Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
31cGYywxgy.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\LocalLow\UzHzOcbkHjz.zip
|
Zip archive data, at least v2.0 to extract
|
dropped
|
 |
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\AccessibleHandler.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\AccessibleMarshal.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\IA2Marshal.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\MapiProxy.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\MapiProxy_InUse.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-file-l1-2-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-file-l2-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-handle-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-heap-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-interlocked-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-libraryloader-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-localization-l1-2-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-memory-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-namedpipe-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-processenvironment-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-processthreads-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-processthreads-l1-1-1.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-profile-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-rtlsupport-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-string-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-synch-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-synch-l1-2-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-sysinfo-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-timezone-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-core-util-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-crt-conio-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-crt-convert-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-crt-environment-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-crt-filesystem-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-crt-heap-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-crt-locale-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-crt-math-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-crt-multibyte-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-crt-private-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-crt-process-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-crt-runtime-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-crt-stdio-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-crt-string-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-crt-time-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\api-ms-win-crt-utility-l1-1-0.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\breakpadinjector.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\freebl3.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\ldap60.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\ldif60.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\lgpllibs.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\libEGL.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\mozMapi32.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\mozMapi32_InUse.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\mozglue.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\msvcp140.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\nss3.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\nssckbi.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\nssdbm3.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\pB4pD1lB4sD3.zip
|
Zip archive data, at least v2.0 to extract
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\prldap60.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\qipcap.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\softokn3.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\ucrtbase.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\uS0wV5wY9qH3\vcruntime140.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\yH9tY9hO9gL5
|
ASCII text, with CRLF, CR line terminators
|
dropped
|
|
|
|
\Device\Null
|
ASCII text, with CRLF line terminators, with overstriking
|
dropped
|
|
There are 53 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\31cGYywxgy.exe
|
'C:\Users\user\Desktop\31cGYywxgy.exe'
|
|
|
|
C:\Windows\SysWOW64\cmd.exe
|
cmd.exe /C timeout /T 10 /NOBREAK > Nul & Del /f /q 'C:\Users\user\Desktop\31cGYywxgy.exe'
|
|
|
|
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
|
|
|
C:\Windows\SysWOW64\timeout.exe
|
timeout /T 10 /NOBREAK
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://194.180.174.100//l/f/G5GYJXwB3dP17Spz8m-L/70e760d32c85dd68bb76b7cf4f9d65a400d87d16
|
194.180.174.100
|
|
|
|
http://194.180.174.100/
|
194.180.174.100
|
|
|
|
http://194.180.174.100//l/f/G5GYJXwB3dP17Spz8m-L/d9a87544924531ef155dbccfe1a04e27038ca861
|
194.180.174.100
|
|
|
|
http://194.180.174.100/Pv
|
unknown
|
|
|
|
http://crl.netsolssl.com/NetworkSolutionsCertificateAuthority.crl0
|
unknown
|
|
|
|
http://fedir.comsign.co.il/crl/ComSignCA.crl0
|
unknown
|
|
|
|
http://crl.chambersign.org/chambersroot.crl0
|
unknown
|
|
|
|
https://2542116.fls.doubleclick.net/activityi;src=2542116;type=chrom322;cat=chrom01g;ord=58648497779
|
unknown
|
|
|
|
https://repository.luxtrust.lu0
|
unknown
|
|
|
|
http://cps.chambersign.org/cps/chambersroot.html0
|
unknown
|
|
|
|
https://telegram.org/img/t_logo.png
|
unknown
|
|
|
|
http://www.mozilla.com0
|
unknown
|
|
|
|
https://www.google.com/chrome/static/images/favicons/favicon-16x16.png
|
unknown
|
|
|
|
http://www.chambersign.org1
|
unknown
|
|
|
|
http://crl.pkioverheid.nl/DomOrganisatieLatestCRL-G2.crl0
|
unknown
|
|
|
|
http://www.firmaprofesional.com/cps0
|
unknown
|
|
|
|
http://www.diginotar.nl/cps/pkioverheid0
|
unknown
|
|
|
|
http://repository.swisssign.com/0
|
unknown
|
|
|
|
http://crl.securetrust.com/SGCA.crl0
|
unknown
|
|
|
|
http://crl.securetrust.com/STCA.crl0
|
unknown
|
|
|
|
http://www.trustcenter.de/crl/v2/tc_class_3_ca_II.crl
|
unknown
|
|
|
|
http://crl.thawte.com/ThawteTimestampingCA.crl0
|
unknown
|
|
|
|
http://www.certplus.com/CRL/class2.crl0
|
unknown
|
|
|
|
http://194.180.174.100//l/f/G5GYJXwB3dP17Spz8m-L/70e760d32c85dd68bb76b7cf4f9d65a400d87d167
|
unknown
|
|
|
|
http://www.quovadisglobal.com/cps0
|
unknown
|
|
|
|
https://t..180.174.100/
|
unknown
|
|
|
|
https://contextual.media.net/checksync.php?&vsSync=1&cs=1&hb=1&cv=37&ndec=1&cid=8HBI57XIG&prvid=77%2
|
unknown
|
|
|
|
http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1_der.crl0
|
unknown
|
|
|
|
https://www.microsoft.c
|
unknown
|
|
|
|
http://194.180.174.100//l/f/G5GYJXwB3dP17Spz8m-L/70e760d32c85dd68bb76b7cf4f9d65a400d87d16T
|
unknown
|
|
|
|
https://ocsp.quovadisoffshore.com0
|
unknown
|
|
|
|
http://cps.chambersign.org/cps/chambersignroot.html0
|
unknown
|
|
|
|
http://policy.camerfirma.com0
|
unknown
|
|
|
|
http://www.mozilla.com/en-US/blocklist/
|
unknown
|
|
|
|
http://www.accv.es/legislacion_c.htm0U
|
unknown
|
|
|
|
http://www.certicamara.com/dpc/0Z
|
unknown
|
|
|
|
http://ocsp.accv.es0
|
unknown
|
|
|
|
http://ocsp.thawte.com0
|
unknown
|
|
|
|
https://contextual.media.net/checksync.php&vsSync=1&cs=1&hb=1&cv=37&ndec=1&cid=8HBI57XIG&prvid=77%2C
|
unknown
|
|
|
|
https://www.catcert.net/verarrel
|
unknown
|
|
|
|
https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chom0;ord=4842492154761;g
|
unknown
|
|
|
|
http://www.accv.es/fileadmin/Archivos/certificados/raizaccv1.crt0
|
unknown
|
|
|
|
http://crl.chambersign.org/chambersignroot.crl0
|
unknown
|
|
|
|
http://crl.xrampsecurity.com/XGCA.crl0
|
unknown
|
|
|
|
http://194.180.174.100//l/f/G5GYJXwB3dP17Spz8m-L/d9a87544924531ef155dbccfe1a04e27038ca861ata
|
unknown
|
|
|
|
https://www.catcert.net/verarrel05
|
unknown
|
|
|
|
https://t.me/agrybirdsgamerept
|
149.154.167.99
|
|
|
|
http://www.quovadis.bm0
|
unknown
|
|
|
|
http://www.accv.es00
|
unknown
|
|
|
|
http://www.pkioverheid.nl/policies/root-policy-G20
|
unknown
|
|
|
|
http://www.cert.fnmt.es/dpcs/0
|
unknown
|
|
|
|
https://2542116.fls.doubleclick.net/activityi;src=2542116;type=2542116;cat=chom0;ord
|
unknown
|
|
There are 42 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
t.me
|
149.154.167.99
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
194.180.174.100
|
unknown
|
unknown
|
|
|
|
149.154.167.99
|
t.me
|
United Kingdom
|
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
400000
|
unkown image
|
page execute and read and write
|
|
|
|
2220000
|
unkown
|
page read and write
|
|
|
|
2120000
|
unkown
|
page execute and read and write
|
|
|
|
9BB000
|
unkown
|
page read and write
|
|
|
|
6E822000
|
unkown image
|
page readonly
|
|
|
|
4B820000
|
unkown image
|
page readonly
|
|
|
|
5B6F7FF000
|
unkown
|
page read and write
|
|
|
|
1FA64980000
|
unkown image
|
page readonly
|
|
|
|
1B057C62000
|
unkown
|
page read and write
|
|
|
|
1D7C967F000
|
unkown
|
page read and write
|
|
|
|
1D5A3100000
|
unkown
|
page read and write
|
|
|
|
7FF59FE17000
|
unkown image
|
page readonly
|
|
|
|
2D2D000
|
unkown
|
page read and write
|
|
|
|
7DF5B5820000
|
unkown image
|
page readonly
|
|
|
|
7FF5DF98E000
|
unkown image
|
page readonly
|
|
|
|
1E3F52A0000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEDDB000
|
unkown image
|
page readonly
|
|
|
|
7DF5371D2000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE1A6000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEB01000
|
unkown image
|
page readonly
|
|
|
|
1FA64413000
|
unkown
|
page read and write
|
|
|
|
7FF5A6568000
|
unkown image
|
page readonly
|
|
|
|
1D59D740000
|
unkown image
|
page readonly
|
|
|
|
2C6B000
|
unkown image
|
page readonly
|
|
|
|
7FF59FEEB000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED7FD000
|
unkown image
|
page readonly
|
|
|
|
1C78A085000
|
unkown
|
page read and write
|
|
|
|
7FF4EECB0000
|
unkown image
|
page readonly
|
|
|
|
275BE820000
|
unkown image
|
page readonly
|
|
|
|
7FF4EECD7000
|
unkown image
|
page readonly
|
|
|
|
275BE800000
|
unkown image
|
page read and write
|
|
|
|
1B057C4E000
|
unkown
|
page read and write
|
|
|
|
66B697E000
|
unkown
|
page read and write
|
|
|
|
2BF6000
|
unkown image
|
page readonly
|
|
|
|
1B057C5A000
|
unkown
|
page read and write
|
|
|
|
1D5A2EE7000
|
unkown
|
page read and write
|
|
|
|
1D59D760000
|
heap default
|
page read and write
|
|
|
|
1B058000000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE1CE000
|
unkown image
|
page readonly
|
|
|
|
2C75000
|
unkown image
|
page readonly
|
|
|
|
3B51477000
|
unkown
|
page read and write
|
|
|
|
1D59DE50000
|
unkown image
|
page readonly
|
|
|
|
1D59D790000
|
unkown
|
page read and write
|
|
|
|
7FF5A63ED000
|
unkown image
|
page readonly
|
|
|
|
1C78A03C000
|
unkown
|
page read and write
|
|
|
|
7DF5C3AD0000
|
unkown image
|
page readonly
|
|
|
|
5B6F3FE000
|
unkown
|
page read and write
|
|
|
|
7FF4EE582000
|
unkown image
|
page readonly
|
|
|
|
72C000
|
unkown
|
page read and write
|
|
|
|
1FA64990000
|
unkown image
|
page readonly
|
|
|
|
7DF503362000
|
unkown image
|
page readonly
|
|
|
|
12A717E000
|
unkown
|
page read and write
|
|
|
|
7DF503352000
|
unkown image
|
page readonly
|
|
|
|
1FA644C5000
|
unkown
|
page read and write
|
|
|
|
7FF59FCBD000
|
unkown image
|
page readonly
|
|
|
|
1C789E50000
|
unkown image
|
page read and write
|
|
|
|
7FF5DFB5F000
|
unkown image
|
page readonly
|
|
|
|
7FF59FDE0000
|
unkown image
|
page readonly
|
|
|
|
7DF503FA0000
|
unkown image
|
page readonly
|
|
|
|
1D7C93B0000
|
unkown image
|
page read and write
|
|
|
|
7FF4ED523000
|
unkown image
|
page readonly
|
|
|
|
1D5A2CC0000
|
unkown
|
page read and write
|
|
|
|
7FF4EDA1F000
|
unkown image
|
page readonly
|
|
|
|
2BDB000
|
unkown image
|
page readonly
|
|
|
|
6E801000
|
unkown image
|
page execute read
|
|
|
|
7FF4EDA5F000
|
unkown image
|
page readonly
|
|
|
|
1D59D700000
|
heap private
|
page read and write
|
|
|
|
7FF4EE574000
|
unkown image
|
page readonly
|
|
|
|
1D7C9500000
|
unkown image
|
page readonly
|
|
|
|
25B3F800000
|
unkown
|
page read and write
|
|
|
|
1FA642C0000
|
unkown image
|
page readonly
|
|
|
|
7DF503360000
|
unkown image
|
page readonly
|
|
|
|
1B057C00000
|
unkown
|
page read and write
|
|
|
|
2DB9000
|
unkown
|
page read and write
|
|
|
|
23D51AC0000
|
heap default
|
page read and write
|
|
|
|
4BAF0000
|
unkown
|
page read and write
|
|
|
|
7FF5A6557000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8DD3000
|
unkown image
|
page readonly
|
|
|
|
7DF5F54B0000
|
unkown image
|
page readonly
|
|
|
|
1B057C31000
|
unkown
|
page read and write
|
|
|
|
7FF5A6524000
|
unkown image
|
page readonly
|
|
|
|
1C78A100000
|
unkown
|
page read and write
|
|
|
|
21B0000
|
unkown
|
page read and write
|
|
|
|
7FF5E90E6000
|
unkown image
|
page readonly
|
|
|
|
1FA644B9000
|
unkown
|
page read and write
|
|
|
|
23D51D02000
|
unkown
|
page read and write
|
|
|
|
1D59D710000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED957000
|
unkown image
|
page readonly
|
|
|
|
1D5A2C20000
|
unkown
|
page read and write
|
|
|
|
7DF503FA2000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8F0E000
|
unkown image
|
page readonly
|
|
|
|
1E3F5260000
|
heap private
|
page read and write
|
|
|
|
1D59D879000
|
unkown
|
page read and write
|
|
|
|
7DF503352000
|
unkown image
|
page readonly
|
|
|
|
7FF521797000
|
unkown image
|
page readonly
|
|
|
|
1E3F5513000
|
unkown
|
page read and write
|
|
|
|
6E830000
|
unkown image
|
page readonly
|
|
|
|
25B3F740000
|
unkown image
|
page readonly
|
|
|
|
7FF5A653C000
|
unkown image
|
page readonly
|
|
|
|
1D59E002000
|
unkown
|
page read and write
|
|
|
|
1B057C56000
|
unkown
|
page read and write
|
|
|
|
1E3F5270000
|
unkown image
|
page readonly
|
|
|
|
5B6EF7F000
|
unkown
|
page read and write
|
|
|
|
7FF4EE466000
|
unkown image
|
page readonly
|
|
|
|
7FF5E9059000
|
unkown image
|
page readonly
|
|
|
|
275BEA00000
|
unkown
|
page read and write
|
|
|
|
12A6EFE000
|
unkown
|
page read and write
|
|
|
|
25B3F710000
|
heap private
|
page read and write
|
|
|
|
7FF5E87B2000
|
unkown image
|
page readonly
|
|
|
|
1E3F5413000
|
unkown
|
page read and write
|
|
|
|
275BE850000
|
unkown image
|
page readonly
|
|
|
|
199000
|
unkown
|
page read and write
|
|
|
|
7DF5B5812000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEDDD000
|
unkown image
|
page readonly
|
|
|
|
7FF5A6634000
|
unkown image
|
page readonly
|
|
|
|
7FF5A6532000
|
unkown image
|
page readonly
|
|
|
|
5B6F4FF000
|
unkown
|
page read and write
|
|
|
|
40000
|
unkown image
|
page readonly
|
|
|
|
7FF5A6328000
|
unkown image
|
page readonly
|
|
|
|
7FF5E9013000
|
unkown image
|
page readonly
|
|
|
|
7DF5371F0000
|
unkown image
|
page readonly
|
|
|
|
680000
|
heap default
|
page read and write
|
|
|
|
1D59D800000
|
unkown
|
page read and write
|
|
|
|
7FF59F6AA000
|
unkown image
|
page readonly
|
|
|
|
7DF5F54A0000
|
unkown image
|
page readonly
|
|
|
|
379000
|
unkown
|
page read and write
|
|
|
|
7FF5DFB9B000
|
unkown image
|
page readonly
|
|
|
|
7FF4EDA30000
|
unkown image
|
page readonly
|
|
|
|
25B3FE60000
|
unkown image
|
page readonly
|
|
|
|
7FF5DFB70000
|
unkown image
|
page readonly
|
|
|
|
1D7C9656000
|
unkown
|
page read and write
|
|
|
|
7DF5046E0000
|
unkown image
|
page readonly
|
|
|
|
7FF4EED0D000
|
unkown image
|
page readonly
|
|
|
|
1D5A3120000
|
unkown
|
page read and write
|
|
|
|
925FA7E000
|
unkown
|
page read and write
|
|
|
|
2210000
|
heap private
|
page read and write
|
|
|
|
7FF4EEC97000
|
unkown image
|
page readonly
|
|
|
|
7FF5A655C000
|
unkown image
|
page readonly
|
|
|
|
23D51BF0000
|
unkown
|
page read and write
|
|
|
|
23D52000000
|
unkown image
|
page readonly
|
|
|
|
7FF5DFB9F000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE954000
|
unkown image
|
page readonly
|
|
|
|
7FF5DFACD000
|
unkown image
|
page readonly
|
|
|
|
7FB30000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEA9F000
|
unkown image
|
page readonly
|
|
|
|
1D59E102000
|
unkown
|
page read and write
|
|
|
|
7FF4EEACC000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE605000
|
unkown image
|
page readonly
|
|
|
|
1D5A3000000
|
unkown
|
page read and write
|
|
|
|
2BEC000
|
unkown image
|
page readonly
|
|
|
|
275BEA55000
|
unkown
|
page read and write
|
|
|
|
7FB10000
|
unkown image
|
page readonly
|
|
|
|
7FF52178D000
|
unkown image
|
page readonly
|
|
|
|
7FF5AD9EE000
|
unkown image
|
page readonly
|
|
|
|
12A6E7E000
|
unkown
|
page read and write
|
|
|
|
23D51C2A000
|
unkown
|
page read and write
|
|
|
|
7FF59FE85000
|
unkown image
|
page readonly
|
|
|
|
1E3F5500000
|
unkown
|
page read and write
|
|
|
|
275BEA5B000
|
unkown
|
page read and write
|
|
|
|
1E3F5270000
|
unkown image
|
page readonly
|
|
|
|
1D59DE60000
|
unkown image
|
page readonly
|
|
|
|
1D5A4000000
|
unkown
|
page read and write
|
|
|
|
85110FF000
|
unkown
|
page read and write
|
|
|
|
400000
|
unkown image
|
page readonly
|
|
|
|
66B6F7F000
|
unkown
|
page read and write
|
|
|
|
7FF5AE1B0000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEC17000
|
unkown image
|
page readonly
|
|
|
|
23D51C13000
|
unkown
|
page read and write
|
|
|
|
7FF4ED9C5000
|
unkown image
|
page readonly
|
|
|
|
7DF5BBF42000
|
unkown image
|
page readonly
|
|
|
|
1D59D770000
|
unkown image
|
page readonly
|
|
|
|
7DF5C3AD2000
|
unkown image
|
page readonly
|
|
|
|
25B3FE50000
|
unkown image
|
page readonly
|
|
|
|
1E3F5600000
|
unkown image
|
page readonly
|
|
|
|
4E3000
|
unkown image
|
page readonly
|
|
|
|
400000
|
unkown image
|
page readonly
|
|
|
|
289D000
|
unkown
|
page read and write
|
|
|
|
7FF59FEDF000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEB7D000
|
unkown image
|
page readonly
|
|
|
|
1D5A2EFD000
|
unkown
|
page read and write
|
|
|
|
2BB4000
|
unkown image
|
page readonly
|
|
|
|
1D7C9613000
|
unkown
|
page read and write
|
|
|
|
7FF5218DF000
|
unkown image
|
page readonly
|
|
|
|
7FF59FC18000
|
unkown image
|
page readonly
|
|
|
|
7FF5A664B000
|
unkown image
|
page readonly
|
|
|
|
23B0000
|
heap private
|
page read and write
|
|
|
|
1C78A013000
|
unkown
|
page read and write
|
|
|
|
7DF5046F0000
|
unkown image
|
page readonly
|
|
|
|
7FF5A663E000
|
unkown image
|
page readonly
|
|
|
|
7FF4EED98000
|
unkown image
|
page readonly
|
|
|
|
581B07F000
|
unkown
|
page read and write
|
|
|
|
7FF5E8F33000
|
unkown image
|
page readonly
|
|
|
|
1FA64C02000
|
unkown
|
page read and write
|
|
|
|
7FF5218AB000
|
unkown image
|
page readonly
|
|
|
|
7FF5A61AE000
|
unkown image
|
page readonly
|
|
|
|
7DF5371E2000
|
unkown image
|
page readonly
|
|
|
|
7FF5213E6000
|
unkown image
|
page readonly
|
|
|
|
1D59DFF3000
|
unkown
|
page read and write
|
|
|
|
1C789FA0000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEADD000
|
unkown image
|
page readonly
|
|
|
|
7FF5A6593000
|
unkown image
|
page readonly
|
|
|
|
2DBE000
|
unkown
|
page read and write
|
|
|
|
7FF5A645D000
|
unkown image
|
page readonly
|
|
|
|
7FFC2000
|
unkown image
|
page readonly
|
|
|
|
1D59D88F000
|
unkown
|
page read and write
|
|
|
|
7FF521823000
|
unkown image
|
page readonly
|
|
|
|
8510FFB000
|
unkown
|
page read and write
|
|
|
|
7FFB0000
|
unkown image
|
page readonly
|
|
|
|
23D52190000
|
unkown image
|
page readonly
|
|
|
|
7FF5E9063000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE570000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE684000
|
unkown image
|
page readonly
|
|
|
|
37C000
|
unkown
|
page read and write
|
|
|
|
1D5A2DE1000
|
unkown
|
page read and write
|
|
|
|
1D7C9B80000
|
unkown image
|
page readonly
|
|
|
|
7DF5C3AE0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E911F000
|
unkown image
|
page readonly
|
|
|
|
1D59DF90000
|
unkown image
|
page readonly
|
|
|
|
7FF5218DD000
|
unkown image
|
page readonly
|
|
|
|
1FA64502000
|
unkown
|
page read and write
|
|
|
|
7DF5C3AE2000
|
unkown image
|
page readonly
|
|
|
|
7FFB2000
|
unkown image
|
page readonly
|
|
|
|
2E5D000
|
unkown
|
page read and write
|
|
|
|
7FF4EEA99000
|
unkown image
|
page readonly
|
|
|
|
7FF5E90DF000
|
unkown image
|
page readonly
|
|
|
|
1D59E700000
|
unkown image
|
page read and write
|
|
|
|
275BE820000
|
unkown image
|
page readonly
|
|
|
|
70C000
|
unkown
|
page read and write
|
|
|
|
7FF5AE0D7000
|
unkown image
|
page readonly
|
|
|
|
1D5A2DC8000
|
unkown
|
page read and write
|
|
|
|
7DF5BBF40000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8EBD000
|
unkown image
|
page readonly
|
|
|
|
A70000
|
heap default
|
page read and write
|
|
|
|
1D5A2E88000
|
unkown
|
page read and write
|
|
|
|
1D59DFA0000
|
unkown image
|
page readonly
|
|
|
|
23D51A70000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE5D5000
|
unkown image
|
page readonly
|
|
|
|
7DF5046E2000
|
unkown image
|
page readonly
|
|
|
|
7DF503F92000
|
unkown image
|
page readonly
|
|
|
|
1B057A10000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED0F2000
|
unkown image
|
page readonly
|
|
|
|
7FF4EDA4E000
|
unkown image
|
page readonly
|
|
|
|
7DF503370000
|
unkown image
|
page readonly
|
|
|
|
1D59D896000
|
unkown
|
page read and write
|
|
|
|
1D59D730000
|
unkown image
|
page readonly
|
|
|
|
7FF4EECEC000
|
unkown image
|
page readonly
|
|
|
|
12A6BEC000
|
unkown
|
page read and write
|
|
|
|
7FF5ADF7D000
|
unkown image
|
page readonly
|
|
|
|
275BEC00000
|
unkown image
|
page readonly
|
|
|
|
7DF5C3AD2000
|
unkown image
|
page readonly
|
|
|
|
275BF202000
|
unkown
|
page read and write
|
|
|
|
7DF503FB0000
|
unkown image
|
page readonly
|
|
|
|
7DF5371D0000
|
unkown image
|
page readonly
|
|
|
|
1D59DFB0000
|
unkown image
|
page readonly
|
|
|
|
7FF5A661B000
|
unkown image
|
page readonly
|
|
|
|
376000
|
unkown
|
page read and write
|
|
|
|
7DF5C3AF0000
|
unkown image
|
page readonly
|
|
|
|
7FF5A6545000
|
unkown image
|
page readonly
|
|
|
|
7FF521845000
|
unkown image
|
page readonly
|
|
|
|
2C1E000
|
unkown
|
page read and write
|
|
|
|
7FF4EECD3000
|
unkown image
|
page readonly
|
|
|
|
7FF59FE03000
|
unkown image
|
page readonly
|
|
|
|
25B3F720000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE68B000
|
unkown image
|
page readonly
|
|
|
|
5B6F27F000
|
unkown
|
page read and write
|
|
|
|
13E5FE000
|
unkown
|
page read and write
|
|
|
|
AD0A27C000
|
unkown
|
page read and write
|
|
|
|
8510AFB000
|
unkown
|
page read and write
|
|
|
|
7FF4EEDAE000
|
unkown image
|
page readonly
|
|
|
|
1C78A061000
|
unkown
|
page read and write
|
|
|
|
7FF4EDA5F000
|
unkown image
|
page readonly
|
|
|
|
1B057B60000
|
unkown
|
page read and write
|
|
|
|
23D52260000
|
unkown
|
page read and write
|
|
|
|
7FF4EECC2000
|
unkown image
|
page readonly
|
|
|
|
3B5127A000
|
unkown
|
page read and write
|
|
|
|
5B6F079000
|
unkown
|
page read and write
|
|
|
|
7FF4EDA26000
|
unkown image
|
page readonly
|
|
|
|
1B057C76000
|
unkown
|
page read and write
|
|
|
|
1FA64D12000
|
unkown
|
page read and write
|
|
|
|
25B40002000
|
unkown
|
page read and write
|
|
|
|
1E3F5508000
|
unkown
|
page read and write
|
|
|
|
7DF503350000
|
unkown image
|
page readonly
|
|
|
|
7FF5DFAAC000
|
unkown image
|
page readonly
|
|
|
|
1D5A2DC0000
|
unkown
|
page read and write
|
|
|
|
1C78A06A000
|
unkown
|
page read and write
|
|
|
|
1B057A40000
|
unkown image
|
page readonly
|
|
|
|
E20000
|
heap private
|
page read and write
|
|
|
|
7DF5F54A2000
|
unkown image
|
page readonly
|
|
|
|
4BACF000
|
unkown
|
page read and write
|
|
|
|
13E4F7000
|
unkown
|
page read and write
|
|
|
|
7FF4EED19000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE593000
|
unkown image
|
page readonly
|
|
|
|
7DF5046D2000
|
unkown image
|
page readonly
|
|
|
|
7FF59FF0E000
|
unkown image
|
page readonly
|
|
|
|
2BB0000
|
unkown image
|
page readonly
|
|
|
|
7DF4FC8E0000
|
unkown image
|
page readonly
|
|
|
|
1D5A2EE9000
|
unkown
|
page read and write
|
|
|
|
7FF5E904D000
|
unkown image
|
page readonly
|
|
|
|
1B057C5C000
|
unkown
|
page read and write
|
|
|
|
7DF5BBF40000
|
unkown image
|
page readonly
|
|
|
|
25B3F802000
|
unkown
|
page read and write
|
|
|
|
25B3F873000
|
unkown
|
page read and write
|
|
|
|
235F000
|
unkown
|
page read and write
|
|
|
|
1D5A2C30000
|
unkown
|
page read and write
|
|
|
|
1E3F548A000
|
unkown
|
page read and write
|
|
|
|
7FF5218CE000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE198000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE984000
|
unkown image
|
page readonly
|
|
|
|
1D59D8A1000
|
unkown
|
page read and write
|
|
|
|
76C000
|
unkown
|
page read and write
|
|
|
|
1D7C9A00000
|
unkown image
|
page readonly
|
|
|
|
23D51BC0000
|
unkown
|
page read and write
|
|
|
|
7FF5A663B000
|
unkown image
|
page readonly
|
|
|
|
7FF5A60FF000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED0F8000
|
unkown image
|
page readonly
|
|
|
|
2D79000
|
unkown
|
page read and write
|
|
|
|
1FA64290000
|
unkown image
|
page readonly
|
|
|
|
1D7C93D0000
|
unkown image
|
page readonly
|
|
|
|
1D7C9664000
|
unkown
|
page read and write
|
|
|
|
7DF503F90000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8F75000
|
unkown image
|
page readonly
|
|
|
|
1E3F5400000
|
unkown
|
page read and write
|
|
|
|
7FF5E8F94000
|
unkown image
|
page readonly
|
|
|
|
4E3000
|
unkown image
|
page readonly
|
|
|
|
7DF5FEA20000
|
unkown image
|
page readonly
|
|
|
|
1E3F5980000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEDCE000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEDDF000
|
unkown image
|
page readonly
|
|
|
|
9C000
|
unkown
|
page read and write
|
|
|
|
1B057C13000
|
unkown
|
page read and write
|
|
|
|
AD0A0FE000
|
unkown
|
page read and write
|
|
|
|
1D7C93C0000
|
heap private
|
page read and write
|
|
|
|
85112FF000
|
unkown
|
page read and write
|
|
|
|
7FF4EED23000
|
unkown image
|
page readonly
|
|
|
|
2C87000
|
unkown image
|
page readonly
|
|
|
|
7FF5DFAD5000
|
unkown image
|
page readonly
|
|
|
|
57E000
|
unkown
|
page read and write
|
|
|
|
1B057C29000
|
unkown
|
page read and write
|
|
|
|
7FF5DFB9F000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8EE3000
|
unkown image
|
page readonly
|
|
|
|
1D59D902000
|
unkown
|
page read and write
|
|
|
|
1D5A2DE4000
|
unkown
|
page read and write
|
|
|
|
1B057C47000
|
unkown
|
page read and write
|
|
|
|
253D000
|
unkown
|
page read and write
|
|
|
|
7DF5BBF50000
|
unkown image
|
page readonly
|
|
|
|
7FF5ADE93000
|
unkown image
|
page readonly
|
|
|
|
7FF5E90FD000
|
unkown image
|
page readonly
|
|
|
|
581AB7E000
|
unkown
|
page read and write
|
|
|
|
530000
|
unkown image
|
page readonly
|
|
|
|
52E000
|
unkown
|
page read and write
|
|
|
|
7FF5E9104000
|
unkown image
|
page readonly
|
|
|
|
7DF5371D2000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE1DF000
|
unkown image
|
page readonly
|
|
|
|
5B6F5FC000
|
unkown
|
page read and write
|
|
|
|
7FF59FE2D000
|
unkown image
|
page readonly
|
|
|
|
2EA0000
|
unkown image
|
page readonly
|
|
|
|
7DF503350000
|
unkown image
|
page readonly
|
|
|
|
275BEB13000
|
unkown
|
page read and write
|
|
|
|
7FB12000
|
unkown image
|
page readonly
|
|
|
|
4B88E000
|
unkown
|
page read and write
|
|
|
|
7FF4EEC54000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED967000
|
unkown image
|
page readonly
|
|
|
|
AD0A4FC000
|
unkown
|
page read and write
|
|
|
|
7DF5F54A2000
|
unkown image
|
page readonly
|
|
|
|
7FFC2000
|
unkown image
|
page readonly
|
|
|
|
1D59D891000
|
unkown
|
page read and write
|
|
|
|
239E000
|
unkown
|
page read and write
|
|
|
|
581A87B000
|
unkown
|
page read and write
|
|
|
|
7FF4EDA2B000
|
unkown image
|
page readonly
|
|
|
|
7FF5DFB8B000
|
unkown image
|
page readonly
|
|
|
|
7FB12000
|
unkown image
|
page readonly
|
|
|
|
7FF5DFAA7000
|
unkown image
|
page readonly
|
|
|
|
7FF4EECB4000
|
unkown image
|
page readonly
|
|
|
|
1D5A2EE5000
|
unkown
|
page read and write
|
|
|
|
1B057C7D000
|
unkown
|
page read and write
|
|
|
|
BCD000
|
unkown
|
page read and write
|
|
|
|
2D1F000
|
unkown
|
page read and write
|
|
|
|
2DA6000
|
unkown
|
page read and write
|
|
|
|
1D5A2EE1000
|
unkown
|
page read and write
|
|
|
|
7DF503F90000
|
unkown image
|
page readonly
|
|
|
|
1FA6443E000
|
unkown
|
page read and write
|
|
|
|
275BEA61000
|
unkown
|
page read and write
|
|
|
|
7FF5DFAEA000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE119000
|
unkown image
|
page readonly
|
|
|
|
7FF5E90EB000
|
unkown image
|
page readonly
|
|
|
|
7FB20000
|
unkown image
|
page readonly
|
|
|
|
1B057C83000
|
unkown
|
page read and write
|
|
|
|
7FF4EED15000
|
unkown image
|
page readonly
|
|
|
|
7FF59FBC8000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEAC3000
|
unkown image
|
page readonly
|
|
|
|
7DF5046E0000
|
unkown image
|
page readonly
|
|
|
|
1D5A3090000
|
unkown
|
page read and write
|
|
|
|
7DF5046E2000
|
unkown image
|
page readonly
|
|
|
|
7FF5E9055000
|
unkown image
|
page readonly
|
|
|
|
1C789EA0000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED270000
|
unkown image
|
page readonly
|
|
|
|
1D59EC20000
|
unkown
|
page read and write
|
|
|
|
7FEB0000
|
unkown image
|
page readonly
|
|
|
|
25B3F913000
|
unkown
|
page read and write
|
|
|
|
7FB22000
|
unkown image
|
page readonly
|
|
|
|
7FF5DF238000
|
unkown image
|
page readonly
|
|
|
|
1D7C9700000
|
unkown
|
page read and write
|
|
|
|
1D5A2E20000
|
unkown
|
page read and write
|
|
|
|
37F000
|
unkown
|
page read and write
|
|
|
|
1D59D872000
|
unkown
|
page read and write
|
|
|
|
1B057A60000
|
heap default
|
page read and write
|
|
|
|
7FF4EE5AC000
|
unkown image
|
page readonly
|
|
|
|
275BEA66000
|
unkown
|
page read and write
|
|
|
|
7FF5DFAE3000
|
unkown image
|
page readonly
|
|
|
|
1C789E60000
|
heap private
|
page read and write
|
|
|
|
7FF5AD96B000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE88F000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE145000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE58C000
|
unkown image
|
page readonly
|
|
|
|
7FF5E90F0000
|
unkown image
|
page readonly
|
|
|
|
AD0A5FE000
|
unkown
|
page read and write
|
|
|
|
24FE000
|
unkown
|
page read and write
|
|
|
|
275BE970000
|
unkown
|
page read and write
|
|
|
|
7DF5FEA22000
|
unkown image
|
page readonly
|
|
|
|
7DF5FEA30000
|
unkown image
|
page readonly
|
|
|
|
25B3F750000
|
unkown image
|
page readonly
|
|
|
|
66B62BB000
|
unkown
|
page read and write
|
|
|
|
25B3F869000
|
unkown
|
page read and write
|
|
|
|
7FF4ED8AF000
|
unkown image
|
page readonly
|
|
|
|
1E3F5455000
|
unkown
|
page read and write
|
|
|
|
25B3F829000
|
unkown
|
page read and write
|
|
|
|
7DF5B5830000
|
unkown image
|
page readonly
|
|
|
|
3B5107E000
|
unkown
|
page read and write
|
|
|
|
279E000
|
unkown
|
page read and write
|
|
|
|
6E95B000
|
unkown image
|
page readonly
|
|
|
|
1F0000
|
unkown
|
page read and write
|
|
|
|
1D7C93D0000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED873000
|
unkown image
|
page readonly
|
|
|
|
1FA644CA000
|
unkown
|
page read and write
|
|
|
|
3B516FE000
|
unkown
|
page read and write
|
|
|
|
7FF5DF853000
|
unkown image
|
page readonly
|
|
|
|
21A9000
|
unkown
|
page execute and read and write
|
|
|
|
1D5A2E0E000
|
unkown
|
page read and write
|
|
|
|
7FF5A6543000
|
unkown image
|
page readonly
|
|
|
|
7FFC0000
|
unkown image
|
page readonly
|
|
|
|
1FA64A80000
|
unkown image
|
page write copy
|
|
|
|
7FF5217EC000
|
unkown image
|
page readonly
|
|
|
|
1D59D7A0000
|
unkown image
|
page read and write
|
|
|
|
1C78A08A000
|
unkown
|
page read and write
|
|
|
|
7DF401E60000
|
unkown image
|
page readonly
|
|
|
|
3B50D5B000
|
unkown
|
page read and write
|
|
|
|
7FFB2000
|
unkown image
|
page readonly
|
|
|
|
7FF521898000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE12A000
|
unkown image
|
page readonly
|
|
|
|
1FA643C0000
|
unkown image
|
page readonly
|
|
|
|
1C78A400000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEDC4000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEDA6000
|
unkown image
|
page readonly
|
|
|
|
13E17E000
|
unkown
|
page read and write
|
|
|
|
6D0000
|
unkown image
|
page readonly
|
|
|
|
720000
|
unkown
|
page read and write
|
|
|
|
1B057C6C000
|
unkown
|
page read and write
|
|
|
|
7FFB0000
|
unkown image
|
page readonly
|
|
|
|
1B057E00000
|
unkown image
|
page readonly
|
|
|
|
66B6E7F000
|
unkown
|
page read and write
|
|
|
|
581AEFD000
|
unkown
|
page read and write
|
|
|
|
7DF5F5490000
|
unkown image
|
page readonly
|
|
|
|
21E0000
|
unkown
|
page read and write
|
|
|
|
7FF5E87B8000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEDCB000
|
unkown image
|
page readonly
|
|
|
|
1D5A2EBA000
|
unkown
|
page read and write
|
|
|
|
1D7C9702000
|
unkown
|
page read and write
|
|
|
|
1D5A2EB0000
|
unkown
|
page read and write
|
|
|
|
4B98F000
|
unkown
|
page read and write
|
|
|
|
7FF5AE1DB000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEA6A000
|
unkown image
|
page readonly
|
|
|
|
13E3FE000
|
unkown
|
page read and write
|
|
|
|
1D5A2CA0000
|
unkown
|
page read and write
|
|
|
|
1FA64280000
|
heap private
|
page read and write
|
|
|
|
7FF4EEC2F000
|
unkown image
|
page readonly
|
|
|
|
275BE870000
|
heap default
|
page read and write
|
|
|
|
1D59DAD0000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE67D000
|
unkown image
|
page readonly
|
|
|
|
581AC7E000
|
unkown
|
page read and write
|
|
|
|
1D59D87C000
|
unkown
|
page read and write
|
|
|
|
1D5A2E9B000
|
unkown
|
page read and write
|
|
|
|
1E3F546F000
|
unkown
|
page read and write
|
|
|
|
1C789FC0000
|
unkown
|
page read and write
|
|
|
|
7FF4EECCC000
|
unkown image
|
page readonly
|
|
|
|
1FA64513000
|
unkown
|
page read and write
|
|
|
|
7FF4EDA4B000
|
unkown image
|
page readonly
|
|
|
|
23D51BA0000
|
unkown image
|
page readonly
|
|
|
|
581ADFE000
|
unkown
|
page read and write
|
|
|
|
5B6F37F000
|
unkown
|
page read and write
|
|
|
|
7FF59FE59000
|
unkown image
|
page readonly
|
|
|
|
1D5A2E00000
|
unkown
|
page read and write
|
|
|
|
401000
|
unkown image
|
page execute read
|
|
|
|
23D51BF0000
|
unkown
|
page read and write
|
|
|
|
275D000
|
unkown
|
page read and write
|
|
|
|
7DF5BBF60000
|
unkown image
|
page readonly
|
|
|
|
7DF503360000
|
unkown image
|
page readonly
|
|
|
|
1FA64D37000
|
unkown
|
page read and write
|
|
|
|
7DF503370000
|
unkown image
|
page readonly
|
|
|
|
7FF5215F6000
|
unkown image
|
page readonly
|
|
|
|
7FF5DF669000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8F6F000
|
unkown image
|
page readonly
|
|
|
|
6E6000
|
unkown
|
page read and write
|
|
|
|
7DF4C19A0000
|
unkown image
|
page readonly
|
|
|
|
7DF5B5812000
|
unkown image
|
page readonly
|
|
|
|
1B057D02000
|
unkown
|
page read and write
|
|
|
|
1FA64270000
|
unkown image
|
page read and write
|
|
|
|
7DF5FEA10000
|
unkown image
|
page readonly
|
|
|
|
7DF5B5820000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE95A000
|
unkown image
|
page readonly
|
|
|
|
7FF5E9017000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8930000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE51E000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED823000
|
unkown image
|
page readonly
|
|
|
|
7DF5371E0000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE69B000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED529000
|
unkown image
|
page readonly
|
|
|
|
1D7C9668000
|
unkown
|
page read and write
|
|
|
|
7FF59FF1F000
|
unkown image
|
page readonly
|
|
|
|
7DF5BBF52000
|
unkown image
|
page readonly
|
|
|
|
7FF521657000
|
unkown image
|
page readonly
|
|
|
|
7FF59FDF0000
|
unkown image
|
page readonly
|
|
|
|
1C789E90000
|
unkown image
|
page readonly
|
|
|
|
2D4F000
|
unkown
|
page read and write
|
|
|
|
7FF4EEDDF000
|
unkown image
|
page readonly
|
|
|
|
7FF5E9085000
|
unkown image
|
page readonly
|
|
|
|
7FF4EDA3D000
|
unkown image
|
page readonly
|
|
|
|
68A000
|
heap default
|
page read and write
|
|
|
|
7FF4EEDAB000
|
unkown image
|
page readonly
|
|
|
|
7DF503F92000
|
unkown image
|
page readonly
|
|
|
|
7FF59FEF0000
|
unkown image
|
page readonly
|
|
|
|
7DF5BBF52000
|
unkown image
|
page readonly
|
|
|
|
7DF5F5490000
|
unkown image
|
page readonly
|
|
|
|
7DF503362000
|
unkown image
|
page readonly
|
|
|
|
7FF4EED9F000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE69D000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEC8D000
|
unkown image
|
page readonly
|
|
|
|
23D51A90000
|
unkown image
|
page readonly
|
|
|
|
7FF521819000
|
unkown image
|
page readonly
|
|
|
|
3B5137D000
|
unkown
|
page read and write
|
|
|
|
7FF5217D7000
|
unkown image
|
page readonly
|
|
|
|
1D7C9C02000
|
unkown
|
page read and write
|
|
|
|
7FF5E910E000
|
unkown image
|
page readonly
|
|
|
|
1D59D900000
|
unkown
|
page read and write
|
|
|
|
7FF4EE493000
|
unkown image
|
page readonly
|
|
|
|
1D5A2DC0000
|
unkown
|
page read and write
|
|
|
|
1D7C9629000
|
unkown
|
page read and write
|
|
|
|
2BA9000
|
unkown image
|
page readonly
|
|
|
|
7DF5046D2000
|
unkown image
|
page readonly
|
|
|
|
1D5A3120000
|
unkown
|
page read and write
|
|
|
|
7FF5AD96D000
|
unkown image
|
page readonly
|
|
|
|
1C789EC0000
|
heap default
|
page read and write
|
|
|
|
265F000
|
unkown
|
page read and write
|
|
|
|
925F77E000
|
unkown
|
page read and write
|
|
|
|
1B057B40000
|
unkown image
|
page readonly
|
|
|
|
7FF5A664D000
|
unkown image
|
page readonly
|
|
|
|
925F4FD000
|
unkown
|
page read and write
|
|
|
|
7FF4EE39D000
|
unkown image
|
page readonly
|
|
|
|
1C78A580000
|
unkown image
|
page readonly
|
|
|
|
25B3F83D000
|
unkown
|
page read and write
|
|
|
|
1D59E000000
|
unkown
|
page read and write
|
|
|
|
7FF59FE6A000
|
unkown image
|
page readonly
|
|
|
|
7DF4350A0000
|
unkown image
|
page readonly
|
|
|
|
1FA64400000
|
unkown
|
page read and write
|
|
|
|
7FF4EEAD1000
|
unkown image
|
page readonly
|
|
|
|
2BE5000
|
unkown image
|
page readonly
|
|
|
|
7FF5E911B000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE8E6000
|
unkown image
|
page readonly
|
|
|
|
7FF4EED2A000
|
unkown image
|
page readonly
|
|
|
|
7DF503FA0000
|
unkown image
|
page readonly
|
|
|
|
1B057C4D000
|
unkown
|
page read and write
|
|
|
|
1E3F544A000
|
unkown
|
page read and write
|
|
|
|
1D5A3004000
|
unkown
|
page read and write
|
|
|
|
1B0579F0000
|
unkown image
|
page read and write
|
|
|
|
23D51A60000
|
heap private
|
page read and write
|
|
|
|
581AAFF000
|
unkown
|
page read and write
|
|
|
|
1E3F5290000
|
unkown image
|
page readonly
|
|
|
|
B8E000
|
unkown
|
page read and write
|
|
|
|
25B3F720000
|
unkown image
|
page readonly
|
|
|
|
7DF5C3AE0000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEB30000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED999000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE32A000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE670000
|
unkown image
|
page readonly
|
|
|
|
925F877000
|
unkown
|
page read and write
|
|
|
|
D2F000
|
unkown
|
page read and write
|
|
|
|
275BE840000
|
unkown image
|
page readonly
|
|
|
|
7FF5A6466000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE10D000
|
unkown image
|
page readonly
|
|
|
|
5B6F47E000
|
unkown
|
page read and write
|
|
|
|
7FF4EE66B000
|
unkown image
|
page readonly
|
|
|
|
85111FB000
|
unkown
|
page read and write
|
|
|
|
25B3F813000
|
unkown
|
page read and write
|
|
|
|
7FF4EEACA000
|
unkown image
|
page readonly
|
|
|
|
6C0000
|
unkown image
|
page read and write
|
|
|
|
66B717F000
|
unkown
|
page read and write
|
|
|
|
7FF4EEB74000
|
unkown image
|
page readonly
|
|
|
|
1B057C3C000
|
unkown
|
page read and write
|
|
|
|
7FF4EECB8000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED9A3000
|
unkown image
|
page readonly
|
|
|
|
7FB30000
|
unkown image
|
page readonly
|
|
|
|
7FF5218CB000
|
unkown image
|
page readonly
|
|
|
|
6E800000
|
unkown image
|
page readonly
|
|
|
|
1B057C55000
|
unkown
|
page read and write
|
|
|
|
7DF503FA2000
|
unkown image
|
page readonly
|
|
|
|
7FF5E9027000
|
unkown image
|
page readonly
|
|
|
|
1D59EC01000
|
unkown
|
page read and write
|
|
|
|
7FF5DFAB8000
|
unkown image
|
page readonly
|
|
|
|
7FF5A6608000
|
unkown image
|
page readonly
|
|
|
|
7FF52182A000
|
unkown image
|
page readonly
|
|
|
|
275BE950000
|
unkown image
|
page readonly
|
|
|
|
7FF59FE27000
|
unkown image
|
page readonly
|
|
|
|
590000
|
heap default
|
page read and write
|
|
|
|
459000
|
unkown image
|
page readonly
|
|
|
|
1D59DFD0000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED995000
|
unkown image
|
page readonly
|
|
|
|
7DF5046D0000
|
unkown image
|
page readonly
|
|
|
|
7DF5FEA12000
|
unkown image
|
page readonly
|
|
|
|
7FF5DF96E000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8BF8000
|
unkown image
|
page readonly
|
|
|
|
2BB8000
|
unkown image
|
page readonly
|
|
|
|
7DF5FEA22000
|
unkown image
|
page readonly
|
|
|
|
7DF5B5810000
|
unkown image
|
page readonly
|
|
|
|
7FF59FE63000
|
unkown image
|
page readonly
|
|
|
|
12A737E000
|
unkown
|
page read and write
|
|
|
|
7FF5A6316000
|
unkown image
|
page readonly
|
|
|
|
7FF5DF3B0000
|
unkown image
|
page readonly
|
|
|
|
66B6B7F000
|
unkown
|
page read and write
|
|
|
|
7FF4EE359000
|
unkown image
|
page readonly
|
|
|
|
1A0000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEDBD000
|
unkown image
|
page readonly
|
|
|
|
1D59E100000
|
unkown
|
page read and write
|
|
|
|
3B5157F000
|
unkown
|
page read and write
|
|
|
|
1B058402000
|
unkown
|
page read and write
|
|
|
|
7FF4EE911000
|
unkown image
|
page readonly
|
|
|
|
7FF4EECF8000
|
unkown image
|
page readonly
|
|
|
|
7FF5218AE000
|
unkown image
|
page readonly
|
|
|
|
1B057C69000
|
unkown
|
page read and write
|
|
|
|
1D5A2DCE000
|
unkown
|
page read and write
|
|
|
|
7DF5C3AD0000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE69F000
|
unkown image
|
page readonly
|
|
|
|
225E000
|
unkown
|
page read and write
|
|
|
|
1B057A00000
|
heap private
|
page read and write
|
|
|
|
7DF5371D0000
|
unkown image
|
page readonly
|
|
|
|
1E3F52C0000
|
heap default
|
page read and write
|
|
|
|
7FF5A662D000
|
unkown image
|
page readonly
|
|
|
|
7DF5FEA10000
|
unkown image
|
page readonly
|
|
|
|
7DF5046D0000
|
unkown image
|
page readonly
|
|
|
|
87F000
|
unkown
|
page read and write
|
|
|
|
7DF4B36E0000
|
unkown image
|
page readonly
|
|
|
|
1E3F5250000
|
unkown image
|
page read and write
|
|
|
|
66B687C000
|
unkown
|
page read and write
|
|
|
|
1D5A2DE0000
|
unkown
|
page read and write
|
|
|
|
1B057C61000
|
unkown
|
page read and write
|
|
|
|
23D51C3D000
|
unkown
|
page read and write
|
|
|
|
AD0A1FF000
|
unkown
|
page read and write
|
|
|
|
1B057C5F000
|
unkown
|
page read and write
|
|
|
|
21E0000
|
unkown
|
page read and write
|
|
|
|
66B6A7E000
|
unkown
|
page read and write
|
|
|
|
7FF4EECA0000
|
unkown image
|
page readonly
|
|
|
|
13E27B000
|
unkown
|
page read and write
|
|
|
|
1D59D710000
|
unkown image
|
page readonly
|
|
|
|
7FF5DFAD9000
|
unkown image
|
page readonly
|
|
|
|
7DF5FEA12000
|
unkown image
|
page readonly
|
|
|
|
1FA6442A000
|
unkown
|
page read and write
|
|
|
|
1B057A30000
|
unkown image
|
page readonly
|
|
|
|
7D0000
|
unkown
|
page read and write
|
|
|
|
7FF521411000
|
unkown image
|
page readonly
|
|
|
|
1B057C5D000
|
unkown
|
page read and write
|
|
|
|
7FF5DF9F5000
|
unkown image
|
page readonly
|
|
|
|
1D7C95F0000
|
unkown
|
page read and write
|
|
|
|
1E3F5429000
|
unkown
|
page read and write
|
|
|
|
1FA64D00000
|
unkown
|
page read and write
|
|
|
|
7FF5A6585000
|
unkown image
|
page readonly
|
|
|
|
7FF59FF1D000
|
unkown image
|
page readonly
|
|
|
|
25B3F780000
|
unkown image
|
page readonly
|
|
|
|
5B6EA7C000
|
unkown
|
page read and write
|
|
|
|
13E07C000
|
unkown
|
page read and write
|
|
|
|
13E6FF000
|
unkown
|
page read and write
|
|
|
|
7FF4EEB93000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE65F000
|
unkown image
|
page readonly
|
|
|
|
1D5A2EFA000
|
unkown
|
page read and write
|
|
|
|
7DF5046F0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E911F000
|
unkown image
|
page readonly
|
|
|
|
23D51A70000
|
unkown image
|
page readonly
|
|
|
|
2D58000
|
unkown
|
page read and write
|
|
|
|
5B6F17B000
|
unkown
|
page read and write
|
|
|
|
1B057C57000
|
unkown
|
page read and write
|
|
|
|
25B3F868000
|
unkown
|
page read and write
|
|
|
|
12A707E000
|
unkown
|
page read and write
|
|
|
|
7FF5DFB7D000
|
unkown image
|
page readonly
|
|
|
|
1E3F5502000
|
unkown
|
page read and write
|
|
|
|
1D7C9400000
|
unkown image
|
page readonly
|
|
|
|
1D59E118000
|
unkown
|
page read and write
|
|
|
|
7FF5A61AA000
|
unkown image
|
page readonly
|
|
|
|
7FFC0000
|
unkown image
|
page readonly
|
|
|
|
7DF5F5492000
|
unkown image
|
page readonly
|
|
|
|
7FB10000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEAD3000
|
unkown image
|
page readonly
|
|
|
|
6E819000
|
unkown image
|
page readonly
|
|
|
|
1B057C79000
|
unkown
|
page read and write
|
|
|
|
1D5A2DF0000
|
unkown
|
page read and write
|
|
|
|
7FF5DF9EF000
|
unkown image
|
page readonly
|
|
|
|
7DF503FB0000
|
unkown image
|
page readonly
|
|
|
|
7DF5BBF50000
|
unkown image
|
page readonly
|
|
|
|
1B057C58000
|
unkown
|
page read and write
|
|
|
|
738000
|
unkown
|
page read and write
|
|
|
|
1FA642E0000
|
heap default
|
page read and write
|
|
|
|
5B6ED7B000
|
unkown
|
page read and write
|
|
|
|
925F1BB000
|
unkown
|
page read and write
|
|
|
|
7FF59FF04000
|
unkown image
|
page readonly
|
|
|
|
1D5A2E43000
|
unkown
|
page read and write
|
|
|
|
7FF521815000
|
unkown image
|
page readonly
|
|
|
|
696000
|
unkown
|
page execute and read and write
|
|
|
|
1D5A2F00000
|
unkown
|
page read and write
|
|
|
|
1D7C9713000
|
unkown
|
page read and write
|
|
|
|
2D2A000
|
unkown
|
page read and write
|
|
|
|
7FF4EE96F000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE5E3000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEB98000
|
unkown image
|
page readonly
|
|
|
|
1E3F543C000
|
unkown
|
page read and write
|
|
|
|
30A0000
|
unkown image
|
page readonly
|
|
|
|
7FF5A64C4000
|
unkown image
|
page readonly
|
|
|
|
7FF4EDA44000
|
unkown image
|
page readonly
|
|
|
|
7FF5218C4000
|
unkown image
|
page readonly
|
|
|
|
12A727E000
|
unkown
|
page read and write
|
|
|
|
1C78A200000
|
unkown image
|
page readonly
|
|
|
|
66B66FB000
|
unkown
|
page read and write
|
|
|
|
23D51A50000
|
unkown image
|
page read and write
|
|
|
|
72C000
|
unkown
|
page read and write
|
|
|
|
7FF59FBD6000
|
unkown image
|
page readonly
|
|
|
|
7FF5DFA97000
|
unkown image
|
page readonly
|
|
|
|
BF0000
|
heap default
|
page read and write
|
|
|
|
7FF4EE56E000
|
unkown image
|
page readonly
|
|
|
|
1C78A113000
|
unkown
|
page read and write
|
|
|
|
7FF4ED713000
|
unkown image
|
page readonly
|
|
|
|
7DF5B5822000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED98D000
|
unkown image
|
page readonly
|
|
|
|
1E3F5800000
|
unkown image
|
page readonly
|
|
|
|
7DF5BBF42000
|
unkown image
|
page readonly
|
|
|
|
66B6C7D000
|
unkown
|
page read and write
|
|
|
|
7FF5DFB84000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8EEE000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED84E000
|
unkown image
|
page readonly
|
|
|
|
21D7000
|
heap private
|
page read and write
|
|
|
|
7DF5F54B0000
|
unkown image
|
page readonly
|
|
|
|
1D5A2CB0000
|
unkown
|
page read and write
|
|
|
|
1FA64487000
|
unkown
|
page read and write
|
|
|
|
7FF4EE69F000
|
unkown image
|
page readonly
|
|
|
|
7FF5DF9B3000
|
unkown image
|
page readonly
|
|
|
|
66B707F000
|
unkown
|
page read and write
|
|
|
|
7FF4ED96C000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE123000
|
unkown image
|
page readonly
|
|
|
|
7FF4EEBAC000
|
unkown image
|
page readonly
|
|
|
|
7FF5A6616000
|
unkown image
|
page readonly
|
|
|
|
22A8000
|
unkown
|
page read and write
|
|
|
|
1D59E113000
|
unkown
|
page read and write
|
|
|
|
7FF5218BD000
|
unkown image
|
page readonly
|
|
|
|
6E800000
|
unkown image
|
page readonly
|
|
|
|
7DF5C3AF0000
|
unkown image
|
page readonly
|
|
|
|
275BEF80000
|
unkown image
|
page readonly
|
|
|
|
7FF5217CC000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE432000
|
unkown image
|
page readonly
|
|
|
|
1C78A054000
|
unkown
|
page read and write
|
|
|
|
7FF4EEC90000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED953000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE0F8000
|
unkown image
|
page readonly
|
|
|
|
1C789E70000
|
unkown image
|
page readonly
|
|
|
|
1C78A029000
|
unkown
|
page read and write
|
|
|
|
1C78A000000
|
unkown
|
page read and write
|
|
|
|
1B057C66000
|
unkown
|
page read and write
|
|
|
|
1FA643E0000
|
unkown
|
page read and write
|
|
|
|
1E3F53C0000
|
unkown
|
page read and write
|
|
|
|
7FF4EE5CD000
|
unkown image
|
page readonly
|
|
|
|
7FF52156A000
|
unkown image
|
page readonly
|
|
|
|
7FF59FE55000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED82E000
|
unkown image
|
page readonly
|
|
|
|
2BE9000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE1C4000
|
unkown image
|
page readonly
|
|
|
|
1FA642B0000
|
unkown image
|
page readonly
|
|
|
|
7FF59FED8000
|
unkown image
|
page readonly
|
|
|
|
1B057C74000
|
unkown
|
page read and write
|
|
|
|
7DF5371F0000
|
unkown image
|
page readonly
|
|
|
|
23D51AA0000
|
unkown image
|
page readonly
|
|
|
|
1D7C9800000
|
unkown image
|
page readonly
|
|
|
|
7FF5E906A000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE1CB000
|
unkown image
|
page readonly
|
|
|
|
7FF52180D000
|
unkown image
|
page readonly
|
|
|
|
23D51E00000
|
unkown image
|
page readonly
|
|
|
|
7DF4F3360000
|
unkown image
|
page readonly
|
|
|
|
3B5117C000
|
unkown
|
page read and write
|
|
|
|
7DF5F5492000
|
unkown image
|
page readonly
|
|
|
|
1D59D913000
|
unkown
|
page read and write
|
|
|
|
7FF5A6472000
|
unkown image
|
page readonly
|
|
|
|
1D5A2E50000
|
unkown
|
page read and write
|
|
|
|
382000
|
unkown
|
page read and write
|
|
|
|
1B057C02000
|
unkown
|
page read and write
|
|
|
|
7FF5A6547000
|
unkown image
|
page readonly
|
|
|
|
2C87000
|
unkown image
|
page readonly
|
|
|
|
780000
|
unkown image
|
page readonly
|
|
|
|
3220000
|
unkown image
|
page readonly
|
|
|
|
23D51C5C000
|
unkown
|
page read and write
|
|
|
|
9BF000
|
unkown
|
page read and write
|
|
|
|
1C78A027000
|
unkown
|
page read and write
|
|
|
|
25B3F85B000
|
unkown
|
page read and write
|
|
|
|
AD0A6FF000
|
unkown
|
page read and write
|
|
|
|
1E3F544D000
|
unkown
|
page read and write
|
|
|
|
23D52180000
|
unkown image
|
page readonly
|
|
|
|
6E958000
|
unkown image
|
page read and write
|
|
|
|
7DF5B5810000
|
unkown image
|
page readonly
|
|
|
|
275BE810000
|
heap private
|
page read and write
|
|
|
|
7FF5A64CE000
|
unkown image
|
page readonly
|
|
|
|
7FF52177D000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE5A8000
|
unkown image
|
page readonly
|
|
|
|
7FF5A5D0E000
|
unkown image
|
page readonly
|
|
|
|
13E0FE000
|
unkown
|
page read and write
|
|
|
|
1D59E015000
|
unkown
|
page read and write
|
|
|
|
581AD7D000
|
unkown
|
page read and write
|
|
|
|
25B3F902000
|
unkown
|
page read and write
|
|
|
|
1D7C9420000
|
heap default
|
page read and write
|
|
|
|
385000
|
unkown
|
page read and write
|
|
|
|
7FF5DF663000
|
unkown image
|
page readonly
|
|
|
|
7FF521599000
|
unkown image
|
page readonly
|
|
|
|
7FF4EDA18000
|
unkown image
|
page readonly
|
|
|
|
1FA64290000
|
unkown image
|
page readonly
|
|
|
|
581AFFD000
|
unkown
|
page read and write
|
|
|
|
1D59D6F0000
|
unkown image
|
page read and write
|
|
|
|
6E820000
|
unkown image
|
page read and write
|
|
|
|
23D51C02000
|
unkown
|
page read and write
|
|
|
|
4B9CE000
|
unkown
|
page read and write
|
|
|
|
AD09AEB000
|
unkown
|
page read and write
|
|
|
|
1D7C93F0000
|
unkown image
|
page readonly
|
|
|
|
7FF5A664F000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED9AA000
|
unkown image
|
page readonly
|
|
|
|
7FF5218DF000
|
unkown image
|
page readonly
|
|
|
|
2550000
|
heap private
|
page read and write
|
|
|
|
7DF5FEA30000
|
unkown image
|
page readonly
|
|
|
|
1D59D857000
|
unkown
|
page read and write
|
|
|
|
7DF5FEA20000
|
unkown image
|
page readonly
|
|
|
|
25B3F700000
|
unkown image
|
page read and write
|
|
|
|
7FF59FF1F000
|
unkown image
|
page readonly
|
|
|
|
7DF4B9E10000
|
unkown image
|
page readonly
|
|
|
|
66B6D7F000
|
unkown
|
page read and write
|
|
|
|
1D5A2F20000
|
unkown
|
page read and write
|
|
|
|
1C789E70000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE58B000
|
unkown image
|
page readonly
|
|
|
|
7FF5DFB66000
|
unkown image
|
page readonly
|
|
|
|
1D5A2E2E000
|
unkown
|
page read and write
|
|
|
|
D00000
|
unkown image
|
page readonly
|
|
|
|
7FF4EDA5B000
|
unkown image
|
page readonly
|
|
|
|
7FF5DFA14000
|
unkown image
|
page readonly
|
|
|
|
275BEA9B000
|
unkown
|
page read and write
|
|
|
|
1D7C9510000
|
unkown image
|
page readonly
|
|
|
|
1D5A3120000
|
unkown
|
page read and write
|
|
|
|
7FF5AE19F000
|
unkown image
|
page readonly
|
|
|
|
7FF5DFB8E000
|
unkown image
|
page readonly
|
|
|
|
23D51BF0000
|
unkown
|
page read and write
|
|
|
|
275BEA3C000
|
unkown
|
page read and write
|
|
|
|
7FF59FE4D000
|
unkown image
|
page readonly
|
|
|
|
275BEB00000
|
unkown
|
page read and write
|
|
|
|
7FF4ED978000
|
unkown image
|
page readonly
|
|
|
|
B7F000
|
unkown
|
page read and write
|
|
|
|
1D59DCD0000
|
unkown image
|
page readonly
|
|
|
|
7FB20000
|
unkown image
|
page readonly
|
|
|
|
1FA64424000
|
unkown
|
page read and write
|
|
|
|
7FF4EE43D000
|
unkown image
|
page readonly
|
|
|
|
7FF5A659A000
|
unkown image
|
page readonly
|
|
|
|
5B6EC77000
|
unkown
|
page read and write
|
|
|
|
7FF5AE115000
|
unkown image
|
page readonly
|
|
|
|
25B3FAD0000
|
unkown image
|
page readonly
|
|
|
|
7FF5E90D8000
|
unkown image
|
page readonly
|
|
|
|
925F47E000
|
unkown
|
page read and write
|
|
|
|
275BEA13000
|
unkown
|
page read and write
|
|
|
|
7FF4EE597000
|
unkown image
|
page readonly
|
|
|
|
1FA6446E000
|
unkown
|
page read and write
|
|
|
|
7FF5DFA93000
|
unkown image
|
page readonly
|
|
|
|
770000
|
unkown image
|
page readonly
|
|
|
|
7FF4EECE7000
|
unkown image
|
page readonly
|
|
|
|
7FF5AE1AB000
|
unkown image
|
page readonly
|
|
|
|
25B3F876000
|
unkown
|
page read and write
|
|
|
|
7FF5AE1DF000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE967000
|
unkown image
|
page readonly
|
|
|
|
25B3F770000
|
heap default
|
page read and write
|
|
|
|
7FF4ED538000
|
unkown image
|
page readonly
|
|
|
|
1B058180000
|
unkown image
|
page readonly
|
|
|
|
7FA10000
|
unkown image
|
page readonly
|
|
|
|
1D7C967B000
|
unkown
|
page read and write
|
|
|
|
30000
|
unkown image
|
page read and write
|
|
|
|
7FF5A5E94000
|
unkown image
|
page readonly
|
|
|
|
7FB22000
|
unkown image
|
page readonly
|
|
|
|
1D5A2E63000
|
unkown
|
page read and write
|
|
|
|
2D20000
|
unkown
|
page read and write
|
|
|
|
7FF4EE46F000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE5D9000
|
unkown image
|
page readonly
|
|
|
|
23D51C00000
|
unkown
|
page read and write
|
|
|
|
1D59E118000
|
unkown
|
page read and write
|
|
|
|
1E3F544F000
|
unkown
|
page read and write
|
|
|
|
AD0A37D000
|
unkown
|
page read and write
|
|
|
|
B80000
|
unkown image
|
page readonly
|
|
|
|
2DBE000
|
unkown
|
page read and write
|
|
|
|
7DF401220000
|
unkown image
|
page readonly
|
|
|
|
1D59D877000
|
unkown
|
page read and write
|
|
|
|
7FF4EE68E000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE45C000
|
unkown image
|
page readonly
|
|
|
|
880000
|
unkown image
|
page readonly
|
|
|
|
2C0D000
|
unkown image
|
page readonly
|
|
|
|
25B3FCD0000
|
unkown image
|
page readonly
|
|
|
|
1C78A05F000
|
unkown
|
page read and write
|
|
|
|
1E3F5452000
|
unkown
|
page read and write
|
|
|
|
2DB9000
|
unkown
|
page read and write
|
|
|
|
7DF5BBF60000
|
unkown image
|
page readonly
|
|
|
|
275BEB08000
|
unkown
|
page read and write
|
|
|
|
23D51C24000
|
unkown
|
page read and write
|
|
|
|
2F5D000
|
unkown
|
page read and write
|
|
|
|
7FF59FEE6000
|
unkown image
|
page readonly
|
|
|
|
7FF5DFB6B000
|
unkown image
|
page readonly
|
|
|
|
7FF4EED45000
|
unkown image
|
page readonly
|
|
|
|
1D5A30F0000
|
unkown
|
page read and write
|
|
|
|
7DF5371E2000
|
unkown image
|
page readonly
|
|
|
|
7FFD0000
|
unkown image
|
page readonly
|
|
|
|
AD0A3FB000
|
unkown
|
page read and write
|
|
|
|
1C78A108000
|
unkown
|
page read and write
|
|
|
|
7FF4EEAE7000
|
unkown image
|
page readonly
|
|
|
|
6D0000
|
unkown image
|
page readonly
|
|
|
|
1B057C3A000
|
unkown
|
page read and write
|
|
|
|
3B50DDE000
|
unkown
|
page read and write
|
|
|
|
1D59D813000
|
unkown
|
page read and write
|
|
|
|
AD09EFC000
|
unkown
|
page read and write
|
|
|
|
A3E000
|
unkown
|
page read and write
|
|
|
|
7FF521790000
|
unkown image
|
page readonly
|
|
|
|
1D59D840000
|
unkown
|
page read and write
|
|
|
|
25B3F7A0000
|
unkown
|
page read and write
|
|
|
|
21D0000
|
heap private
|
page read and write
|
|
|
|
7FF5DF963000
|
unkown image
|
page readonly
|
|
|
|
36A000
|
unkown
|
page read and write
|
|
|
|
7FF4EE5EA000
|
unkown image
|
page readonly
|
|
|
|
2C71000
|
unkown image
|
page readonly
|
|
|
|
7DF5371E0000
|
unkown image
|
page readonly
|
|
|
|
7FF5A661E000
|
unkown image
|
page readonly
|
|
|
|
1D5A2EDC000
|
unkown
|
page read and write
|
|
|
|
7FF5A6589000
|
unkown image
|
page readonly
|
|
|
|
7FF5E910B000
|
unkown image
|
page readonly
|
|
|
|
13E37B000
|
unkown
|
page read and write
|
|
|
|
1C78A066000
|
unkown
|
page read and write
|
|
|
|
1E3F53A0000
|
unkown image
|
page readonly
|
|
|
|
7FF5DFB05000
|
unkown image
|
page readonly
|
|
|
|
1FA64800000
|
unkown image
|
page readonly
|
|
|
|
366000
|
unkown
|
page read and write
|
|
|
|
7FF4EDD2D000
|
unkown image
|
page readonly
|
|
|
|
7FF5216AE000
|
unkown image
|
page readonly
|
|
|
|
7FF5217E7000
|
unkown image
|
page readonly
|
|
|
|
2DAA000
|
unkown
|
page read and write
|
|
|
|
7FF59FF0B000
|
unkown image
|
page readonly
|
|
|
|
7FF5DF93D000
|
unkown image
|
page readonly
|
|
|
|
1D59D859000
|
unkown
|
page read and write
|
|
|
|
1D5A2E5D000
|
unkown
|
page read and write
|
|
|
|
7FF4EE576000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8BE3000
|
unkown image
|
page readonly
|
|
|
|
7FF5E902C000
|
unkown image
|
page readonly
|
|
|
|
7FF5E8BE9000
|
unkown image
|
page readonly
|
|
|
|
6E956000
|
unkown image
|
page write copy
|
|
|
|
7FF5A657D000
|
unkown image
|
page readonly
|
|
|
|
1D59DFC0000
|
unkown image
|
page readonly
|
|
|
|
1B057C73000
|
unkown
|
page read and write
|
|
|
|
2D9B000
|
unkown
|
page read and write
|
|
|
|
1B057C6A000
|
unkown
|
page read and write
|
|
|
|
1D7C9602000
|
unkown
|
page read and write
|
|
|
|
1D7C9600000
|
unkown
|
page read and write
|
|
|
|
7FF5A63E2000
|
unkown image
|
page readonly
|
|
|
|
925F6FB000
|
unkown
|
page read and write
|
|
|
|
7FF5218A6000
|
unkown image
|
page readonly
|
|
|
|
BF8000
|
heap default
|
page read and write
|
|
|
|
7FF4EE666000
|
unkown image
|
page readonly
|
|
|
|
7FF520FA5000
|
unkown image
|
page readonly
|
|
|
|
7FF4ED8B5000
|
unkown image
|
page readonly
|
|
|
|
1C78A07C000
|
unkown
|
page read and write
|
|
|
|
45D000
|
unkown image
|
page write copy
|
|
|
|
1B057C42000
|
unkown
|
page read and write
|
|
|
|
595000
|
heap default
|
page read and write
|
|
|
|
5B6EE7A000
|
unkown
|
page read and write
|
|
|
|
7FF5E9038000
|
unkown image
|
page readonly
|
|
|
|
1E3F547D000
|
unkown
|
page read and write
|
|
|
|
275BEA7F000
|
unkown
|
page read and write
|
|
|
|
1D5A2F02000
|
unkown
|
page read and write
|
|
|
|
1C78A060000
|
unkown
|
page read and write
|
|
|
|
3B515FF000
|
unkown
|
page read and write
|
|
|
|
1D5A2DF0000
|
unkown
|
page read and write
|
|
|
|
1FA64600000
|
unkown image
|
page readonly
|
|
|
|
7DF5C3AE2000
|
unkown image
|
page readonly
|
|
|
|
7FF5DF678000
|
unkown image
|
page readonly
|
|
|
|
7FF5DFB58000
|
unkown image
|
page readonly
|
|
|
|
4BDF0000
|
unkown
|
page read and write
|
|
|
|
2D69000
|
unkown
|
page read and write
|
|
|
|
24BF000
|
unkown
|
page read and write
|
|
|
|
1D7C963C000
|
unkown
|
page read and write
|
|
|
|
7FF4EE960000
|
unkown image
|
page readonly
|
|
|
|
1E3F5C02000
|
unkown
|
page read and write
|
|
|
|
7DF5B5822000
|
unkown image
|
page readonly
|
|
|
|
7DF5F54A0000
|
unkown image
|
page readonly
|
|
|
|
275BEA2A000
|
unkown
|
page read and write
|
|
|
|
7FF5217C2000
|
unkown image
|
page readonly
|
|
|
|
1D59DFF0000
|
unkown
|
page read and write
|
|
|
|
7FF5A660F000
|
unkown image
|
page readonly
|
|
|
|
40000
|
unkown image
|
page readonly
|
|
|
|
7FF52189F000
|
unkown image
|
page readonly
|
|
|
|
1B057A10000
|
unkown image
|
page readonly
|
|
|
|
6E920000
|
unkown image
|
page readonly
|
|
|
|
275BEB02000
|
unkown
|
page read and write
|
|
|
|
7FF4EEB03000
|
unkown image
|
page readonly
|
|
|
|
1D59E7E0000
|
unkown
|
page read and write
|
|
|
|
7FF4EE3A7000
|
unkown image
|
page readonly
|
|
|
|
1C78A802000
|
unkown
|
page read and write
|
|
|
|
7FF5AE0EC000
|
unkown image
|
page readonly
|
|
|
|
1D59D829000
|
unkown
|
page read and write
|
|
|
|
1D5A30E0000
|
unkown
|
page read and write
|
|
|
|
6E830000
|
unkown image
|
page readonly
|
|
|
|
7E0000
|
unkown image
|
page readonly
|
|
|
|
7FF5A664F000
|
unkown image
|
page readonly
|
|
|
|
7FF59FEFD000
|
unkown image
|
page readonly
|
|
|
|
7DF5B5830000
|
unkown image
|
page readonly
|
|
|
|
1D5A2F10000
|
unkown
|
page read and write
|
|
|
|
1C78A102000
|
unkown
|
page read and write
|
|
|
|
275BEA5E000
|
unkown
|
page read and write
|
|
|
|
21E0000
|
unkown
|
page read and write
|
|
|
|
7FFD0000
|
unkown image
|
page readonly
|
|
|
|
6E831000
|
unkown image
|
page execute read
|
|
|
|
925F97E000
|
unkown
|
page read and write
|
|
|
|
1B057C40000
|
unkown
|
page read and write
|
|
|
|
1B057C64000
|
unkown
|
page read and write
|
|
|
|
23D52402000
|
unkown
|
page read and write
|
|
|
|
275BEE00000
|
unkown image
|
page readonly
|
|
|
|
1D5A30D0000
|
unkown
|
page read and write
|
|
|
|
7FF5A65B5000
|
unkown image
|
page readonly
|
|
|
|
1B057C45000
|
unkown
|
page read and write
|
|
|
|
7FF4ED8D4000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE658000
|
unkown image
|
page readonly
|
|
|
|
7FF521124000
|
unkown image
|
page readonly
|
|
|
|
7DF4025A0000
|
unkown image
|
page readonly
|
|
|
|
5B6F2FF000
|
unkown
|
page read and write
|
|
|
|
1B057C7A000
|
unkown
|
page read and write
|
|
|
|
1D59DFE0000
|
unkown image
|
page readonly
|
|
|
|
7FF4EE5B8000
|
unkown image
|
page readonly
|
|
There are 1031 hidden memdumps, click here to show them.