
|
|
|
22F71162000
|
unkown
|
page read and write
|
|
|
|
7FF5985F6000
|
unkown image
|
page readonly
|
|
|
|
401000
|
unkown image
|
page execute read
|
|
|
|
28E2A441000
|
unkown
|
page read and write
|
|
|
|
2B8E9AD0000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE326000
|
unkown image
|
page readonly
|
|
|
|
7DF54DCC2000
|
unkown image
|
page readonly
|
|
|
|
B1B34FE000
|
unkown
|
page read and write
|
|
|
|
1A6B2C00000
|
unkown
|
page read and write
|
|
|
|
7FF543ED1000
|
unkown image
|
page readonly
|
|
|
|
1A6B2C61000
|
unkown
|
page read and write
|
|
|
|
7DF564F60000
|
unkown image
|
page readonly
|
|
|
|
28E24E90000
|
unkown
|
page read and write
|
|
|
|
28E25CE0000
|
unkown
|
page read and write
|
|
|
|
22F7118F000
|
unkown
|
page read and write
|
|
|
|
22F7118F000
|
unkown
|
page read and write
|
|
|
|
22F7115F000
|
unkown
|
page read and write
|
|
|
|
22F71602000
|
unkown
|
page read and write
|
|
|
|
22F71163000
|
unkown
|
page read and write
|
|
|
|
1FFC54D0000
|
unkown image
|
page readonly
|
|
|
|
7FF543D68000
|
unkown image
|
page readonly
|
|
|
|
24A8D871000
|
unkown
|
page read and write
|
|
|
|
22F70849000
|
unkown
|
page read and write
|
|
|
|
EE59D78000
|
unkown
|
page read and write
|
|
|
|
7FF5AEB37000
|
unkown image
|
page readonly
|
|
|
|
22F7084D000
|
unkown
|
page read and write
|
|
|
|
7FF543D16000
|
unkown image
|
page readonly
|
|
|
|
820000
|
unkown
|
page execute and read and write
|
|
|
|
7FF57AB7D000
|
unkown image
|
page readonly
|
|
|
|
7FF562EE3000
|
unkown image
|
page readonly
|
|
|
|
22F71158000
|
unkown
|
page read and write
|
|
|
|
1A6B2C4A000
|
unkown
|
page read and write
|
|
|
|
1A6B2A80000
|
unkown image
|
page read and write
|
|
|
|
22F71197000
|
unkown
|
page read and write
|
|
|
|
1E74342A000
|
unkown
|
page read and write
|
|
|
|
7FF57AB93000
|
unkown image
|
page readonly
|
|
|
|
7FFC0000
|
unkown image
|
page readonly
|
|
|
|
7FF543DA5000
|
unkown image
|
page readonly
|
|
|
|
7FF543B91000
|
unkown image
|
page readonly
|
|
|
|
7FF598674000
|
unkown image
|
page readonly
|
|
|
|
2C1E000
|
unkown
|
page read and write
|
|
|
|
8DA000
|
unkown image
|
page readonly
|
|
|
|
22F7115E000
|
unkown
|
page read and write
|
|
|
|
7FF598DD1000
|
unkown image
|
page readonly
|
|
|
|
7DF5A2450000
|
unkown image
|
page readonly
|
|
|
|
7FFD0000
|
unkown image
|
page readonly
|
|
|
|
22F7118F000
|
unkown
|
page read and write
|
|
|
|
7FF5AEBAB000
|
unkown image
|
page readonly
|
|
|
|
1A6B2C7F000
|
unkown
|
page read and write
|
|
|
|
22F71178000
|
unkown
|
page read and write
|
|
|
|
22F7116D000
|
unkown
|
page read and write
|
|
|
|
7FF562E16000
|
unkown image
|
page readonly
|
|
|
|
28E2A2CE000
|
unkown
|
page read and write
|
|
|
|
7FF57ADC6000
|
unkown image
|
page readonly
|
|
|
|
2B8E960F000
|
unkown
|
page read and write
|
|
|
|
1FFC51A0000
|
unkown image
|
page readonly
|
|
|
|
28E24DF0000
|
unkown
|
page read and write
|
|
|
|
22F7084A000
|
unkown
|
page read and write
|
|
|
|
22F71178000
|
unkown
|
page read and write
|
|
|
|
7FF57AD8D000
|
unkown image
|
page readonly
|
|
|
|
EE59E7D000
|
unkown
|
page read and write
|
|
|
|
7FF598E16000
|
unkown image
|
page readonly
|
|
|
|
7FF55B1B6000
|
unkown image
|
page readonly
|
|
|
|
7FF55B0BF000
|
unkown image
|
page readonly
|
|
|
|
7DF5A2470000
|
unkown image
|
page readonly
|
|
|
|
7DF5B8982000
|
unkown image
|
page readonly
|
|
|
|
7FF55B117000
|
unkown image
|
page readonly
|
|
|
|
1A6B2C55000
|
unkown
|
page read and write
|
|
|
|
8D0000
|
unkown image
|
page read and write
|
|
|
|
1FFC528D000
|
unkown
|
page read and write
|
|
|
|
7FF55B1C7000
|
unkown image
|
page readonly
|
|
|
|
1E74346C000
|
unkown
|
page read and write
|
|
|
|
94A000
|
unkown
|
page read and write
|
|
|
|
7FF562E03000
|
unkown image
|
page readonly
|
|
|
|
7FF5AEB06000
|
unkown image
|
page readonly
|
|
|
|
1FFC5229000
|
unkown
|
page read and write
|
|
|
|
7FF55B1C2000
|
unkown image
|
page readonly
|
|
|
|
28E24C30000
|
unkown image
|
page readonly
|
|
|
|
22F7119F000
|
unkown
|
page read and write
|
|
|
|
24A8D860000
|
heap default
|
page read and write
|
|
|
|
7FF598DFA000
|
unkown image
|
page readonly
|
|
|
|
28E25C00000
|
unkown image
|
page read and write
|
|
|
|
1E743413000
|
unkown
|
page read and write
|
|
|
|
426000
|
unkown image
|
page readonly
|
|
|
|
22F708A5000
|
unkown
|
page read and write
|
|
|
|
7FFD0000
|
unkown image
|
page readonly
|
|
|
|
22F70800000
|
unkown
|
page read and write
|
|
|
|
24A8D7E0000
|
unkown image
|
page read and write
|
|
|
|
22F71163000
|
unkown
|
page read and write
|
|
|
|
7FFB0000
|
unkown image
|
page readonly
|
|
|
|
7FF598677000
|
unkown image
|
page readonly
|
|
|
|
741B37B000
|
unkown
|
page read and write
|
|
|
|
28E26160000
|
unkown
|
page read and write
|
|
|
|
1E743402000
|
unkown
|
page read and write
|
|
|
|
1A6B2C88000
|
unkown
|
page read and write
|
|
|
|
28E24EA2000
|
unkown
|
page read and write
|
|
|
|
7DF584B90000
|
unkown image
|
page readonly
|
|
|
|
22F71195000
|
unkown
|
page read and write
|
|
|
|
7FF598D1F000
|
unkown image
|
page readonly
|
|
|
|
7FF57AA83000
|
unkown image
|
page readonly
|
|
|
|
7FF55AE4B000
|
unkown image
|
page readonly
|
|
|
|
2B8E98D0000
|
unkown image
|
page readonly
|
|
|
|
7FF562EF2000
|
unkown image
|
page readonly
|
|
|
|
410000
|
unkown image
|
page execute read
|
|
|
|
B1B357D000
|
unkown
|
page read and write
|
|
|
|
7FF562EA7000
|
unkown image
|
page readonly
|
|
|
|
22F7161D000
|
unkown
|
page read and write
|
|
|
|
7FF55B17D000
|
unkown image
|
page readonly
|
|
|
|
28E25E10000
|
unkown image
|
page readonly
|
|
|
|
1060000
|
unkown image
|
page readonly
|
|
|
|
22F707A0000
|
unkown image
|
page readonly
|
|
|
|
7FF5988A3000
|
unkown image
|
page readonly
|
|
|
|
22F706D0000
|
unkown image
|
page read and write
|
|
|
|
BE238FE000
|
unkown
|
page read and write
|
|
|
|
7FF57AB34000
|
unkown image
|
page readonly
|
|
|
|
7FF562E49000
|
unkown image
|
page readonly
|
|
|
|
EE5A27B000
|
unkown
|
page read and write
|
|
|
|
22F71193000
|
unkown
|
page read and write
|
|
|
|
7FF562C8A000
|
unkown image
|
page readonly
|
|
|
|
22F706F0000
|
unkown image
|
page readonly
|
|
|
|
77C8777000
|
unkown
|
page read and write
|
|
|
|
7DF564F70000
|
unkown image
|
page readonly
|
|
|
|
7FF598DD4000
|
unkown image
|
page readonly
|
|
|
|
1A6B2C50000
|
unkown
|
page read and write
|
|
|
|
22F707F0000
|
unkown image
|
page read and write
|
|
|
|
2B8E9C50000
|
unkown image
|
page readonly
|
|
|
|
22F7119F000
|
unkown
|
page read and write
|
|
|
|
7FF562DF1000
|
unkown image
|
page readonly
|
|
|
|
8CE000
|
unkown
|
page read and write
|
|
|
|
28E24DD1000
|
unkown
|
page read and write
|
|
|
|
BE23A7F000
|
unkown
|
page read and write
|
|
|
|
22F71602000
|
unkown
|
page read and write
|
|
|
|
B1B37FE000
|
unkown
|
page read and write
|
|
|
|
7DF584B80000
|
unkown image
|
page readonly
|
|
|
|
7DF584B72000
|
unkown image
|
page readonly
|
|
|
|
B1B39FE000
|
unkown
|
page read and write
|
|
|
|
7FF5984D4000
|
unkown image
|
page readonly
|
|
|
|
7FF57AC18000
|
unkown image
|
page readonly
|
|
|
|
7FF5986B5000
|
unkown image
|
page readonly
|
|
|
|
AEF5F7E000
|
unkown
|
page read and write
|
|
|
|
7FF5AEB94000
|
unkown image
|
page readonly
|
|
|
|
7DF56CCA2000
|
unkown image
|
page readonly
|
|
|
|
7FF5AEB26000
|
unkown image
|
page readonly
|
|
|
|
7FF57A94C000
|
unkown image
|
page readonly
|
|
|
|
7FF598C35000
|
unkown image
|
page readonly
|
|
|
|
EE5A3FF000
|
unkown
|
page read and write
|
|
|
|
22F708F3000
|
unkown
|
page read and write
|
|
|
|
7FF598DE4000
|
unkown image
|
page readonly
|
|
|
|
2B8E9550000
|
unkown
|
page read and write
|
|
|
|
7FF57ACDF000
|
unkown image
|
page readonly
|
|
|
|
7DF462E30000
|
unkown image
|
page readonly
|
|
|
|
741B8FB000
|
unkown
|
page read and write
|
|
|
|
7FF57ACFA000
|
unkown image
|
page readonly
|
|
|
|
22F71193000
|
unkown
|
page read and write
|
|
|
|
22F711A4000
|
unkown
|
page read and write
|
|
|
|
7FF5AEA11000
|
unkown image
|
page readonly
|
|
|
|
7DF564F72000
|
unkown image
|
page readonly
|
|
|
|
1FFC5140000
|
unkown image
|
page readonly
|
|
|
|
24A8D857000
|
unkown
|
page read and write
|
|
|
|
7DF54DCD0000
|
unkown image
|
page readonly
|
|
|
|
22F7119F000
|
unkown
|
page read and write
|
|
|
|
1FFC5269000
|
unkown
|
page read and write
|
|
|
|
1A6B2C61000
|
unkown
|
page read and write
|
|
|
|
7FF59866D000
|
unkown image
|
page readonly
|
|
|
|
BB918FF000
|
unkown
|
page read and write
|
|
|
|
22F7119F000
|
unkown
|
page read and write
|
|
|
|
22F71602000
|
unkown
|
page read and write
|
|
|
|
7DF54DCC0000
|
unkown image
|
page readonly
|
|
|
|
1E7433C0000
|
unkown image
|
page readonly
|
|
|
|
1E743450000
|
unkown
|
page read and write
|
|
|
|
7FF5AE9F8000
|
unkown image
|
page readonly
|
|
|
|
7DF5B8980000
|
unkown image
|
page readonly
|
|
|
|
22F70888000
|
unkown
|
page read and write
|
|
|
|
7FF57AD02000
|
unkown image
|
page readonly
|
|
|
|
22F71197000
|
unkown
|
page read and write
|
|
|
|
7FF5986B7000
|
unkown image
|
page readonly
|
|
|
|
7FF562D75000
|
unkown image
|
page readonly
|
|
|
|
1FFC5170000
|
unkown image
|
page readonly
|
|
|
|
9C000
|
unkown
|
page read and write
|
|
|
|
7FF543ED7000
|
unkown image
|
page readonly
|
|
|
|
77C80FD000
|
unkown
|
page read and write
|
|
|
|
22F71176000
|
unkown
|
page read and write
|
|
|
|
7FF57ADD7000
|
unkown image
|
page readonly
|
|
|
|
77C867E000
|
unkown
|
page read and write
|
|
|
|
22F71168000
|
unkown
|
page read and write
|
|
|
|
1A0000
|
unkown image
|
page readonly
|
|
|
|
22F70740000
|
heap default
|
page read and write
|
|
|
|
7DF56CCA0000
|
unkown image
|
page readonly
|
|
|
|
7DF54DCD2000
|
unkown image
|
page readonly
|
|
|
|
7FFB2000
|
unkown image
|
page readonly
|
|
|
|
28E25DE0000
|
unkown image
|
page readonly
|
|
|
|
B1B367B000
|
unkown
|
page read and write
|
|
|
|
22F71176000
|
unkown
|
page read and write
|
|
|
|
7DF584B70000
|
unkown image
|
page readonly
|
|
|
|
22F71603000
|
unkown
|
page read and write
|
|
|
|
7FF5985C5000
|
unkown image
|
page readonly
|
|
|
|
28E2A420000
|
unkown
|
page read and write
|
|
|
|
7DF4B6850000
|
unkown image
|
page readonly
|
|
|
|
7FF598667000
|
unkown image
|
page readonly
|
|
|
|
7FF598D52000
|
unkown image
|
page readonly
|
|
|
|
7FF598CE8000
|
unkown image
|
page readonly
|
|
|
|
1E743400000
|
unkown
|
page read and write
|
|
|
|
7FF598C16000
|
unkown image
|
page readonly
|
|
|
|
7FF57AAD4000
|
unkown image
|
page readonly
|
|
|
|
7FF562CC7000
|
unkown image
|
page readonly
|
|
|
|
7F0000
|
unkown
|
page read and write
|
|
|
|
7FF5985CE000
|
unkown image
|
page readonly
|
|
|
|
7DF5B8990000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE468000
|
unkown image
|
page readonly
|
|
|
|
1FFC5200000
|
unkown
|
page read and write
|
|
|
|
1FFC5268000
|
unkown
|
page read and write
|
|
|
|
28E25713000
|
unkown
|
page read and write
|
|
|
|
24A8D660000
|
unkown image
|
page readonly
|
|
|
|
2B8EA100000
|
unkown
|
page read and write
|
|
|
|
1FFC5308000
|
unkown
|
page read and write
|
|
|
|
741BBFE000
|
unkown
|
page read and write
|
|
|
|
8DE000
|
unkown image
|
page execute and read and write
|
|
|
|
1A6B2C13000
|
unkown
|
page read and write
|
|
|
|
7FF57ACC4000
|
unkown image
|
page readonly
|
|
|
|
7FF598664000
|
unkown image
|
page readonly
|
|
|
|
22F71602000
|
unkown
|
page read and write
|
|
|
|
1A6B3000000
|
unkown image
|
page readonly
|
|
|
|
22F708AF000
|
unkown
|
page read and write
|
|
|
|
7FF5985FD000
|
unkown image
|
page readonly
|
|
|
|
28E25DD0000
|
unkown image
|
page readonly
|
|
|
|
7FF57ACA7000
|
unkown image
|
page readonly
|
|
|
|
1FFC5140000
|
unkown image
|
page readonly
|
|
|
|
1FFC5120000
|
unkown image
|
page read and write
|
|
|
|
7DF56CCA0000
|
unkown image
|
page readonly
|
|
|
|
2B8EA090000
|
unkown
|
page read and write
|
|
|
|
28E25700000
|
unkown
|
page read and write
|
|
|
|
28E24E8D000
|
unkown
|
page read and write
|
|
|
|
7FF5989BC000
|
unkown image
|
page readonly
|
|
|
|
7FF5AEADF000
|
unkown image
|
page readonly
|
|
|
|
7FF598DE7000
|
unkown image
|
page readonly
|
|
|
|
7FF598AFF000
|
unkown image
|
page readonly
|
|
|
|
BB9187A000
|
unkown
|
page read and write
|
|
|
|
22F711A3000
|
unkown
|
page read and write
|
|
|
|
28E25600000
|
unkown
|
page read and write
|
|
|
|
434000
|
unkown image
|
page read and write
|
|
|
|
EE5AA7B000
|
unkown
|
page read and write
|
|
|
|
7FF562ECA000
|
unkown image
|
page readonly
|
|
|
|
7FF55B187000
|
unkown image
|
page readonly
|
|
|
|
7FF55AFB6000
|
unkown image
|
page readonly
|
|
|
|
1E743800000
|
unkown image
|
page readonly
|
|
|
|
BE239FA000
|
unkown
|
page read and write
|
|
|
|
EE5A77C000
|
unkown
|
page read and write
|
|
|
|
7DF584B72000
|
unkown image
|
page readonly
|
|
|
|
7FF57AD84000
|
unkown image
|
page readonly
|
|
|
|
7DF5A2BE0000
|
unkown image
|
page readonly
|
|
|
|
24A8D7C0000
|
unkown image
|
page readonly
|
|
|
|
24A8D86D000
|
unkown
|
page read and write
|
|
|
|
7FF57AD97000
|
unkown image
|
page readonly
|
|
|
|
2490000
|
heap private
|
page read and write
|
|
|
|
7FF562EAD000
|
unkown image
|
page readonly
|
|
|
|
741B3FE000
|
unkown
|
page read and write
|
|
|
|
7FFC2000
|
unkown image
|
page readonly
|
|
|
|
28E2A2C0000
|
unkown
|
page read and write
|
|
|
|
28E2A45F000
|
unkown
|
page read and write
|
|
|
|
1A6B2D00000
|
unkown
|
page read and write
|
|
|
|
22F7165D000
|
unkown
|
page read and write
|
|
|
|
7FF57AAD6000
|
unkown image
|
page readonly
|
|
|
|
28E24C00000
|
heap private
|
page read and write
|
|
|
|
22F71197000
|
unkown
|
page read and write
|
|
|
|
7FF5629A7000
|
unkown image
|
page readonly
|
|
|
|
1A6B3180000
|
unkown image
|
page readonly
|
|
|
|
7DF56CC92000
|
unkown image
|
page readonly
|
|
|
|
1E743280000
|
heap private
|
page read and write
|
|
|
|
7FF57ACB4000
|
unkown image
|
page readonly
|
|
|
|
22F70720000
|
unkown image
|
page readonly
|
|
|
|
28E2A461000
|
unkown
|
page read and write
|
|
|
|
28E25390000
|
unkown image
|
page readonly
|
|
|
|
22F711B0000
|
unkown
|
page read and write
|
|
|
|
22F7116A000
|
unkown
|
page read and write
|
|
|
|
1E743508000
|
unkown
|
page read and write
|
|
|
|
28E2A4DE000
|
unkown
|
page read and write
|
|
|
|
7FF5AEAF4000
|
unkown image
|
page readonly
|
|
|
|
28E25380000
|
unkown image
|
page readonly
|
|
|
|
22F71178000
|
unkown
|
page read and write
|
|
|
|
7FF57ACCF000
|
unkown image
|
page readonly
|
|
|
|
810000
|
unkown
|
page execute and read and write
|
|
|
|
AEF5C7E000
|
unkown
|
page read and write
|
|
|
|
B1B347B000
|
unkown
|
page read and write
|
|
|
|
22F7118F000
|
unkown
|
page read and write
|
|
|
|
1E743980000
|
unkown image
|
page readonly
|
|
|
|
24A8D7D0000
|
unkown image
|
page readonly
|
|
|
|
318E000
|
unkown
|
page read and write
|
|
|
|
77C81FC000
|
unkown
|
page read and write
|
|
|
|
22F711A1000
|
unkown
|
page read and write
|
|
|
|
7FF57ACED000
|
unkown image
|
page readonly
|
|
|
|
2B8E960F000
|
unkown
|
page read and write
|
|
|
|
7FF598DD7000
|
unkown image
|
page readonly
|
|
|
|
1A6B2D08000
|
unkown
|
page read and write
|
|
|
|
7FF57AD87000
|
unkown image
|
page readonly
|
|
|
|
1A6B2D13000
|
unkown
|
page read and write
|
|
|
|
EE5A17B000
|
unkown
|
page read and write
|
|
|
|
1FFC5266000
|
unkown
|
page read and write
|
|
|
|
22F7116A000
|
unkown
|
page read and write
|
|
|
|
28E24D60000
|
unkown
|
page read and write
|
|
|
|
7FF598B60000
|
unkown image
|
page readonly
|
|
|
|
7FF57AD27000
|
unkown image
|
page readonly
|
|
|
|
77C7DEC000
|
unkown
|
page read and write
|
|
|
|
1E7433E0000
|
unkown
|
page read and write
|
|
|
|
19B000
|
unkown
|
page read and write
|
|
|
|
22F711B3000
|
unkown
|
page read and write
|
|
|
|
7DF56CCB0000
|
unkown image
|
page readonly
|
|
|
|
2B8E95A5000
|
heap private
|
page read and write
|
|
|
|
7FF562CE6000
|
unkown image
|
page readonly
|
|
|
|
24A8D860000
|
unkown
|
page read and write
|
|
|
|
28E24E25000
|
unkown
|
page read and write
|
|
|
|
22F706F0000
|
unkown image
|
page readonly
|
|
|
|
2B8E9570000
|
unkown image
|
page readonly
|
|
|
|
28E24EA4000
|
unkown
|
page read and write
|
|
|
|
24A8D770000
|
unkown
|
page read and write
|
|
|
|
7FF598AF5000
|
unkown image
|
page readonly
|
|
|
|
1A6B2AF0000
|
heap default
|
page read and write
|
|
|
|
432000
|
unkown image
|
page write copy
|
|
|
|
1FFC5850000
|
unkown image
|
page readonly
|
|
|
|
22F7119F000
|
unkown
|
page read and write
|
|
|
|
7DF56CC90000
|
unkown image
|
page readonly
|
|
|
|
7FF562E1A000
|
unkown image
|
page readonly
|
|
|
|
22F7117A000
|
unkown
|
page read and write
|
|
|
|
22F71197000
|
unkown
|
page read and write
|
|
|
|
7FF5985C3000
|
unkown image
|
page readonly
|
|
|
|
BB91A79000
|
unkown
|
page read and write
|
|
|
|
AEF5DFC000
|
unkown
|
page read and write
|
|
|
|
1E743270000
|
unkown image
|
page read and write
|
|
|
|
7FF55B0C1000
|
unkown image
|
page readonly
|
|
|
|
28E2A4FC000
|
unkown
|
page read and write
|
|
|
|
7FF55B0D3000
|
unkown image
|
page readonly
|
|
|
|
22F7119F000
|
unkown
|
page read and write
|
|
|
|
7FF55B184000
|
unkown image
|
page readonly
|
|
|
|
1A6B2D02000
|
unkown
|
page read and write
|
|
|
|
2B8E95A0000
|
heap private
|
page read and write
|
|
|
|
EE5A4FF000
|
unkown
|
page read and write
|
|
|
|
7FF598AAB000
|
unkown image
|
page readonly
|
|
|
|
7FF598B30000
|
unkown image
|
page readonly
|
|
|
|
BE23AF9000
|
unkown
|
page read and write
|
|
|
|
24A8D857000
|
heap default
|
page read and write
|
|
|
|
90A000
|
heap default
|
page read and write
|
|
|
|
7FF55B0EA000
|
unkown image
|
page readonly
|
|
|
|
28E2A620000
|
unkown
|
page read and write
|
|
|
|
7FF55A874000
|
unkown image
|
page readonly
|
|
|
|
7FF57A932000
|
unkown image
|
page readonly
|
|
|
|
7FF57A59F000
|
unkown image
|
page readonly
|
|
|
|
2B8EA0F0000
|
unkown
|
page read and write
|
|
|
|
28E2A400000
|
unkown
|
page read and write
|
|
|
|
22F7116A000
|
unkown
|
page read and write
|
|
|
|
28E24E57000
|
unkown
|
page read and write
|
|
|
|
7FF5AEBA4000
|
unkown image
|
page readonly
|
|
|
|
7FF562EE6000
|
unkown image
|
page readonly
|
|
|
|
22F71195000
|
unkown
|
page read and write
|
|
|
|
22F711A1000
|
unkown
|
page read and write
|
|
|
|
28E2A1B0000
|
unkown
|
page read and write
|
|
|
|
7DF44BB90000
|
unkown image
|
page readonly
|
|
|
|
22F7115E000
|
unkown
|
page read and write
|
|
|
|
1FFC525B000
|
unkown
|
page read and write
|
|
|
|
22F71163000
|
unkown
|
page read and write
|
|
|
|
7FF57AAE7000
|
unkown image
|
page readonly
|
|
|
|
7FF55B045000
|
unkown image
|
page readonly
|
|
|
|
28E2A2C0000
|
unkown
|
page read and write
|
|
|
|
24A8D852000
|
unkown
|
page read and write
|
|
|
|
7FFC0000
|
unkown image
|
page readonly
|
|
|
|
22F71002000
|
unkown
|
page read and write
|
|
|
|
BE2387D000
|
unkown
|
page read and write
|
|
|
|
980000
|
unkown
|
page read and write
|
|
|
|
22F71162000
|
unkown
|
page read and write
|
|
|
|
24A8D86F000
|
unkown
|
page read and write
|
|
|
|
7FF562E3D000
|
unkown image
|
page readonly
|
|
|
|
1FFC525E000
|
unkown
|
page read and write
|
|
|
|
22F7119F000
|
unkown
|
page read and write
|
|
|
|
7FF57A96A000
|
unkown image
|
page readonly
|
|
|
|
7FF5988A6000
|
unkown image
|
page readonly
|
|
|
|
EE0000
|
unkown image
|
page readonly
|
|
|
|
7FF562E47000
|
unkown image
|
page readonly
|
|
|
|
7FF57ACA4000
|
unkown image
|
page readonly
|
|
|
|
1FFC5261000
|
unkown
|
page read and write
|
|
|
|
7DF564F70000
|
unkown image
|
page readonly
|
|
|
|
24A8D940000
|
unkown image
|
page readonly
|
|
|
|
7FF598D2F000
|
unkown image
|
page readonly
|
|
|
|
28E25602000
|
unkown
|
page read and write
|
|
|
|
7DF584B80000
|
unkown image
|
page readonly
|
|
|
|
7FF598BF7000
|
unkown image
|
page readonly
|
|
|
|
7FF543E46000
|
unkown image
|
page readonly
|
|
|
|
22F71175000
|
unkown
|
page read and write
|
|
|
|
7FF5AE461000
|
unkown image
|
page readonly
|
|
|
|
28E24C10000
|
unkown image
|
page readonly
|
|
|
|
22F71602000
|
unkown
|
page read and write
|
|
|
|
22F70848000
|
unkown
|
page read and write
|
|
|
|
22F7119F000
|
unkown
|
page read and write
|
|
|
|
22F71163000
|
unkown
|
page read and write
|
|
|
|
7FF543ED4000
|
unkown image
|
page readonly
|
|
|
|
22F71602000
|
unkown
|
page read and write
|
|
|
|
28E25702000
|
unkown
|
page read and write
|
|
|
|
7FF5AEBD6000
|
unkown image
|
page readonly
|
|
|
|
24A8D871000
|
unkown
|
page read and write
|
|
|
|
400000
|
unkown image
|
page readonly
|
|
|
|
22F70770000
|
unkown
|
page read and write
|
|
|
|
7FF562EB4000
|
unkown image
|
page readonly
|
|
|
|
7FF57A658000
|
unkown image
|
page readonly
|
|
|
|
7FF57AA8A000
|
unkown image
|
page readonly
|
|
|
|
7FF5986A6000
|
unkown image
|
page readonly
|
|
|
|
7FF543E3D000
|
unkown image
|
page readonly
|
|
|
|
7FF543EEB000
|
unkown image
|
page readonly
|
|
|
|
1E743500000
|
unkown
|
page read and write
|
|
|
|
7DF5A2BD0000
|
unkown image
|
page readonly
|
|
|
|
7FF57AD1D000
|
unkown image
|
page readonly
|
|
|
|
7FF5439D7000
|
unkown image
|
page readonly
|
|
|
|
7FF57AB0E000
|
unkown image
|
page readonly
|
|
|
|
7FF562EBB000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE411000
|
unkown image
|
page readonly
|
|
|
|
7FF598E27000
|
unkown image
|
page readonly
|
|
|
|
7FF55B119000
|
unkown image
|
page readonly
|
|
|
|
7FF5AEBBA000
|
unkown image
|
page readonly
|
|
|
|
7FF55B174000
|
unkown image
|
page readonly
|
|
|
|
EE5A47F000
|
unkown
|
page read and write
|
|
|
|
2B8E95F1000
|
heap default
|
page read and write
|
|
|
|
22F7119F000
|
unkown
|
page read and write
|
|
|
|
980000
|
unkown
|
page read and write
|
|
|
|
7FF57AB77000
|
unkown image
|
page readonly
|
|
|
|
28E2A300000
|
unkown
|
page read and write
|
|
|
|
22F70859000
|
unkown
|
page read and write
|
|
|
|
EE5A07F000
|
unkown
|
page read and write
|
|
|
|
7FF562EB7000
|
unkown image
|
page readonly
|
|
|
|
1A6B2AD0000
|
unkown image
|
page readonly
|
|
|
|
24A8D880000
|
unkown
|
page read and write
|
|
|
|
1E743C02000
|
unkown
|
page read and write
|
|
|
|
BCF000
|
unkown
|
page read and write
|
|
|
|
2B8E96C0000
|
unkown
|
page read and write
|
|
|
|
7FF598D14000
|
unkown image
|
page readonly
|
|
|
|
28E2A1A0000
|
unkown
|
page read and write
|
|
|
|
7DF54DCC0000
|
unkown image
|
page readonly
|
|
|
|
7FF5AEB9D000
|
unkown image
|
page readonly
|
|
|
|
22F70813000
|
unkown
|
page read and write
|
|
|
|
7FF543E52000
|
unkown image
|
page readonly
|
|
|
|
2B8E9C60000
|
unkown image
|
page readonly
|
|
|
|
7FF598D00000
|
unkown image
|
page readonly
|
|
|
|
7FF543E4A000
|
unkown image
|
page readonly
|
|
|
|
28E24E13000
|
unkown
|
page read and write
|
|
|
|
B1B3AFF000
|
unkown
|
page read and write
|
|
|
|
28E24E7B000
|
unkown
|
page read and write
|
|
|
|
7FF598C38000
|
unkown image
|
page readonly
|
|
|
|
1E743455000
|
unkown
|
page read and write
|
|
|
|
7DF5A2452000
|
unkown image
|
page readonly
|
|
|
|
7FF5AEB97000
|
unkown image
|
page readonly
|
|
|
|
22F707E0000
|
unkown
|
page read and write
|
|
|
|
7DF54DCC2000
|
unkown image
|
page readonly
|
|
|
|
7DF5A2452000
|
unkown image
|
page readonly
|
|
|
|
AEF6077000
|
unkown
|
page read and write
|
|
|
|
7FF562EA1000
|
unkown image
|
page readonly
|
|
|
|
7FF562E36000
|
unkown image
|
page readonly
|
|
|
|
22F7117C000
|
unkown
|
page read and write
|
|
|
|
22F711A1000
|
unkown
|
page read and write
|
|
|
|
7FF598A91000
|
unkown image
|
page readonly
|
|
|
|
24A8D86F000
|
unkown
|
page read and write
|
|
|
|
22F71176000
|
unkown
|
page read and write
|
|
|
|
EE59F7A000
|
unkown
|
page read and write
|
|
|
|
7FF57AC41000
|
unkown image
|
page readonly
|
|
|
|
22F70F30000
|
unkown image
|
page write copy
|
|
|
|
7FF57AD81000
|
unkown image
|
page readonly
|
|
|
|
28E2A620000
|
unkown
|
page read and write
|
|
|
|
2B8EA3C0000
|
unkown
|
page read and write
|
|
|
|
22F708EA000
|
unkown
|
page read and write
|
|
|
|
24A8D86D000
|
unkown
|
page read and write
|
|
|
|
7FF5988D7000
|
unkown image
|
page readonly
|
|
|
|
24A8D640000
|
unkown image
|
page read and write
|
|
|
|
43E000
|
unkown image
|
page readonly
|
|
|
|
2B8E93F0000
|
unkown image
|
page read and write
|
|
|
|
22F7118F000
|
unkown
|
page read and write
|
|
|
|
22F71182000
|
unkown
|
page read and write
|
|
|
|
7FF543E77000
|
unkown image
|
page readonly
|
|
|
|
1A6B2C4D000
|
unkown
|
page read and write
|
|
|
|
1FFC56D0000
|
unkown image
|
page readonly
|
|
|
|
22F70908000
|
unkown
|
page read and write
|
|
|
|
7FF59824C000
|
unkown image
|
page readonly
|
|
|
|
96E000
|
unkown
|
page read and write
|
|
|
|
7FF57AD94000
|
unkown image
|
page readonly
|
|
|
|
22F7119F000
|
unkown
|
page read and write
|
|
|
|
22F7118F000
|
unkown
|
page read and write
|
|
|
|
1E7432B0000
|
unkown image
|
page readonly
|
|
|
|
7DF5A2BD2000
|
unkown image
|
page readonly
|
|
|
|
22F708E1000
|
unkown
|
page read and write
|
|
|
|
1A6B2A90000
|
heap private
|
page read and write
|
|
|
|
7FF57AC55000
|
unkown image
|
page readonly
|
|
|
|
900000
|
heap default
|
page read and write
|
|
|
|
1FFC5302000
|
unkown
|
page read and write
|
|
|
|
7FF5AEA28000
|
unkown image
|
page readonly
|
|
|
|
7FF5AEB91000
|
unkown image
|
page readonly
|
|
|
|
22F71163000
|
unkown
|
page read and write
|
|
|
|
28E24E72000
|
unkown
|
page read and write
|
|
|
|
435000
|
unkown image
|
page execute and read and write
|
|
|
|
7DF584B82000
|
unkown image
|
page readonly
|
|
|
|
2B8E961F000
|
unkown
|
page read and write
|
|
|
|
7DF5A2BD2000
|
unkown image
|
page readonly
|
|
|
|
22F71163000
|
unkown
|
page read and write
|
|
|
|
7DF54DCD0000
|
unkown image
|
page readonly
|
|
|
|
1A6B2BF0000
|
unkown
|
page read and write
|
|
|
|
7FF543F13000
|
unkown image
|
page readonly
|
|
|
|
28E2A600000
|
unkown
|
page read and write
|
|
|
|
1FFC51C0000
|
unkown
|
page read and write
|
|
|
|
BB919FE000
|
unkown
|
page read and write
|
|
|
|
77C8578000
|
unkown
|
page read and write
|
|
|
|
7DF564F62000
|
unkown image
|
page readonly
|
|
|
|
7FF562CB7000
|
unkown image
|
page readonly
|
|
|
|
22F71191000
|
unkown
|
page read and write
|
|
|
|
43D000
|
unkown image
|
page read and write
|
|
|
|
7FF57A559000
|
unkown image
|
page readonly
|
|
|
|
28E25000000
|
unkown image
|
page readonly
|
|
|
|
7FF57AA5B000
|
unkown image
|
page readonly
|
|
|
|
24A8D86F000
|
unkown
|
page read and write
|
|
|
|
28E24E92000
|
unkown
|
page read and write
|
|
|
|
7FF543BAB000
|
unkown image
|
page readonly
|
|
|
|
7FF562D08000
|
unkown image
|
page readonly
|
|
|
|
7FF562D38000
|
unkown image
|
page readonly
|
|
|
|
7FF5988D1000
|
unkown image
|
page readonly
|
|
|
|
1A6B2AA0000
|
unkown image
|
page readonly
|
|
|
|
28E25759000
|
unkown
|
page read and write
|
|
|
|
1FFC523C000
|
unkown
|
page read and write
|
|
|
|
365000
|
unkown
|
page read and write
|
|
|
|
7FF57AC11000
|
unkown image
|
page readonly
|
|
|
|
7FF562EF7000
|
unkown image
|
page readonly
|
|
|
|
22F706E0000
|
heap private
|
page read and write
|
|
|
|
7FF57AAA5000
|
unkown image
|
page readonly
|
|
|
|
22F70916000
|
unkown
|
page read and write
|
|
|
|
7FF598BD3000
|
unkown image
|
page readonly
|
|
|
|
24A8D867000
|
unkown
|
page read and write
|
|
|
|
7FF57A902000
|
unkown image
|
page readonly
|
|
|
|
7FF57AA7D000
|
unkown image
|
page readonly
|
|
|
|
28E2A1C0000
|
unkown
|
page read and write
|
|
|
|
7FF598B84000
|
unkown image
|
page readonly
|
|
|
|
7FF543D30000
|
unkown image
|
page readonly
|
|
|
|
7FF57ADD2000
|
unkown image
|
page readonly
|
|
|
|
2B8E9410000
|
unkown image
|
page readonly
|
|
|
|
28E2A414000
|
unkown
|
page read and write
|
|
|
|
7FF543F16000
|
unkown image
|
page readonly
|
|
|
|
7DF482A40000
|
unkown image
|
page readonly
|
|
|
|
22F71195000
|
unkown
|
page read and write
|
|
|
|
7FF55B171000
|
unkown image
|
page readonly
|
|
|
|
7FFC2000
|
unkown image
|
page readonly
|
|
|
|
7FF562B7B000
|
unkown image
|
page readonly
|
|
|
|
7DF5A2462000
|
unkown image
|
page readonly
|
|
|
|
22F7119F000
|
unkown
|
page read and write
|
|
|
|
28E25801000
|
unkown
|
page read and write
|
|
|
|
28E2A4A4000
|
unkown
|
page read and write
|
|
|
|
7FF598C68000
|
unkown image
|
page readonly
|
|
|
|
B1B377B000
|
unkown
|
page read and write
|
|
|
|
7FF57AB7F000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE46A000
|
unkown image
|
page readonly
|
|
|
|
EE5995B000
|
unkown
|
page read and write
|
|
|
|
28E24E78000
|
unkown
|
page read and write
|
|
|
|
741B77C000
|
unkown
|
page read and write
|
|
|
|
7FF57AB10000
|
unkown image
|
page readonly
|
|
|
|
7FF57AADA000
|
unkown image
|
page readonly
|
|
|
|
1E74343C000
|
unkown
|
page read and write
|
|
|
|
7FF598CA5000
|
unkown image
|
page readonly
|
|
|
|
28E24D40000
|
unkown image
|
page readonly
|
|
|
|
22F70AD0000
|
unkown image
|
page readonly
|
|
|
|
28E25718000
|
unkown
|
page read and write
|
|
|
|
7FF57AB6A000
|
unkown image
|
page readonly
|
|
|
|
28E24F13000
|
unkown
|
page read and write
|
|
|
|
28E2A2E0000
|
unkown
|
page read and write
|
|
|
|
22F71602000
|
unkown
|
page read and write
|
|
|
|
2B8E9440000
|
unkown image
|
page readonly
|
|
|
|
22F70853000
|
unkown
|
page read and write
|
|
|
|
7FF562B61000
|
unkown image
|
page readonly
|
|
|
|
28E25E00000
|
unkown image
|
page readonly
|
|
|
|
22F71149000
|
unkown
|
page read and write
|
|
|
|
AEF627F000
|
unkown
|
page read and write
|
|
|
|
7FF55AF5A000
|
unkown image
|
page readonly
|
|
|
|
22F7110E000
|
unkown
|
page read and write
|
|
|
|
7DF5B8992000
|
unkown image
|
page readonly
|
|
|
|
1E74344D000
|
unkown
|
page read and write
|
|
|
|
22F708BB000
|
unkown
|
page read and write
|
|
|
|
7FF543E66000
|
unkown image
|
page readonly
|
|
|
|
7FF562EA4000
|
unkown image
|
page readonly
|
|
|
|
28E2A430000
|
unkown
|
page read and write
|
|
|
|
2B8E9610000
|
unkown
|
page read and write
|
|
|
|
7FF598DDD000
|
unkown image
|
page readonly
|
|
|
|
28E2A488000
|
unkown
|
page read and write
|
|
|
|
AEF5EFB000
|
unkown
|
page read and write
|
|
|
|
2D40000
|
heap private
|
page read and write
|
|
|
|
7FF57ABA7000
|
unkown image
|
page readonly
|
|
|
|
7DF5A2BD0000
|
unkown image
|
page readonly
|
|
|
|
22F711A8000
|
unkown
|
page read and write
|
|
|
|
28E2A502000
|
unkown
|
page read and write
|
|
|
|
28E24F02000
|
unkown
|
page read and write
|
|
|
|
22F70E50000
|
unkown image
|
page readonly
|
|
|
|
7FF5629A1000
|
unkown image
|
page readonly
|
|
|
|
CCF000
|
unkown
|
page read and write
|
|
|
|
800000
|
unkown
|
page execute and read and write
|
|
|
|
28E25DC0000
|
unkown image
|
page readonly
|
|
|
|
24A8D87F000
|
unkown
|
page read and write
|
|
|
|
7FF57ADC3000
|
unkown image
|
page readonly
|
|
|
|
7FF593A8B000
|
unkown image
|
page readonly
|
|
|
|
7FF57ACD1000
|
unkown image
|
page readonly
|
|
|
|
7FF57AAC2000
|
unkown image
|
page readonly
|
|
|
|
EE59C7E000
|
unkown
|
page read and write
|
|
|
|
7FF55B008000
|
unkown image
|
page readonly
|
|
|
|
741B9F7000
|
unkown
|
page read and write
|
|
|
|
7FF55AF97000
|
unkown image
|
page readonly
|
|
|
|
7DF5A2BC0000
|
unkown image
|
page readonly
|
|
|
|
22F70902000
|
unkown
|
page read and write
|
|
|
|
7FF57AAAF000
|
unkown image
|
page readonly
|
|
|
|
7FF57AB83000
|
unkown image
|
page readonly
|
|
|
|
405000
|
unkown image
|
page read and write
|
|
|
|
7FF598BBA000
|
unkown image
|
page readonly
|
|
|
|
22F7118F000
|
unkown
|
page read and write
|
|
|
|
28E2A2E4000
|
unkown
|
page read and write
|
|
|
|
7FF543E21000
|
unkown image
|
page readonly
|
|
|
|
EE599DE000
|
unkown
|
page read and write
|
|
|
|
22F7111A000
|
unkown
|
page read and write
|
|
|
|
7FF57AD16000
|
unkown image
|
page readonly
|
|
|
|
7FF598BE7000
|
unkown image
|
page readonly
|
|
|
|
22F711A8000
|
unkown
|
page read and write
|
|
|
|
7FF5986B9000
|
unkown image
|
page readonly
|
|
|
|
7FF543E79000
|
unkown image
|
page readonly
|
|
|
|
22F71600000
|
unkown
|
page read and write
|
|
|
|
401000
|
unkown image
|
page execute read
|
|
|
|
28E2A4F3000
|
unkown
|
page read and write
|
|
|
|
22F71178000
|
unkown
|
page read and write
|
|
|
|
22F71100000
|
unkown
|
page read and write
|
|
|
|
1A6B2AC0000
|
unkown image
|
page readonly
|
|
|
|
7DF5A2BC2000
|
unkown image
|
page readonly
|
|
|
|
7FF57AB9E000
|
unkown image
|
page readonly
|
|
|
|
24A8D815000
|
heap private
|
page read and write
|
|
|
|
7DF54DCE0000
|
unkown image
|
page readonly
|
|
|
|
43E000
|
unkown image
|
page readonly
|
|
|
|
BB9197E000
|
unkown
|
page read and write
|
|
|
|
AEF617F000
|
unkown
|
page read and write
|
|
|
|
7FF57AAC9000
|
unkown image
|
page readonly
|
|
|
|
1FFC5130000
|
heap private
|
page read and write
|
|
|
|
CE0000
|
unkown image
|
page readonly
|
|
|
|
400000
|
unkown image
|
page readonly
|
|
|
|
7FF5AEBA7000
|
unkown image
|
page readonly
|
|
|
|
1E743290000
|
unkown image
|
page readonly
|
|
|
|
1A6B2C2A000
|
unkown
|
page read and write
|
|
|
|
7FF598D33000
|
unkown image
|
page readonly
|
|
|
|
7FFB2000
|
unkown image
|
page readonly
|
|
|
|
22F70857000
|
unkown
|
page read and write
|
|
|
|
40000
|
unkown image
|
page readonly
|
|
|
|
22F7118F000
|
unkown
|
page read and write
|
|
|
|
7DF584B90000
|
unkown image
|
page readonly
|
|
|
|
7DF584B70000
|
unkown image
|
page readonly
|
|
|
|
7FF598E22000
|
unkown image
|
page readonly
|
|
|
|
7FF55B1B3000
|
unkown image
|
page readonly
|
|
|
|
7FF543EDD000
|
unkown image
|
page readonly
|
|
|
|
7FF598BCF000
|
unkown image
|
page readonly
|
|
|
|
7FF562E22000
|
unkown image
|
page readonly
|
|
|
|
28E24E97000
|
unkown
|
page read and write
|
|
|
|
28E2A3E0000
|
unkown
|
page read and write
|
|
|
|
8D1000
|
unkown image
|
page execute read
|
|
|
|
2888000
|
heap private
|
page read and write
|
|
|
|
22F7118F000
|
unkown
|
page read and write
|
|
|
|
7FF598D79000
|
unkown image
|
page readonly
|
|
|
|
22F708A5000
|
unkown
|
page read and write
|
|
|
|
1FFC5190000
|
heap default
|
page read and write
|
|
|
|
7FF598E27000
|
unkown image
|
page readonly
|
|
|
|
22F70710000
|
unkown image
|
page readonly
|
|
|
|
7FF5986A3000
|
unkown image
|
page readonly
|
|
There are 966 hidden memdumps, click here to show them.