Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
C:\Users\user\AppData\Local\Temp\xpbfofnc.5bi\recital-395579281.xls
|
Composite Document File V2 Document, Little Endian, Os: Windows, Version 10.0, Code page: 1251, Name of Creating Application:
Microsoft Excel, Create Time/Date: Fri Jun 5 19:19:34 2015, Last Saved Time/Date: Wed Sep 29 08:59:46 2021, Security: 0
|
dropped
|
||
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\017e1218-27ce-44fe-881e-ee494af65fdc.tmp
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\018b2c86-f0d1-4383-866d-ba267bd2dce2.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\8c21660c-5669-4fcd-bd09-2f206c0a1ee0.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\8f2d526c-db69-46bf-ae57-8e35dbee272c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\909dfa63-8b7e-4ed3-8240-79b93cf6c92a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\000001.dbtmp
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\000002.dbtmp
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\5346789a-5d98-4b9e-b1b4-6373edd8c145.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\748e6b2e-d68c-4eaa-a640-c6bf98842368.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\87a1a652-9f84-45dd-83ac-e433e86a5007.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\CURRENT (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\CURRENTes (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies-journal
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old. (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old.f (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old.. (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old2 (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session. (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Tabs (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.oldil (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\MANIFEST-000001
|
PGP\011Secret Key -
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\MANIFEST-000002
|
MPEG-4 LOAS
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old.. (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL-journal
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences. (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.oldTM (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old G (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\3f31e1c5-3493-49a3-9d32-0d53b9c2c200.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
StateTM (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old.
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old.
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
Statemp (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.oldon
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\a639891d-24e6-4f78-b131-3058505da248.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG.old
(copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Visited Links
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\aaaf3f57-b5fc-4eec-9893-220428fb3c22.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b2091f81-381b-4692-b759-8a28a3e93ac5.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d55352e5-ae23-41eb-b461-551b82ff11d3.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d7abc407-ccdc-46d2-86a9-579e50741cbf.tmp
|
very short file (no magic)
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ee4bff78-7b35-4b8b-aece-d71e88274d69.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old.. (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache.K (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\b1a698bf-e197-4fc8-ba2c-c84e32ee243f.tmp
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\d03b4971-0999-42d3-a625-c276442c53b4.tmp
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\e5b12d78-bb2d-4a55-9dcc-214a4d318489.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\fe7d06aa-35b1-4851-9f0f-b97bea9ab6c0.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Microsoft\Office\16.0\WebServiceCache\AllUsers\officeclient.microsoft.com\00F2487D-CDF1-407A-BC77-208F9176BCD5
|
XML 1.0 document, UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\17a1e62e-149b-4595-b574-6b6453d7f0ee.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\2506006c-c9f4-439b-af57-b927b24ac14d.tmp
|
very short file (no magic)
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3592_1425260098\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\d8ada190-bf11-47b5-b286-2673a7b5d2fe.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\ee576890-5d54-40d3-8d71-978611185686.tmp
|
very short file (no magic)
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\17a1e62e-149b-4595-b574-6b6453d7f0ee.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_1213053510\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3592_72915869\d8ada190-bf11-47b5-b286-2673a7b5d2fe.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\xfocm4mn.by3\unarchiver.log
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Downloads\5d22287c-7b5a-43f6-af04-501a8bfaa73e.tmp
|
Zip archive data, at least v2.0 to extract
|
dropped
|
||
C:\Users\user\Downloads\dolor.zip.crdownload
|
data
|
dropped
|
||
C:\Users\user\Downloads\dolor.zip:Zone.Identifier
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\Downloads\dolor.zipnl (copy)
|
data
|
dropped
|
There are 208 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE
|
'C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE' /dde
|
||
C:\Windows\SysWOW64\regsvr32.exe
|
'C:\Windows\System32\regsvr32.exe' C:\Datop\test.test
|
||
C:\Windows\SysWOW64\regsvr32.exe
|
'C:\Windows\System32\regsvr32.exe' C:\Datop\test1.test
|
||
C:\Windows\SysWOW64\regsvr32.exe
|
'C:\Windows\System32\regsvr32.exe' C:\Datop\test2.test
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --start-maximized --enable-automation 'https://containerlafamilia.cl/possimus-tenetur/dolor.zip'
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1552,17424876508857128548,15970264656069861363,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1768 /prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
'C:\Program Files\Google\Chrome\Application\chrome.exe' --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1552,17424876508857128548,15970264656069861363,131072
--lang=en-US --service-sandbox-type=none --enable-audio-service-sandbox --mojo-platform-channel-handle=6220 /prefetch:8
|
||
C:\Windows\SysWOW64\unarchiver.exe
|
'C:\Windows\SysWOW64\unarchiver.exe' 'C:\Users\user\Downloads\dolor.zip'
|
||
C:\Windows\SysWOW64\7za.exe
|
'C:\Windows\System32\7za.exe' x -pinfected -y -o'C:\Users\user\AppData\Local\Temp\xpbfofnc.5bi' 'C:\Users\user\Downloads\dolor.zip'
|
||
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
C:\Windows\SysWOW64\cmd.exe
|
'cmd.exe' /C 'C:\Users\user\AppData\Local\Temp\xpbfofnc.5bi\recital-395579281.xls'
|
||
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
There are 2 hidden processes, click here to show them.
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://containerlafamilia.cl/possimus-tenetur/dolor.zip
|
|||
https://mercanets.com/9DPZqAfZdq5z/key.xml
|
162.222.225.250
|
||
https://api.diagnosticssdf.office.com
|
unknown
|
||
https://login.microsoftonline.com/
|
unknown
|
||
https://shell.suite.office.com:1443
|
unknown
|
||
https://login.windows.net/72f988bf-86f1-41af-91ab-2d7cd011db47/oauth2/authorize
|
unknown
|
||
https://autodiscover-s.outlook.com/
|
unknown
|
||
https://roaming.edog.
|
unknown
|
||
https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=Flickr
|
unknown
|
||
https://cdn.entity.
|
unknown
|
||
https://api.addins.omex.office.net/appinfo/query
|
unknown
|
||
https://clients.config.office.net/user/v1.0/tenantassociationkey
|
unknown
|
||
https://dev.virtualearth.net/REST/V1/GeospatialEndpoint/
|
unknown
|
||
https://powerlift.acompli.net
|
unknown
|
||
https://rpsticket.partnerservices.getmicrosoftkey.com
|
unknown
|
||
https://lookup.onenote.com/lookup/geolocation/v1
|
unknown
|
||
https://cortana.ai
|
unknown
|
||
https://apc.learningtools.onenote.com/learningtoolsapi/v2.0/getfreeformspeech
|
unknown
|
||
https://cloudfiles.onenote.com/upload.aspx
|
unknown
|
||
https://syncservice.protection.outlook.com/PolicySync/PolicySync.svc/SyncFile
|
unknown
|
||
https://entitlement.diagnosticssdf.office.com
|
unknown
|
||
https://na01.oscs.protection.outlook.com/api/SafeLinksApi/GetPolicy
|
unknown
|
||
https://api.aadrm.com/
|
unknown
|
||
https://containerlafamilia.cl/possimus-tenetur/dolor.ziphttps://containerlafamilia.cl/possimus-tenet
|
unknown
|
||
https://ofcrecsvcapi-int.azurewebsites.net/
|
unknown
|
||
https://www.google.com
|
unknown
|
||
https://geit.in/MeOlE9Xxd/key.xml
|
162.251.80.22
|
||
https://dataservice.protection.outlook.com/PsorWebService/v1/ClientSyncFile/MipPolicies
|
unknown
|
||
https://api.microsoftstream.com/api/
|
unknown
|
||
https://insertmedia.bing.office.net/images/hosted?host=office&adlt=strict&hostType=Immersive
|
unknown
|
||
https://cr.office.com
|
unknown
|
||
https://portal.office.com/account/?ref=ClientMeControl
|
unknown
|
||
https://graph.ppe.windows.net
|
unknown
|
||
https://res.getmicrosoftkey.com/api/redemptionevents
|
unknown
|
||
https://powerlift-user.acompli.net
|
unknown
|
||
https://tasks.office.com
|
unknown
|
||
https://officeci.azurewebsites.net/api/
|
unknown
|
||
https://sr.outlook.office.net/ws/speech/recognize/assistant/work
|
unknown
|
||
https://dns.google
|
unknown
|
||
https://store.office.cn/addinstemplate
|
unknown
|
||
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
||
https://outlook.office.com/autosuggest/api/v1/init?cvid=
|
unknown
|
||
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
216.58.212.174
|
||
https://globaldisco.crm.dynamics.com
|
unknown
|
||
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
https://www.google.com;
|
unknown
|
||
https://nam.learningtools.onenote.com/learningtoolsapi/v2.0/getfreeformspeech
|
unknown
|
||
https://store.officeppe.com/addinstemplate
|
unknown
|
||
https://dev0-api.acompli.net/autodetect
|
unknown
|
||
https://www.odwebp.svc.ms
|
unknown
|
||
https://api.powerbi.com/v1.0/myorg/groups
|
unknown
|
||
https://web.microsoftstream.com/video/
|
unknown
|
||
https://graph.windows.net
|
unknown
|
||
https://dataservice.o365filtering.com/
|
unknown
|
||
https://officesetup.getmicrosoftkey.com
|
unknown
|
||
https://analysis.windows.net/powerbi/api
|
unknown
|
||
https://prod-global-autodetect.acompli.net/autodetect
|
unknown
|
||
https://outlook.office365.com/autodiscover/autodiscover.json
|
unknown
|
||
https://powerpoint.uservoice.com/forums/288952-powerpoint-for-ipad-iphone-ios
|
unknown
|
||
https://eur.learningtools.onenote.com/learningtoolsapi/v2.0/getfreeformspeech
|
unknown
|
||
https://pf.directory.live.com/profile/mine/System.ShortCircuitProfile.json
|
unknown
|
||
https://ncus.contentsync.
|
unknown
|
||
https://containerlafamilia.cl/possimus-tenetur/dolor.zip
|
162.241.2.176
|
||
https://onedrive.live.com/about/download/?windows10SyncClientInstalled=false
|
unknown
|
||
https://webdir.online.lync.com/autodiscover/autodiscoverservice.svc/root/
|
unknown
|
||
http://weather.service.msn.com/data.aspx
|
unknown
|
||
https://apis.live.net/v5.0/
|
unknown
|
||
https://officemobile.uservoice.com/forums/929800-office-app-ios-and-ipad-asks
|
unknown
|
||
https://word.uservoice.com/forums/304948-word-for-ipad-iphone-ios
|
unknown
|
||
https://www.google.com/
|
unknown
|
||
https://feedback.googleusercontent.com
|
unknown
|
||
https://autodiscover-s.outlook.com/autodiscover/autodiscover.xml
|
unknown
|
||
https://management.azure.com
|
unknown
|
||
https://outlook.office365.com
|
unknown
|
||
https://wus2.contentsync.
|
unknown
|
||
https://incidents.diagnostics.office.com
|
unknown
|
||
https://clients.config.office.net/user/v1.0/ios
|
unknown
|
||
https://gillcart.com/Cdpmoyhr/key.xml
|
199.79.63.251
|
||
https://insertmedia.bing.office.net/odc/insertmedia
|
unknown
|
||
https://o365auditrealtimeingestion.manage.office.com
|
unknown
|
||
https://outlook.office365.com/api/v1.0/me/Activities
|
unknown
|
||
https://api.office.net
|
unknown
|
||
https://incidents.diagnosticssdf.office.com
|
unknown
|
||
https://asgsmsproxyapi.azurewebsites.net/
|
unknown
|
||
https://clients.config.office.net/user/v1.0/android/policies
|
unknown
|
||
https://entitlement.diagnostics.office.com
|
unknown
|
||
https://pf.directory.live.com/profile/mine/WLX.Profiles.IC.json
|
unknown
|
||
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
https://substrate.office.com/search/api/v2/init
|
unknown
|
||
https://outlook.office.com/
|
unknown
|
||
https://storage.live.com/clientlogs/uploadlocation
|
unknown
|
||
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
172.217.16.129
|
||
https://outlook.office365.com/
|
unknown
|
||
https://webshell.suite.office.com
|
unknown
|
||
https://containerlafamilia.cl/possimus-tenetur/dolor.zip2:
|
unknown
|
||
https://insertmedia.bing.office.net/images/officeonlinecontent/browse?cp=OneDrive
|
unknown
|
||
https://substrate.office.com/search/api/v1/SearchHistory
|
unknown
|
||
https://containerlafamilia.cl/possimus-tenetur/dolor.zip2
|
unknown
|
||
https://containerlafamilia.cl/possimus-tenetur/dolor.zip/
|
unknown
|
||
https://accounts.google.com
|
unknown
|
||
https://management.azure.com/
|
unknown
|
There are 90 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
mercanets.com
|
162.222.225.250
|
||
geit.in
|
162.251.80.22
|
||
accounts.google.com
|
172.217.18.109
|
||
gillcart.com
|
199.79.63.251
|
||
clients.l.google.com
|
216.58.212.174
|
||
googlehosted.l.googleusercontent.com
|
172.217.16.129
|
||
containerlafamilia.cl
|
162.241.2.176
|
||
clients2.googleusercontent.com
|
unknown
|
||
clients2.google.com
|
unknown
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
192.168.2.1
|
unknown
|
unknown
|
||
172.217.16.129
|
googlehosted.l.googleusercontent.com
|
United States
|
||
199.79.63.251
|
gillcart.com
|
United States
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
172.217.18.109
|
accounts.google.com
|
United States
|
||
162.251.80.22
|
geit.in
|
United States
|
||
216.58.212.174
|
clients.l.google.com
|
United States
|
||
162.222.225.250
|
mercanets.com
|
United States
|
||
127.0.0.1
|
unknown
|
unknown
|
||
162.241.2.176
|
containerlafamilia.cl
|
United States
|
Registry
Path
|
Value
|
Malicious
|
|
---|---|---|---|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
HKEY_CURRENT_USER_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache
|
LangID
|
||
HKEY_CURRENT_USER_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache
|
C:\Windows\SysWOW64\unarchiver.exe.FriendlyAppName
|
||
HKEY_CURRENT_USER_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache
|
C:\Windows\SysWOW64\unarchiver.exe.ApplicationCompany
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
||
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Cached
|
{2781761E-28E0-4109-99FE-B9D127C57AFE} {56FFCC30-D398-11D0-B2AE-00A0C908FA49} 0xFFFF
|
||
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Cached
|
{97E467B4-98C6-4F19-9588-161B7773D6F6} {886D8EEB-8CF2-4446-8D02-CDBA1DBDCF99} 0xFFFF
|
||
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\DDECache\Excel\system
|
ProcessName
|
||
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\DDECache\Excel\system
|
WindowName
|
||
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\DDECache\Excel\system
|
WindowClassName
|
||
HKEY_CURRENT_USER_Classes\Local Settings\MuiCache\f0\52C64B7E
|
@C:\Program Files (x86)\Common Files\Microsoft Shared\Office16\oregres.dll,-206
|
||
HKEY_CURRENT_USER_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE.FriendlyAppName
|
||
HKEY_CURRENT_USER_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache
|
C:\Program Files (x86)\Microsoft Office\Office16\EXCEL.EXE.ApplicationCompany
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109110000000000000000F01FEC\Usage
|
EXCELFiles
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Excel\Resiliency\StartupItems
|
k'=
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Excel\Resiliency\StartupItems
|
l'=
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\internet\WebServiceCache
|
RemoteClearDate
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\internet\WebServiceCache\AllUsers\officeclient.microsoft.com\config16--lcid=1033&syslcid=1033&uilcid=1033&build=16.0.4954&crev=3
|
Last
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\internet\WebServiceCache\AllUsers\officeclient.microsoft.com\config16--lcid=1033&syslcid=1033&uilcid=1033&build=16.0.4954&crev=3\0
|
FilePath
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\internet\WebServiceCache\AllUsers\officeclient.microsoft.com\config16--lcid=1033&syslcid=1033&uilcid=1033&build=16.0.4954&crev=3\0
|
StartDate
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\internet\WebServiceCache\AllUsers\officeclient.microsoft.com\config16--lcid=1033&syslcid=1033&uilcid=1033&build=16.0.4954&crev=3\0
|
EndDate
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\internet\WebServiceCache\AllUsers\officeclient.microsoft.com\config16--lcid=1033&syslcid=1033&uilcid=1033&build=16.0.4954&crev=3\0
|
Properties
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\internet\WebServiceCache\AllUsers\officeclient.microsoft.com\config16--lcid=1033&syslcid=1033&uilcid=1033&build=16.0.4954&crev=3\0
|
Url
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\internet\WebServiceCache
|
LastClean
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\Identity
|
DisableWinHttpCertAuth
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\Identity
|
DisableIsOwnerRegex
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\Identity
|
DisableSessionAwareHttpClose
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\Identity
|
DisableADALForExtendedApps
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\Identity
|
DisableADALSetSilentAuth
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\Identity
|
msoridDisableGuestCredProvider
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\Identity
|
msoridDisableOstringReplace
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Excel\Resiliency\StartupItems
|
g<=
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Excel\Resiliency\DocumentRecovery\20CE8
|
20CE8
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\IOAV
|
LastBootTime
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ReviewCycle
|
ReviewToken
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Excel\Resiliency\DocumentRecovery\21062
|
21062
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109E60090400000000000F01FEC\Usage
|
ProductNonBootFilesIntl_1033
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109110000000000000000F01FEC\Usage
|
ProductFiles
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\LanguageResources\EnabledEditingLanguages
|
en-US
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\LanguageResources\EnabledEditingLanguages
|
en-US
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109110000000000000000F01FEC\Usage
|
EXCELFiles
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\Roaming
|
RoamingConfigurableSettings
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\Roaming
|
RoamingLastSyncTime
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\Roaming
|
RoamingLastWriteTime
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Excel\Resiliency\DocumentRecovery\20CE8
|
20CE8
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ServicesManagerCache\ServicesCatalog
|
CacheReady
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ServicesManagerCache\ServicesCatalog
|
LastRequest
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ServicesManagerCache\ServicesCatalog
|
CacheReady
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ServicesManagerCache\ServicesCatalog
|
LastUpdate
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\ServicesManagerCache\ServicesCatalog
|
NextUpdate
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Common\IOAV
|
LastBootTime
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00006109E60090400000000000F01FEC\Usage
|
ProductNonBootFilesIntl_1033
|
||
HKEY_CURRENT_USER\Software\Microsoft\Office\16.0\Excel\Security\Trusted Documents
|
LastPurgeTime
|
There are 83 hidden registries, click here to show them.
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
20230020000
|
unkown image
|
page readonly
|
||
7DF5CF692000
|
unkown image
|
page readonly
|
||
21F2E200000
|
unkown image
|
page readonly
|
||
7F1C0000
|
unkown image
|
page readonly
|
||
2AA4000
|
unkown image
|
page readonly
|
||
7FF51FD45000
|
unkown image
|
page readonly
|
||
1B735A59000
|
unkown
|
page read and write
|
||
2A91000
|
unkown image
|
page readonly
|
||
7DF5F3B60000
|
unkown image
|
page readonly
|
||
1ACAE9A7000
|
unkown
|
page read and write
|
||
7FF521668000
|
unkown image
|
page readonly
|
||
7FF506285000
|
unkown image
|
page readonly
|
||
1ACAE96C000
|
unkown
|
page read and write
|
||
12E1000
|
unkown
|
page read and write
|
||
18E61DF0000
|
unkown
|
page read and write
|
||
1ACAE979000
|
unkown
|
page read and write
|
||
C32000
|
unkown
|
page read and write
|
||
7FF51FAE5000
|
unkown image
|
page readonly
|
||
2E43FF7000
|
unkown
|
page read and write
|
||
1ACAE988000
|
unkown
|
page read and write
|
||
2B73000
|
unkown image
|
page readonly
|
||
8C0000
|
unkown image
|
page readonly
|
||
7FF561C26000
|
unkown image
|
page readonly
|
||
7FF5BE024000
|
unkown image
|
page readonly
|
||
7F0F0000
|
unkown image
|
page readonly
|
||
7FF5F2662000
|
unkown image
|
page readonly
|
||
7FF5CE1C4000
|
unkown image
|
page readonly
|
||
1DBA1F02000
|
unkown
|
page read and write
|
||
2AA4000
|
unkown image
|
page readonly
|
||
7FF534135000
|
unkown image
|
page readonly
|
||
7F160000
|
unkown image
|
page readonly
|
||
7FF5F25E0000
|
unkown image
|
page readonly
|
||
9AE000
|
unkown
|
page read and write
|
||
23A4B780000
|
unkown image
|
page readonly
|
||
7FF506288000
|
unkown image
|
page readonly
|
||
7FF5062DB000
|
unkown image
|
page readonly
|
||
2DE5C434000
|
unkown
|
page read and write
|
||
E427EFE000
|
unkown
|
page read and write
|
||
7F3D2000
|
unkown image
|
page readonly
|
||
18E66CFB000
|
unkown
|
page read and write
|
||
1E4BA350000
|
unkown
|
page read and write
|
||
DFCB37E000
|
unkown
|
page read and write
|
||
7FF5A54B6000
|
unkown image
|
page readonly
|
||
1ACAE98C000
|
unkown
|
page read and write
|
||
7FF55B576000
|
unkown image
|
page readonly
|
||
26B38550000
|
unkown
|
page read and write
|
||
1ACAE9A9000
|
unkown
|
page read and write
|
||
7FF533B96000
|
unkown image
|
page readonly
|
||
7FF51FA1F000
|
unkown image
|
page readonly
|
||
1B735A5A000
|
unkown
|
page read and write
|
||
7FF5F24E1000
|
unkown image
|
page readonly
|
||
18E66F70000
|
unkown
|
page read and write
|
||
20042852000
|
unkown
|
page read and write
|
||
2DE5C502000
|
unkown
|
page read and write
|
||
7FF5218EB000
|
unkown image
|
page readonly
|
||
7DF5357F0000
|
unkown image
|
page readonly
|
||
23A4B237000
|
heap default
|
page read and write
|
||
67B777E000
|
unkown
|
page read and write
|
||
18E6186F000
|
unkown
|
page read and write
|
||
1ACAE98A000
|
unkown
|
page read and write
|
||
6C2000
|
unkown
|
page read and write
|
||
7FF536015000
|
unkown image
|
page readonly
|
||
26F5FFE0000
|
heap private
|
page read and write
|
||
18E61C00000
|
unkown image
|
page readonly
|
||
7DF5A6940000
|
unkown image
|
page readonly
|
||
26F602CC000
|
unkown
|
page read and write
|
||
7FF5219E3000
|
unkown image
|
page readonly
|
||
A99000
|
unkown
|
page read and write
|
||
18E66D0A000
|
unkown
|
page read and write
|
||
23A4B220000
|
heap default
|
page read and write
|
||
20230302000
|
unkown
|
page read and write
|
||
1B735F80000
|
unkown image
|
page readonly
|
||
1E4BA47F000
|
unkown
|
page read and write
|
||
7FF5A5381000
|
unkown image
|
page readonly
|
||
7DF5A6932000
|
unkown image
|
page readonly
|
||
2B7E000
|
unkown image
|
page readonly
|
||
9FC4F0B000
|
unkown
|
page read and write
|
||
7FF5CDFD9000
|
unkown image
|
page readonly
|
||
7FF51FC35000
|
unkown image
|
page readonly
|
||
20042800000
|
unkown
|
page read and write
|
||
18E61800000
|
unkown
|
page read and write
|
||
2DE5C3E0000
|
unkown
|
page read and write
|
||
1ACAE99F000
|
unkown
|
page read and write
|
||
21F2DE70000
|
unkown
|
page read and write
|
||
9B0000
|
unkown image
|
page readonly
|
||
1DBA1E48000
|
unkown
|
page read and write
|
||
921F6FF000
|
unkown
|
page read and write
|
||
18E66BA4000
|
unkown
|
page read and write
|
||
1E4BA457000
|
unkown
|
page read and write
|
||
7DF522E50000
|
unkown image
|
page readonly
|
||
18E61A00000
|
unkown image
|
page readonly
|
||
7FF5F25EB000
|
unkown image
|
page readonly
|
||
18E66D00000
|
unkown
|
page read and write
|
||
1110000
|
unkown image
|
page readonly
|
||
7DF5CF690000
|
unkown image
|
page readonly
|
||
26F60010000
|
unkown image
|
page readonly
|
||
7FF561D35000
|
unkown image
|
page readonly
|
||
7FF5BDF0C000
|
unkown image
|
page readonly
|
||
9D4000
|
unkown
|
page read and write
|
||
2DE5C290000
|
unkown image
|
page readonly
|
||
2ABB000
|
unkown
|
page read and write
|
||
7DF535802000
|
unkown image
|
page readonly
|
||
7DF5B43A2000
|
unkown image
|
page readonly
|
||
7DF522E40000
|
unkown image
|
page readonly
|
||
1ACADE50000
|
unkown image
|
page readonly
|
||
7FF5A5205000
|
unkown image
|
page readonly
|
||
7FF5F2684000
|
unkown image
|
page readonly
|
||
7DF522E50000
|
unkown image
|
page readonly
|
||
780000
|
unkown image
|
page read and write
|
||
7DF5CF680000
|
unkown image
|
page readonly
|
||
7DF522E40000
|
unkown image
|
page readonly
|
||
7FF53632C000
|
unkown image
|
page readonly
|
||
7FF51F214000
|
unkown image
|
page readonly
|
||
7DF5F3B50000
|
unkown image
|
page readonly
|
||
2AB4000
|
unkown image
|
page readonly
|
||
7FF5CE226000
|
unkown image
|
page readonly
|
||
2B47000
|
unkown image
|
page readonly
|
||
18E6183D000
|
unkown
|
page read and write
|
||
790000
|
unkown image
|
page readonly
|
||
C21000
|
unkown
|
page read and write
|
||
26B38602000
|
unkown
|
page read and write
|
||
18E66D0A000
|
unkown
|
page read and write
|
||
1E4BA413000
|
unkown
|
page read and write
|
||
1ACAEF02000
|
unkown
|
page read and write
|
||
1DBA1F00000
|
unkown
|
page read and write
|
||
18E617E0000
|
unkown image
|
page read and write
|
||
2DE5C990000
|
unkown image
|
page readonly
|
||
1B735A29000
|
unkown
|
page read and write
|
||
D80000
|
unkown image
|
page readonly
|
||
7FF5F2565000
|
unkown image
|
page readonly
|
||
18E615B0000
|
unkown image
|
page readonly
|
||
8AB000
|
unkown
|
page read and write
|
||
7FF5F1EE6000
|
unkown image
|
page readonly
|
||
A3C0D7B000
|
unkown
|
page read and write
|
||
18E61829000
|
unkown
|
page read and write
|
||
1DBA1E58000
|
unkown
|
page read and write
|
||
23A4B261000
|
unkown
|
page read and write
|
||
7FF53429C000
|
unkown image
|
page readonly
|
||
2ACC000
|
unkown
|
page read and write
|
||
A0E000
|
unkown
|
page read and write
|
||
7FF5F2259000
|
unkown image
|
page readonly
|
||
7FF5CE161000
|
unkown image
|
page readonly
|
||
7DF5631A2000
|
unkown image
|
page readonly
|
||
2AE8000
|
unkown image
|
page readonly
|
||
7FF55B4C9000
|
unkown image
|
page readonly
|
||
D30000
|
unkown
|
page read and write
|
||
7FF561C58000
|
unkown image
|
page readonly
|
||
7FF5F2610000
|
unkown image
|
page readonly
|
||
1A5227F000
|
unkown
|
page read and write
|
||
3130000
|
unkown
|
page read and write
|
||
7FF534291000
|
unkown image
|
page readonly
|
||
7FF51FC68000
|
unkown image
|
page readonly
|
||
7FF536429000
|
unkown image
|
page readonly
|
||
1DBA1F18000
|
unkown
|
page read and write
|
||
7DF4F1A10000
|
unkown image
|
page readonly
|
||
1ACAE049000
|
unkown
|
page read and write
|
||
BC2000
|
unkown
|
page read and write
|
||
B81000
|
unkown
|
page read and write
|
||
21F2DC90000
|
heap private
|
page read and write
|
||
7DF55C9F2000
|
unkown image
|
page readonly
|
||
7FF561C04000
|
unkown image
|
page readonly
|
||
1ACAE96C000
|
unkown
|
page read and write
|
||
23A4B190000
|
unkown image
|
page readonly
|
||
2B82000
|
unkown image
|
page readonly
|
||
B7D000
|
unkown
|
page read and write
|
||
1ACAE9AD000
|
unkown
|
page read and write
|
||
18E6188D000
|
unkown
|
page read and write
|
||
27B4000
|
unkown image
|
page readonly
|
||
1ACAEE02000
|
unkown
|
page read and write
|
||
1ACAE98A000
|
unkown
|
page read and write
|
||
1ACAE96F000
|
unkown
|
page read and write
|
||
890000
|
heap default
|
page read and write
|
||
21F2DF02000
|
unkown
|
page read and write
|
||
7EFE0000
|
unkown image
|
page readonly
|
||
1ACAE9BE000
|
unkown
|
page read and write
|
||
7FF534102000
|
unkown image
|
page readonly
|
||
20042913000
|
unkown
|
page read and write
|
||
1DBA1E47000
|
unkown
|
page read and write
|
||
7DF5357F2000
|
unkown image
|
page readonly
|
||
1B735A83000
|
unkown
|
page read and write
|
||
2FA0000
|
heap private
|
page read and write
|
||
18E61858000
|
unkown
|
page read and write
|
||
26F602E1000
|
unkown
|
page read and write
|
||
7DF5211C0000
|
unkown image
|
page readonly
|
||
1E4BA250000
|
heap default
|
page read and write
|
||
7FF5F2500000
|
unkown image
|
page readonly
|
||
2DE5C400000
|
unkown
|
page read and write
|
||
1ACAE6C0000
|
unkown
|
page read and write
|
||
18E625A0000
|
unkown image
|
page readonly
|
||
7FF5CDFFF000
|
unkown image
|
page readonly
|
||
7FF534233000
|
unkown image
|
page readonly
|
||
7FF5342AC000
|
unkown image
|
page readonly
|
||
B9D000
|
unkown
|
page read and write
|
||
7DF5077E0000
|
unkown image
|
page readonly
|
||
7FF5A4D98000
|
unkown image
|
page readonly
|
||
C00000
|
heap default
|
page read and write
|
||
7FF5CE145000
|
unkown image
|
page readonly
|
||
1E4BA470000
|
unkown
|
page read and write
|
||
81A368B000
|
unkown
|
page read and write
|
||
7FF53410A000
|
unkown image
|
page readonly
|
||
E42797E000
|
unkown
|
page read and write
|
||
1ACAE992000
|
unkown
|
page read and write
|
||
29C8000
|
unkown image
|
page readonly
|
||
7DF5CF682000
|
unkown image
|
page readonly
|
||
800000
|
unkown image
|
page readonly
|
||
2EC0000
|
heap private
|
page read and write
|
||
4FC000
|
unkown
|
page read and write
|
||
1ACAE070000
|
unkown
|
page read and write
|
||
7F170000
|
unkown image
|
page readonly
|
||
7FF534312000
|
unkown image
|
page readonly
|
||
2B82000
|
unkown image
|
page readonly
|
||
2A9C000
|
unkown
|
page read and write
|
||
1B735A7A000
|
unkown
|
page read and write
|
||
2B6A000
|
unkown image
|
page readonly
|
||
7FF53431C000
|
unkown image
|
page readonly
|
||
1DBA2390000
|
unkown image
|
page readonly
|
||
18E66B60000
|
unkown
|
page read and write
|
||
950000
|
unkown
|
page read and write
|
||
1ACAE979000
|
unkown
|
page read and write
|
||
2B9B000
|
unkown image
|
page readonly
|
||
AA1000
|
unkown
|
page read and write
|
||
5FB1C79000
|
unkown
|
page read and write
|
||
E427E7D000
|
unkown
|
page read and write
|
||
1ACADEA0000
|
heap default
|
page read and write
|
||
1ACAEE02000
|
unkown
|
page read and write
|
||
7FF5F241F000
|
unkown image
|
page readonly
|
||
7FF55B4B0000
|
unkown image
|
page readonly
|
||
7FF53649C000
|
unkown image
|
page readonly
|
||
2DE5CC02000
|
unkown
|
page read and write
|
||
7F162000
|
unkown image
|
page readonly
|
||
7FF51FCCC000
|
unkown image
|
page readonly
|
||
2A91000
|
unkown image
|
page readonly
|
||
7FF561CC1000
|
unkown image
|
page readonly
|
||
48C0000
|
unkown
|
page read and write
|
||
1B736002000
|
unkown
|
page read and write
|
||
18E66FB0000
|
unkown
|
page read and write
|
||
7FF5CE1AC000
|
unkown image
|
page readonly
|
||
18E61879000
|
unkown
|
page read and write
|
||
2004284C000
|
unkown
|
page read and write
|
||
1DBA1E00000
|
unkown
|
page read and write
|
||
1100000
|
unkown image
|
page readonly
|
||
7FF55B4FC000
|
unkown image
|
page readonly
|
||
1ACAE96E000
|
unkown
|
page read and write
|
||
26B37E60000
|
unkown
|
page read and write
|
||
20230200000
|
unkown
|
page read and write
|
||
7FF506092000
|
unkown image
|
page readonly
|
||
47F4000
|
heap private
|
page read and write
|
||
18E66D02000
|
unkown
|
page read and write
|
||
1ACAE94C000
|
unkown
|
page read and write
|
||
2B7E000
|
unkown image
|
page readonly
|
||
18E66D07000
|
unkown
|
page read and write
|
||
7FF5F2425000
|
unkown image
|
page readonly
|
||
20043002000
|
unkown
|
page read and write
|
||
7FF5BDF8C000
|
unkown image
|
page readonly
|
||
2AFB000
|
unkown image
|
page readonly
|
||
18E66B40000
|
unkown
|
page read and write
|
||
7FF5F2614000
|
unkown image
|
page readonly
|
||
C2D000
|
unkown
|
page read and write
|
||
5A3427B000
|
unkown
|
page read and write
|
||
18E66D07000
|
unkown
|
page read and write
|
||
7DF55CA00000
|
unkown image
|
page readonly
|
||
7FF561D43000
|
unkown image
|
page readonly
|
||
7DF4357D0000
|
unkown image
|
page readonly
|
||
FF7A0000
|
unkown image
|
page readonly
|
||
25F0000
|
unkown image
|
page readonly
|
||
26B37F02000
|
unkown
|
page read and write
|
||
1ACAE998000
|
unkown
|
page read and write
|
||
1ACAE6C0000
|
unkown
|
page read and write
|
||
7FF5CE005000
|
unkown image
|
page readonly
|
||
C29000
|
unkown
|
page read and write
|
||
1ACAEE1E000
|
unkown
|
page read and write
|
||
7DF5BF4F0000
|
unkown image
|
page readonly
|
||
7FF5F26F3000
|
unkown image
|
page readonly
|
||
1B735A00000
|
unkown
|
page read and write
|
||
2AC4000
|
unkown image
|
page readonly
|
||
1A51F7E000
|
unkown
|
page read and write
|
||
1E4BA400000
|
unkown
|
page read and write
|
||
7DF5B43B0000
|
unkown image
|
page readonly
|
||
7FF51FCC9000
|
unkown image
|
page readonly
|
||
7FF5BDD18000
|
unkown image
|
page readonly
|
||
271E000
|
unkown
|
page read and write
|
||
488E000
|
unkown
|
page read and write
|
||
21F2DDF0000
|
unkown
|
page read and write
|
||
1ACAE9AC000
|
unkown
|
page read and write
|
||
18E66F08000
|
unkown
|
page read and write
|
||
D20000
|
unkown
|
page read and write
|
||
26F6093A000
|
unkown
|
page read and write
|
||
18E616E0000
|
unkown image
|
page readonly
|
||
18E61874000
|
unkown
|
page read and write
|
||
1B735A3C000
|
unkown
|
page read and write
|
||
94A000
|
unkown
|
page read and write
|
||
2DE5C3B0000
|
unkown
|
page read and write
|
||
21F2DE80000
|
unkown
|
page read and write
|
||
7DF4B2260000
|
unkown image
|
page readonly
|
||
7FF5342F5000
|
unkown image
|
page readonly
|
||
3E3C6AB000
|
unkown
|
page read and write
|
||
DA0000
|
unkown image
|
page readonly
|
||
1ACAE000000
|
unkown
|
page read and write
|
||
1ACAE04D000
|
unkown
|
page read and write
|
||
1E4BA45C000
|
unkown
|
page read and write
|
||
1DBA1E13000
|
unkown
|
page read and write
|
||
7FF536422000
|
unkown image
|
page readonly
|
||
5FB1F7B000
|
unkown
|
page read and write
|
||
7FF5CDD36000
|
unkown image
|
page readonly
|
||
7FF5342B8000
|
unkown image
|
page readonly
|
||
18E66D13000
|
unkown
|
page read and write
|
||
7FF5F2264000
|
unkown image
|
page readonly
|
||
1ACAE9B0000
|
unkown
|
page read and write
|
||
18E61902000
|
unkown
|
page read and write
|
||
20230A02000
|
unkown
|
page read and write
|
||
23A4B25E000
|
unkown
|
page read and write
|
||
7F3E0000
|
unkown image
|
page readonly
|
||
1DBA1E89000
|
unkown
|
page read and write
|
||
7FF51FA72000
|
unkown image
|
page readonly
|
||
7DF55C9F2000
|
unkown image
|
page readonly
|
||
1ACAE96D000
|
unkown
|
page read and write
|
||
1ACAE96C000
|
unkown
|
page read and write
|
||
18E62400000
|
unkown
|
page read and write
|
||
7FF55B4D1000
|
unkown image
|
page readonly
|
||
2AC0000
|
unkown image
|
page readonly
|
||
2DD0000
|
unkown image
|
page readonly
|
||
7FF52181A000
|
unkown image
|
page readonly
|
||
2ABD000
|
unkown image
|
page readonly
|
||
18E61DF3000
|
unkown
|
page read and write
|
||
C35000
|
unkown
|
page read and write
|
||
7FF5CE154000
|
unkown image
|
page readonly
|
||
1ACAE9AE000
|
unkown
|
page read and write
|
||
1ACAE9A9000
|
unkown
|
page read and write
|
||
B81000
|
unkown
|
page read and write
|
||
2AC4000
|
unkown image
|
page readonly
|
||
7DF5077C0000
|
unkown image
|
page readonly
|
||
A3C0C7F000
|
unkown
|
page read and write
|
||
18E66CE8000
|
unkown
|
page read and write
|
||
2B64000
|
unkown image
|
page readonly
|
||
7FF5F25D0000
|
unkown image
|
page readonly
|
||
7FF53416D000
|
unkown image
|
page readonly
|
||
2610000
|
heap private
|
page execute and read and write
|
||
20230040000
|
unkown image
|
page readonly
|
||
1DBA1E2A000
|
unkown
|
page read and write
|
||
7FF50613D000
|
unkown image
|
page readonly
|
||
3020000
|
unkown
|
page read and write
|
||
1ACAE981000
|
unkown
|
page read and write
|
||
1ACAE999000
|
unkown
|
page read and write
|
||
EE7000
|
unkown image
|
page readonly
|
||
7FF506221000
|
unkown image
|
page readonly
|
||
18E61F59000
|
unkown
|
page read and write
|
||
2AB4000
|
unkown image
|
page readonly
|
||
2AB9000
|
unkown image
|
page readonly
|
||
26B382E0000
|
unkown image
|
page readonly
|
||
18E615D0000
|
unkown image
|
page readonly
|
||
1ACAE99F000
|
unkown
|
page read and write
|
||
1DBA3E00000
|
unkown image
|
page write copy
|
||
21F2DE2A000
|
unkown
|
page read and write
|
||
7FF5BDFE5000
|
unkown image
|
page readonly
|
||
18E66CF6000
|
unkown
|
page read and write
|
||
7F3F0000
|
unkown image
|
page readonly
|
||
7FF5A53B0000
|
unkown image
|
page readonly
|
||
7FF5B2EC6000
|
unkown image
|
page readonly
|
||
26F60302000
|
unkown
|
page read and write
|
||
7FF5F23DD000
|
unkown image
|
page readonly
|
||
7FF5BE00C000
|
unkown image
|
page readonly
|
||
1E4BA462000
|
unkown
|
page read and write
|
||
7F1B0000
|
unkown image
|
page readonly
|
||
2ACF000
|
unkown image
|
page readonly
|
||
18E66D17000
|
unkown
|
page read and write
|
||
2DE5C425000
|
unkown
|
page read and write
|
||
7FF5363D4000
|
unkown image
|
page readonly
|
||
7FF5364B3000
|
unkown image
|
page readonly
|
||
7FF536212000
|
unkown image
|
page readonly
|
||
1ACAE979000
|
unkown
|
page read and write
|
||
1B7359F0000
|
unkown
|
page read and write
|
||
26F60780000
|
unkown image
|
page readonly
|
||
1A51BEE000
|
unkown
|
page read and write
|
||
2AB4000
|
unkown image
|
page readonly
|
||
18E66D02000
|
unkown
|
page read and write
|
||
1ACADE50000
|
unkown image
|
page readonly
|
||
BC6000
|
unkown
|
page read and write
|
||
26F60912000
|
unkown
|
page read and write
|
||
1ACAE0E6000
|
unkown
|
page read and write
|
||
D50000
|
heap default
|
page read and write
|
||
7F160000
|
unkown image
|
page readonly
|
||
1ACAE974000
|
unkown
|
page read and write
|
||
1ACAE9BC000
|
unkown
|
page read and write
|
||
DFCB27E000
|
unkown
|
page read and write
|
||
1ACAE029000
|
unkown
|
page read and write
|
||
1ACAE98C000
|
unkown
|
page read and write
|
||
7DF4BD3B0000
|
unkown image
|
page readonly
|
||
A9E000
|
unkown
|
page read and write
|
||
7FF51FA3D000
|
unkown image
|
page readonly
|
||
18E625B0000
|
unkown image
|
page readonly
|
||
1ACAE9AD000
|
unkown
|
page read and write
|
||
2DE5C260000
|
unkown image
|
page readonly
|
||
18E66C62000
|
unkown
|
page read and write
|
||
2ACF000
|
unkown image
|
page readonly
|
||
7F150000
|
unkown image
|
page readonly
|
||
2AD5000
|
unkown image
|
page readonly
|
||
7FF5F26F3000
|
unkown image
|
page readonly
|
||
7FF5F266C000
|
unkown image
|
page readonly
|
||
7FF5214EC000
|
unkown image
|
page readonly
|
||
1100000
|
unkown image
|
page readonly
|
||
1DBA1E48000
|
unkown
|
page read and write
|
||
7FF5BDB9C000
|
unkown image
|
page readonly
|
||
7FF5BDED0000
|
unkown image
|
page readonly
|
||
1ACAE996000
|
unkown
|
page read and write
|
||
7F162000
|
unkown image
|
page readonly
|
||
20042630000
|
unkown image
|
page read and write
|
||
7FF5F25A1000
|
unkown image
|
page readonly
|
||
7FF5F2452000
|
unkown image
|
page readonly
|
||
2B64000
|
unkown image
|
page readonly
|
||
18E66CF9000
|
unkown
|
page read and write
|
||
7FF5A530A000
|
unkown image
|
page readonly
|
||
1ACAE9AE000
|
unkown
|
page read and write
|
||
7FF5062E9000
|
unkown image
|
page readonly
|
||
2DE5C240000
|
unkown image
|
page read and write
|
||
2B88000
|
unkown image
|
page readonly
|
||
18E62AC0000
|
unkown
|
page read and write
|
||
7DF5A6920000
|
unkown image
|
page readonly
|
||
7FF5CE070000
|
unkown image
|
page readonly
|
||
7DF55C9E0000
|
unkown image
|
page readonly
|
||
26B37E02000
|
unkown
|
page read and write
|
||
18E66FC0000
|
unkown
|
page read and write
|
||
921F3F7000
|
unkown
|
page read and write
|
||
7FF5F2248000
|
unkown image
|
page readonly
|
||
B79000
|
unkown
|
page read and write
|
||
7FF53618A000
|
unkown image
|
page readonly
|
||
7FF506039000
|
unkown image
|
page readonly
|
||
8B0000
|
heap default
|
page read and write
|
||
7FF5363AB000
|
unkown image
|
page readonly
|
||
18E61F02000
|
unkown
|
page read and write
|
||
7DF5211A2000
|
unkown image
|
page readonly
|
||
18E66FD0000
|
unkown
|
page read and write
|
||
26F6023E000
|
unkown
|
page read and write
|
||
18E61F13000
|
unkown
|
page read and write
|
||
2DE5C800000
|
unkown image
|
page readonly
|
||
23A4B250000
|
unkown
|
page read and write
|
||
21F2DCD0000
|
unkown image
|
page readonly
|
||
D3A000
|
unkown
|
page execute and read and write
|
||
7FF5060DA000
|
unkown image
|
page readonly
|
||
5FB1E7A000
|
unkown
|
page read and write
|
||
7FF5A519F000
|
unkown image
|
page readonly
|
||
2B5C000
|
unkown image
|
page readonly
|
||
2DE5C43D000
|
unkown
|
page read and write
|
||
7DF5211B2000
|
unkown image
|
page readonly
|
||
18E61852000
|
unkown
|
page read and write
|
||
30D0000
|
unkown image
|
page readonly
|
||
7FF53385C000
|
unkown image
|
page readonly
|
||
1ACAE9D2000
|
unkown
|
page read and write
|
||
7FF5F2631000
|
unkown image
|
page readonly
|
||
18E617D0000
|
unkown
|
page read and write
|
||
7FF5A53CB000
|
unkown image
|
page readonly
|
||
7FF521900000
|
unkown image
|
page readonly
|
||
7FF561C4B000
|
unkown image
|
page readonly
|
||
A3C107E000
|
unkown
|
page read and write
|
||
23A4B261000
|
unkown
|
page read and write
|
||
7FF5A52A5000
|
unkown image
|
page readonly
|
||
1DBA1C80000
|
unkown image
|
page readonly
|
||
2E43E7B000
|
unkown
|
page read and write
|
||
AA5000
|
unkown
|
page read and write
|
||
A3C117E000
|
unkown
|
page read and write
|
||
7FF5363BF000
|
unkown image
|
page readonly
|
||
1ACAE99F000
|
unkown
|
page read and write
|
||
1E4BA463000
|
unkown
|
page read and write
|
||
7FF533B38000
|
unkown image
|
page readonly
|
||
3E3D27C000
|
unkown
|
page read and write
|
||
B74000
|
heap default
|
page read and write
|
||
20042780000
|
unkown image
|
page readonly
|
||
5FB1D7F000
|
unkown
|
page read and write
|
||
7DF5357F0000
|
unkown image
|
page readonly
|
||
26B37DF0000
|
heap default
|
page read and write
|
||
7DF5F3B52000
|
unkown image
|
page readonly
|
||
7FF521919000
|
unkown image
|
page readonly
|
||
20042C00000
|
unkown image
|
page readonly
|
||
3E3CF7C000
|
unkown
|
page read and write
|
||
A40000
|
heap private
|
page read and write
|
||
18E66CF5000
|
unkown
|
page read and write
|
||
2B64000
|
unkown image
|
page readonly
|
||
18E66CEA000
|
unkown
|
page read and write
|
||
AA2000
|
unkown
|
page read and write
|
||
20042850000
|
unkown
|
page read and write
|
||
18E66F90000
|
unkown
|
page read and write
|
||
7FF5342C0000
|
unkown image
|
page readonly
|
||
7FF5A54D3000
|
unkown image
|
page readonly
|
||
7FF5F24A0000
|
unkown image
|
page readonly
|
||
7FF533D0C000
|
unkown image
|
page readonly
|
||
B3E000
|
unkown
|
page read and write
|
||
7FF5CE13F000
|
unkown image
|
page readonly
|
||
7FF534043000
|
unkown image
|
page readonly
|
||
1ACAE915000
|
unkown
|
page read and write
|
||
1ACAE9B0000
|
unkown
|
page read and write
|
||
D70000
|
unkown
|
page read and write
|
||
7FF5A529D000
|
unkown image
|
page readonly
|
||
7F100000
|
unkown image
|
page readonly
|
||
26F602BB000
|
unkown
|
page read and write
|
||
18E61F18000
|
unkown
|
page read and write
|
||
1DBA1C80000
|
unkown image
|
page readonly
|
||
20230000000
|
unkown image
|
page read and write
|
||
18E66CE5000
|
unkown
|
page read and write
|
||
7FF5F1E96000
|
unkown image
|
page readonly
|
||
A3C0E77000
|
unkown
|
page read and write
|
||
7DF5CF682000
|
unkown image
|
page readonly
|
||
7FF536384000
|
unkown image
|
page readonly
|
||
7DF5BF4F2000
|
unkown image
|
page readonly
|
||
26B37DA0000
|
unkown image
|
page readonly
|
||
A44000
|
heap private
|
page read and write
|
||
7FF5CE148000
|
unkown image
|
page readonly
|
||
18E66B00000
|
unkown
|
page read and write
|
||
1ACAE047000
|
unkown
|
page read and write
|
||
7DF5211A0000
|
unkown image
|
page readonly
|
||
23A4B22B000
|
heap default
|
page read and write
|
||
7FF536343000
|
unkown image
|
page readonly
|
||
1E4BA444000
|
unkown
|
page read and write
|
||
18E61600000
|
heap default
|
page read and write
|
||
1ACAE9AC000
|
unkown
|
page read and write
|
||
C2D000
|
unkown
|
page read and write
|
||
7FF5F25C4000
|
unkown image
|
page readonly
|
||
C31000
|
unkown
|
page read and write
|
||
1DBA3DC0000
|
unkown
|
page read and write
|
||
1E4BA47E000
|
unkown
|
page read and write
|
||
9FC5577000
|
unkown
|
page read and write
|
||
18E66AE0000
|
unkown
|
page read and write
|
||
7FF5364A5000
|
unkown image
|
page readonly
|
||
7DF5631A0000
|
unkown image
|
page readonly
|
||
A40000
|
unkown image
|
page readonly
|
||
3E3CAFE000
|
unkown
|
page read and write
|
||
18E61DD1000
|
unkown
|
page read and write
|
||
2DE5C413000
|
unkown
|
page read and write
|
||
7FF5F249B000
|
unkown image
|
page readonly
|
||
21F2DCF0000
|
heap default
|
page read and write
|
||
7FF51FC5F000
|
unkown image
|
page readonly
|
||
18E66D02000
|
unkown
|
page read and write
|
||
1B735A5E000
|
unkown
|
page read and write
|
||
8E0000
|
unkown image
|
page read and write
|
||
18E66CF5000
|
unkown
|
page read and write
|
||
7FF5BDF9B000
|
unkown image
|
page readonly
|
||
7FF5CE233000
|
unkown image
|
page readonly
|
||
2DE5C3E0000
|
unkown
|
page read and write
|
||
7DF4336C0000
|
unkown image
|
page readonly
|
||
7FF51FBE3000
|
unkown image
|
page readonly
|
||
2AC8000
|
unkown
|
page read and write
|
||
7FF5F1EA6000
|
unkown image
|
page readonly
|
||
18E66F0E000
|
unkown
|
page read and write
|
||
7FF5F23B9000
|
unkown image
|
page readonly
|
||
18E62560000
|
unkown image
|
page readonly
|
||
1B735A7C000
|
unkown
|
page read and write
|
||
7DF537900000
|
unkown image
|
page readonly
|
||
67B76FF000
|
unkown
|
page read and write
|
||
20042900000
|
unkown
|
page read and write
|
||
1ACAE0C0000
|
unkown
|
page read and write
|
||
A99000
|
unkown
|
page read and write
|
||
18E66CA2000
|
unkown
|
page read and write
|
||
7FF5F2676000
|
unkown image
|
page readonly
|
||
21F2DCC0000
|
unkown image
|
page readonly
|
||
1B7357B0000
|
unkown image
|
page read and write
|
||
7FF5341B5000
|
unkown image
|
page readonly
|
||
2004287C000
|
unkown
|
page read and write
|
||
10FC000
|
unkown
|
page read and write
|
||
A9D000
|
unkown
|
page read and write
|
||
7DF522E32000
|
unkown image
|
page readonly
|
||
1E4BA458000
|
unkown
|
page read and write
|
||
7FF5A4FDC000
|
unkown image
|
page readonly
|
||
26B37D80000
|
unkown image
|
page read and write
|
||
26B37E3C000
|
unkown
|
page read and write
|
||
1DBA1E3D000
|
unkown
|
page read and write
|
||
7FF5B2E95000
|
unkown image
|
page readonly
|
||
21F2DE02000
|
unkown
|
page read and write
|
||
B79000
|
unkown
|
page read and write
|
||
1ACAE200000
|
unkown image
|
page readonly
|
||
7DF5077C0000
|
unkown image
|
page readonly
|
||
7DF5211B2000
|
unkown image
|
page readonly
|
||
7DF5B4390000
|
unkown image
|
page readonly
|
||
1E4BA461000
|
unkown
|
page read and write
|
||
7FF51FA19000
|
unkown image
|
page readonly
|
||
D4C000
|
unkown
|
page execute and read and write
|
||
7FF5A5310000
|
unkown image
|
page readonly
|
||
20042650000
|
unkown image
|
page readonly
|
||
7DF5F3B40000
|
unkown image
|
page readonly
|
||
7FF506210000
|
unkown image
|
page readonly
|
||
7FF5A5279000
|
unkown image
|
page readonly
|
||
5F6000
|
unkown
|
page read and write
|
||
7DF5A6930000
|
unkown image
|
page readonly
|
||
7FF5A52E5000
|
unkown image
|
page readonly
|
||
2B7E000
|
unkown image
|
page readonly
|
||
31B0000
|
unkown image
|
page readonly
|
||
7FF520E6D000
|
unkown image
|
page readonly
|
||
7FF5BDFC1000
|
unkown image
|
page readonly
|
||
2023023D000
|
unkown
|
page read and write
|
||
B85000
|
unkown
|
page read and write
|
||
A3C0F7E000
|
unkown
|
page read and write
|
||
29C0000
|
unkown image
|
page readonly
|
||
7FF506365000
|
unkown image
|
page readonly
|
||
2A9E000
|
unkown
|
page read and write
|
||
7F3F0000
|
unkown image
|
page readonly
|
||
7FF55B4E5000
|
unkown image
|
page readonly
|
||
7FF561C3C000
|
unkown image
|
page readonly
|
||
7FF5219E3000
|
unkown image
|
page readonly
|
||
7FF5A507A000
|
unkown image
|
page readonly
|
||
21F2DE13000
|
unkown
|
page read and write
|
||
1ACAE013000
|
unkown
|
page read and write
|
||
2527000
|
unkown
|
page execute and read and write
|
||
18E66F24000
|
unkown
|
page read and write
|
||
7FF5363BC000
|
unkown image
|
page readonly
|
||
1DBA3DC0000
|
unkown
|
page read and write
|
||
AA1000
|
unkown
|
page read and write
|
||
2B73000
|
unkown image
|
page readonly
|
||
9FC527E000
|
unkown
|
page read and write
|
||
1DBA1CD0000
|
heap default
|
page read and write
|
||
800000
|
unkown image
|
page read and write
|
||
D62000
|
unkown
|
page execute and read and write
|
||
7FF5BE086000
|
unkown image
|
page readonly
|
||
1ACAE0CA000
|
unkown
|
page read and write
|
||
7FF51FC24000
|
unkown image
|
page readonly
|
||
26F5FFF0000
|
unkown image
|
page readonly
|
||
7DF5A6930000
|
unkown image
|
page readonly
|
||
7DF537912000
|
unkown image
|
page readonly
|
||
7FF5CDEB8000
|
unkown image
|
page readonly
|
||
2AA0000
|
unkown image
|
page readonly
|
||
26B37E68000
|
unkown
|
page read and write
|
||
1ACAE9B5000
|
unkown
|
page read and write
|
||
9FC4F8E000
|
unkown
|
page read and write
|
||
8F0000
|
unkown image
|
page readonly
|
||
18E66B60000
|
unkown
|
page read and write
|
||
1ACAE999000
|
unkown
|
page read and write
|
||
2994000
|
unkown image
|
page readonly
|
||
7DF5B4390000
|
unkown image
|
page readonly
|
||
7FF561D26000
|
unkown image
|
page readonly
|
||
7F0E0000
|
unkown image
|
page readonly
|
||
1DBA2200000
|
unkown image
|
page readonly
|
||
476E000
|
unkown
|
page read and write
|
||
1ACAE053000
|
unkown
|
page read and write
|
||
1B735C00000
|
unkown image
|
page readonly
|
||
7DF522E30000
|
unkown image
|
page readonly
|
||
2B94000
|
unkown image
|
page readonly
|
||
7F040000
|
unkown
|
page execute and read and write
|
||
7FF5362C5000
|
unkown image
|
page readonly
|
||
7FF5F265B000
|
unkown image
|
page readonly
|
||
7FF5BDFB0000
|
unkown image
|
page readonly
|
||
21F2DE3C000
|
unkown
|
page read and write
|
||
E4279FE000
|
unkown
|
page read and write
|
||
18E61590000
|
unkown image
|
page read and write
|
||
1E4BA46C000
|
unkown
|
page read and write
|
||
9FC567F000
|
unkown
|
page read and write
|
||
7FF533EF8000
|
unkown image
|
page readonly
|
||
7FF5BDDF2000
|
unkown image
|
page readonly
|
||
2004284D000
|
unkown
|
page read and write
|
||
26F60600000
|
unkown image
|
page readonly
|
||
7DF5A6922000
|
unkown image
|
page readonly
|
||
D6D000
|
unkown
|
page read and write
|
||
7DF5631B0000
|
unkown image
|
page readonly
|
||
A10000
|
unkown
|
page read and write
|
||
7FF533B56000
|
unkown image
|
page readonly
|
||
7FF55B4A8000
|
unkown image
|
page readonly
|
||
7DF563190000
|
unkown image
|
page readonly
|
||
3125000
|
heap private
|
page read and write
|
||
1ACAE99B000
|
unkown
|
page read and write
|
||
18E66CF9000
|
unkown
|
page read and write
|
||
1ACAE974000
|
unkown
|
page read and write
|
||
7FF536011000
|
unkown image
|
page readonly
|
||
7DF537920000
|
unkown image
|
page readonly
|
||
20042D80000
|
unkown image
|
page readonly
|
||
FB5000
|
unkown image
|
page readonly
|
||
18E61E00000
|
unkown
|
page read and write
|
||
2B5C000
|
unkown image
|
page readonly
|
||
18E66E00000
|
unkown
|
page read and write
|
||
1E4BA45A000
|
unkown
|
page read and write
|
||
7F100000
|
unkown image
|
page readonly
|
||
18E66FA0000
|
unkown
|
page read and write
|
||
4C20000
|
unkown
|
page read and write
|
||
1DBA1DB0000
|
unkown image
|
page readonly
|
||
7FF51FD36000
|
unkown image
|
page readonly
|
||
2DE5C260000
|
unkown image
|
page readonly
|
||
7DF5631A2000
|
unkown image
|
page readonly
|
||
18E66B77000
|
unkown
|
page read and write
|
||
5FB18FF000
|
unkown
|
page read and write
|
||
7FF533AEE000
|
unkown image
|
page readonly
|
||
7FF5A5442000
|
unkown image
|
page readonly
|
||
26B37DD0000
|
unkown image
|
page readonly
|
||
D9D000
|
unkown
|
page read and write
|
||
29A0000
|
unkown image
|
page readonly
|
||
AB0000
|
unkown image
|
page readonly
|
||
1ACAE0E2000
|
unkown
|
page read and write
|
||
7FF5B2EBC000
|
unkown image
|
page readonly
|
||
18E66FC0000
|
unkown
|
page read and write
|
||
7FF506373000
|
unkown image
|
page readonly
|
||
98B000
|
unkown
|
page read and write
|
||
7FF50635C000
|
unkown image
|
page readonly
|
||
7FF5214E6000
|
unkown image
|
page readonly
|
||
7FF5CD978000
|
unkown image
|
page readonly
|
||
7FF536405000
|
unkown image
|
page readonly
|
||
7FF51FC65000
|
unkown image
|
page readonly
|
||
21F2DE50000
|
unkown
|
page read and write
|
||
7FF5A544C000
|
unkown image
|
page readonly
|
||
7FF5218EF000
|
unkown image
|
page readonly
|
||
1B735E00000
|
unkown image
|
page readonly
|
||
D70000
|
heap private
|
page read and write
|
||
1E4BA40B000
|
unkown
|
page read and write
|
||
2AFB000
|
unkown image
|
page readonly
|
||
E427C7F000
|
unkown
|
page read and write
|
||
2A92000
|
unkown
|
page read and write
|
||
1ACAE9BE000
|
unkown
|
page read and write
|
||
7F2D0000
|
unkown image
|
page readonly
|
||
1ACAE96D000
|
unkown
|
page read and write
|
||
7FF534326000
|
unkown image
|
page readonly
|
||
7FF5B2E60000
|
unkown image
|
page readonly
|
||
1E4BA230000
|
unkown image
|
page readonly
|
||
7FF5611D3000
|
unkown image
|
page readonly
|
||
1ACAE9C9000
|
unkown
|
page read and write
|
||
7FF5A5411000
|
unkown image
|
page readonly
|
||
7FF51FCD6000
|
unkown image
|
page readonly
|
||
26B37E13000
|
unkown
|
page read and write
|
||
4F0E000
|
unkown
|
page read and write
|
||
7FF5A53F4000
|
unkown image
|
page readonly
|
||
18E66CFB000
|
unkown
|
page read and write
|
||
4C8E000
|
unkown
|
page read and write
|
||
7FF533855000
|
unkown image
|
page readonly
|
||
DA0000
|
unkown
|
page read and write
|
||
7FF5B2F43000
|
unkown image
|
page readonly
|
||
2B94000
|
unkown image
|
page readonly
|
||
1ACAE98C000
|
unkown
|
page read and write
|
||
7FF5F2669000
|
unkown image
|
page readonly
|
||
18E66B90000
|
unkown
|
page read and write
|
||
18E66F00000
|
unkown
|
page read and write
|
||
7FF51FB41000
|
unkown image
|
page readonly
|
||
2AD7000
|
unkown
|
page read and write
|
||
7DF522E30000
|
unkown image
|
page readonly
|
||
1ACAEF63000
|
unkown
|
page read and write
|
||
5FB21FE000
|
unkown
|
page read and write
|
||
1ACAEE6A000
|
unkown
|
page read and write
|
||
4C30000
|
unkown image
|
page readonly
|
||
1B735A54000
|
unkown
|
page read and write
|
||
1ACAE03C000
|
unkown
|
page read and write
|
||
7F1C0000
|
unkown image
|
page readonly
|
||
7DF5F3B52000
|
unkown image
|
page readonly
|
||
921F67E000
|
unkown
|
page read and write
|
||
7FF5F23FE000
|
unkown image
|
page readonly
|
||
18E66C4A000
|
unkown
|
page read and write
|
||
7FF55B509000
|
unkown image
|
page readonly
|
||
2AC0000
|
unkown image
|
page readonly
|
||
7DF563192000
|
unkown image
|
page readonly
|
||
2ABD000
|
unkown image
|
page readonly
|
||
7FF5BDFA8000
|
unkown image
|
page readonly
|
||
7FF51FD53000
|
unkown image
|
page readonly
|
||
7F0E2000
|
unkown image
|
page readonly
|
||
23A4B24D000
|
unkown
|
page read and write
|
||
2B88000
|
unkown image
|
page readonly
|
||
21F2DE00000
|
unkown
|
page read and write
|
||
7DF5A6932000
|
unkown image
|
page readonly
|
||
1DBA1E57000
|
unkown
|
page read and write
|
||
1ACAE09B000
|
unkown
|
page read and write
|
||
1ACAE802000
|
unkown
|
page read and write
|
||
1DBA1C70000
|
heap private
|
page read and write
|
||
1ACAE580000
|
unkown image
|
page readonly
|
||
23A4B1D0000
|
unkown
|
page read and write
|
||
1B735B02000
|
unkown
|
page read and write
|
||
7F1B2000
|
unkown image
|
page readonly
|
||
45A0000
|
unkown
|
page read and write
|
||
2004284B000
|
unkown
|
page read and write
|
||
29A0000
|
unkown image
|
page readonly
|
||
2E43C7E000
|
unkown
|
page read and write
|
||
7DF5BF4E0000
|
unkown image
|
page readonly
|
||
7FF5F2608000
|
unkown image
|
page readonly
|
||
7FF5218DC000
|
unkown image
|
page readonly
|
||
18E61F18000
|
unkown
|
page read and write
|
||
2E439DE000
|
unkown
|
page read and write
|
||
7FF5CE19C000
|
unkown image
|
page readonly
|
||
7FF55B218000
|
unkown image
|
page readonly
|
||
2AD5000
|
unkown image
|
page readonly
|
||
7FF50627F000
|
unkown image
|
page readonly
|
||
810000
|
unkown image
|
page readonly
|
||
1ACAE9AC000
|
unkown
|
page read and write
|
||
1ACAE948000
|
unkown
|
page read and write
|
||
DAE000
|
unkown
|
page read and write
|
||
1ACAE9AD000
|
unkown
|
page read and write
|
||
7FF533F09000
|
unkown image
|
page readonly
|
||
60E000
|
unkown
|
page read and write
|
||
7FF5A53C0000
|
unkown image
|
page readonly
|
||
1ACAE998000
|
unkown
|
page read and write
|
||
921FAF8000
|
unkown
|
page read and write
|
||
7DF55C9E2000
|
unkown image
|
page readonly
|
||
2AAB000
|
unkown
|
page read and write
|
||
7FF5BE016000
|
unkown image
|
page readonly
|
||
A9D000
|
unkown
|
page read and write
|
||
D42000
|
unkown
|
page execute and read and write
|
||
DFCAD7F000
|
unkown
|
page read and write
|
||
29A0000
|
unkown image
|
page readonly
|
||
1ACADFA0000
|
unkown
|
page read and write
|
||
7FF5BDB96000
|
unkown image
|
page readonly
|
||
921F9FA000
|
unkown
|
page read and write
|
||
1ACAE98C000
|
unkown
|
page read and write
|
||
7F0F2000
|
unkown image
|
page readonly
|
||
7F150000
|
unkown image
|
page readonly
|
||
7FF5CE185000
|
unkown image
|
page readonly
|
||
7FF53438C000
|
unkown image
|
page readonly
|
||
7FF5A5383000
|
unkown image
|
page readonly
|
||
2ED0000
|
unkown image
|
page readonly
|
||
FF7A0000
|
unkown image
|
page readonly
|
||
27B4000
|
unkown image
|
page readonly
|
||
1ACAE99A000
|
unkown
|
page read and write
|
||
B81000
|
unkown
|
page read and write
|
||
7FF533F4E000
|
unkown image
|
page readonly
|
||
1DBA1CA0000
|
unkown image
|
page readonly
|
||
2B6A000
|
unkown image
|
page readonly
|
||
20042886000
|
unkown
|
page read and write
|
||
7FF5363D0000
|
unkown image
|
page readonly
|
||
7FF5A5158000
|
unkown image
|
page readonly
|
||
1508000
|
heap default
|
page read and write
|
||
B7E000
|
unkown
|
page read and write
|
||
5FB207F000
|
unkown
|
page read and write
|
||
1E4BA1E0000
|
unkown image
|
page read and write
|
||
2DE5C42A000
|
unkown
|
page read and write
|
||
7DF522E32000
|
unkown image
|
page readonly
|
||
7FF51FC5B000
|
unkown image
|
page readonly
|
||
20230050000
|
unkown image
|
page readonly
|
||
7FF5A5232000
|
unkown image
|
page readonly
|
||
7FF521959000
|
unkown image
|
page readonly
|
||
2B47000
|
unkown image
|
page readonly
|
||
603E000
|
unkown
|
page read and write
|
||
26B37D90000
|
heap private
|
page read and write
|
||
1E4BA800000
|
unkown image
|
page readonly
|
||
1ACAE983000
|
unkown
|
page read and write
|
||
7FF55B2F2000
|
unkown image
|
page readonly
|
||
DFCB07B000
|
unkown
|
page read and write
|
||
4A0000
|
unkown image
|
page readonly
|
||
20230229000
|
unkown
|
page read and write
|
||
7FF521966000
|
unkown image
|
page readonly
|
||
21F2DC80000
|
unkown image
|
page read and write
|
||
7DF563190000
|
unkown image
|
page readonly
|
||
1ACAE054000
|
unkown
|
page read and write
|
||
1ACAE979000
|
unkown
|
page read and write
|
||
7F0A0000
|
unkown image
|
page readonly
|
||
18E66D07000
|
unkown
|
page read and write
|
||
7FF5BDFD1000
|
unkown image
|
page readonly
|
||
C0A000
|
heap default
|
page read and write
|
||
1ACAE9DE000
|
unkown
|
page read and write
|
||
7FF50627C000
|
unkown image
|
page readonly
|
||
E427D7D000
|
unkown
|
page read and write
|
||
1ACAE400000
|
unkown image
|
page readonly
|
||
23A4B1C0000
|
heap private
|
page read and write
|
||
2B9B000
|
unkown image
|
page readonly
|
||
2023025C000
|
unkown
|
page read and write
|
||
23A4B1C5000
|
heap private
|
page read and write
|
||
2AA0000
|
unkown image
|
page readonly
|
||
18E66C20000
|
unkown
|
page read and write
|
||
2B5C000
|
unkown image
|
page readonly
|
||
18E615B0000
|
unkown image
|
page readonly
|
||
2E4395B000
|
unkown
|
page read and write
|
||
1B735A7A000
|
unkown
|
page read and write
|
||
7DF5077D2000
|
unkown image
|
page readonly
|
||
29C8000
|
unkown image
|
page readonly
|
||
1ACAE98A000
|
unkown
|
page read and write
|
||
7FF5F2645000
|
unkown image
|
page readonly
|
||
18E61893000
|
unkown
|
page read and write
|
||
7FF5BDFC9000
|
unkown image
|
page readonly
|
||
86A000
|
unkown
|
page read and write
|
||
7FF5A53DF000
|
unkown image
|
page readonly
|
||
D4A000
|
unkown
|
page execute and read and write
|
||
2B4F000
|
unkown image
|
page readonly
|
||
7DF5077D2000
|
unkown image
|
page readonly
|
||
7F1A2000
|
unkown image
|
page readonly
|
||
7FF5219C6000
|
unkown image
|
page readonly
|
||
5A3487F000
|
unkown
|
page read and write
|
||
1E4BA47B000
|
unkown
|
page read and write
|
||
21F2DE7E000
|
unkown
|
page read and write
|
||
26B37DA0000
|
unkown image
|
page readonly
|
||
490000
|
unkown image
|
page read and write
|
||
8BB000
|
heap default
|
page read and write
|
||
7FF5062F1000
|
unkown image
|
page readonly
|
||
23A4B250000
|
unkown
|
page read and write
|
||
26B37E79000
|
unkown
|
page read and write
|
||
7FF5CDFFD000
|
unkown image
|
page readonly
|
||
7FF51FC74000
|
unkown image
|
page readonly
|
||
A7A000
|
heap default
|
page read and write
|
||
7FF5CDD3C000
|
unkown image
|
page readonly
|
||
7FF5A4FD6000
|
unkown image
|
page readonly
|
||
18E618FE000
|
unkown
|
page read and write
|
||
1E4BA464000
|
unkown
|
page read and write
|
||
1ACAE992000
|
unkown
|
page read and write
|
||
23A4B24D000
|
unkown
|
page read and write
|
||
A70000
|
heap default
|
page read and write
|
||
1B735A5C000
|
unkown
|
page read and write
|
||
7FF50626C000
|
unkown image
|
page readonly
|
||
7FF521789000
|
unkown image
|
page readonly
|
||
1ACAE113000
|
unkown
|
page read and write
|
||
2AC0000
|
unkown
|
page read and write
|
||
1E4BA475000
|
unkown
|
page read and write
|
||
18E670B0000
|
unkown
|
page read and write
|
||
7DF5BF4E0000
|
unkown image
|
page readonly
|
||
1DBA1F13000
|
unkown
|
page read and write
|
||
67B797C000
|
unkown
|
page read and write
|
||
7DF5B4392000
|
unkown image
|
page readonly
|
||
1E4BA330000
|
unkown image
|
page readonly
|
||
7DF535810000
|
unkown image
|
page readonly
|
||
2B9B000
|
unkown image
|
page readonly
|
||
20042902000
|
unkown
|
page read and write
|
||
9A0000
|
unkown image
|
page readonly
|
||
1ACAE999000
|
unkown
|
page read and write
|
||
7FF5BE002000
|
unkown image
|
page readonly
|
||
7FF5F22E9000
|
unkown image
|
page readonly
|
||
1ACAE992000
|
unkown
|
page read and write
|
||
1ACAE0E9000
|
unkown
|
page read and write
|
||
1E4BA460000
|
unkown
|
page read and write
|
||
2DE5C2B0000
|
heap default
|
page read and write
|
||
1B735B13000
|
unkown
|
page read and write
|
||
7FF533B33000
|
unkown image
|
page readonly
|
||
7DF55C9E0000
|
unkown image
|
page readonly
|
||
1ACAE116000
|
unkown
|
page read and write
|
||
1ACAE986000
|
unkown
|
page read and write
|
||
48B0000
|
unkown
|
page read and write
|
||
7FF5CE13B000
|
unkown image
|
page readonly
|
||
7F1B0000
|
unkown image
|
page readonly
|
||
18E66B74000
|
unkown
|
page read and write
|
||
81A3DFE000
|
unkown
|
page read and write
|
||
7FF561D43000
|
unkown image
|
page readonly
|
||
7FF5B2E58000
|
unkown image
|
page readonly
|
||
1E4BA445000
|
unkown
|
page read and write
|
||
C4D000
|
unkown
|
page read and write
|
||
7FF533F7A000
|
unkown image
|
page readonly
|
||
7FF5CE1A9000
|
unkown image
|
page readonly
|
||
7FF533AE8000
|
unkown image
|
page readonly
|
||
1E4BA47A000
|
unkown
|
page read and write
|
||
7FF5F2621000
|
unkown image
|
page readonly
|
||
921F7F8000
|
unkown
|
page read and write
|
||
7F152000
|
unkown image
|
page readonly
|
||
18E618AF000
|
unkown
|
page read and write
|
||
1DBA37C0000
|
unkown
|
page read and write
|
||
67B767A000
|
unkown
|
page read and write
|
||
21F2DCA0000
|
unkown image
|
page readonly
|
||
1E4BAC02000
|
unkown
|
page read and write
|
||
5FB217F000
|
unkown
|
page read and write
|
||
1ACAE9AC000
|
unkown
|
page read and write
|
||
8A0000
|
unkown image
|
page readonly
|
||
7FF521935000
|
unkown image
|
page readonly
|
||
7DF5077C2000
|
unkown image
|
page readonly
|
||
26F607A0000
|
unkown
|
page read and write
|
||
21F2DF08000
|
unkown
|
page read and write
|
||
FFC000
|
unkown
|
page read and write
|
||
2B88000
|
unkown image
|
page readonly
|
||
8F0000
|
unkown image
|
page readonly
|
||
1E4BA429000
|
unkown
|
page read and write
|
||
1E4BA459000
|
unkown
|
page read and write
|
||
7FF561CB9000
|
unkown image
|
page readonly
|
||
D40000
|
unkown
|
page read and write
|
||
1A51AEC000
|
unkown
|
page read and write
|
||
7FF505ED9000
|
unkown image
|
page readonly
|
||
7FF5F2412000
|
unkown image
|
page readonly
|
||
7FF561C55000
|
unkown image
|
page readonly
|
||
B7D000
|
unkown
|
page read and write
|
||
7FF5217B5000
|
unkown image
|
page readonly
|
||
7DF535810000
|
unkown image
|
page readonly
|
||
7DF5B43A0000
|
unkown image
|
page readonly
|
||
26F60313000
|
unkown
|
page read and write
|
||
29C0000
|
unkown image
|
page readonly
|
||
2004284F000
|
unkown
|
page read and write
|
||
7FF5F1E8B000
|
unkown image
|
page readonly
|
||
7FF5A4D15000
|
unkown image
|
page readonly
|
||
7FF5BDFFC000
|
unkown image
|
page readonly
|
||
4DCE000
|
unkown
|
page read and write
|
||
18E66CED000
|
unkown
|
page read and write
|
||
67B77F9000
|
unkown
|
page read and write
|
||
7DF535800000
|
unkown image
|
page readonly
|
||
7FF5F26D6000
|
unkown image
|
page readonly
|
||
20230020000
|
unkown image
|
page readonly
|
||
7FF561C51000
|
unkown image
|
page readonly
|
||
7FF5F2286000
|
unkown image
|
page readonly
|
||
7FF5A54D3000
|
unkown image
|
page readonly
|
||
7FF521904000
|
unkown image
|
page readonly
|
||
7DF537910000
|
unkown image
|
page readonly
|
||
26F60020000
|
unkown image
|
page readonly
|
||
7FF5A53AC000
|
unkown image
|
page readonly
|
||
1ACAE983000
|
unkown
|
page read and write
|
||
DFCB17C000
|
unkown
|
page read and write
|
||
FF7A2000
|
unkown image
|
page readonly
|
||
23A4CBA0000
|
unkown image
|
page read and write
|
||
A91000
|
unkown
|
page read and write
|
||
1ACAE992000
|
unkown
|
page read and write
|
||
7FF5CDF92000
|
unkown image
|
page readonly
|
||
20042650000
|
unkown image
|
page readonly
|
||
1DBA3DC0000
|
unkown
|
page read and write
|
||
1B735B00000
|
unkown
|
page read and write
|
||
7FF5A5280000
|
unkown image
|
page readonly
|
||
2AB0000
|
unkown
|
page read and write
|
||
2DE5C600000
|
unkown image
|
page readonly
|
||
1E4BA476000
|
unkown
|
page read and write
|
||
7FF5BDE39000
|
unkown image
|
page readonly
|
||
B9D000
|
unkown
|
page read and write
|
||
18E67170000
|
unkown
|
page read and write
|
||
1E4BA46A000
|
unkown
|
page read and write
|
||
7FF5343A3000
|
unkown image
|
page readonly
|
||
7FF55B49F000
|
unkown image
|
page readonly
|
||
FF7B0000
|
unkown image
|
page readonly
|
||
7FF53619C000
|
unkown image
|
page readonly
|
||
26F60802000
|
unkown
|
page read and write
|
||
4A0000
|
unkown image
|
page readonly
|
||
C24000
|
unkown
|
page read and write
|
||
2570000
|
unkown
|
page read and write
|
||
7FF5B2EAC000
|
unkown image
|
page readonly
|
||
2831000
|
unkown image
|
page readonly
|
||
7FF5BDECA000
|
unkown image
|
page readonly
|
||
2B8F000
|
unkown image
|
page readonly
|
||
20230010000
|
heap private
|
page read and write
|
||
20230150000
|
unkown image
|
page readonly
|
||
7DF537910000
|
unkown image
|
page readonly
|
||
23A4B210000
|
unkown image
|
page readonly
|
||
7DF5F3B50000
|
unkown image
|
page readonly
|
||
1ACAE9B0000
|
unkown
|
page read and write
|
||
20230600000
|
unkown image
|
page readonly
|
||
200427A0000
|
unkown
|
page read and write
|
||
5A3437F000
|
unkown
|
page read and write
|
||
B81000
|
unkown
|
page read and write
|
||
8B0000
|
unkown image
|
page readonly
|
||
1ACAE999000
|
unkown
|
page read and write
|
||
1500000
|
heap default
|
page read and write
|
||
7FF51FCE4000
|
unkown image
|
page readonly
|
||
D10000
|
unkown image
|
page readonly
|
||
20230790000
|
unkown image
|
page readonly
|
||
2AC4000
|
unkown image
|
page readonly
|
||
7FF5B2F36000
|
unkown image
|
page readonly
|
||
14E0000
|
heap default
|
page read and write
|
||
7DF55C9E2000
|
unkown image
|
page readonly
|
||
1ACAE051000
|
unkown
|
page read and write
|
||
7FF505B0A000
|
unkown image
|
page readonly
|
||
7FF5062E2000
|
unkown image
|
page readonly
|
||
DFCAE7F000
|
unkown
|
page read and write
|
||
7FF5F22E3000
|
unkown image
|
page readonly
|
||
20042908000
|
unkown
|
page read and write
|
||
26F60267000
|
unkown
|
page read and write
|
||
2DE5C402000
|
unkown
|
page read and write
|
||
1E4BA456000
|
unkown
|
page read and write
|
||
1ACAE917000
|
unkown
|
page read and write
|
||
9FC547B000
|
unkown
|
page read and write
|
||
7FF5BDE81000
|
unkown image
|
page readonly
|
||
7FF561A5B000
|
unkown image
|
page readonly
|
||
1ACAE971000
|
unkown
|
page read and write
|
||
7FF506223000
|
unkown image
|
page readonly
|
||
1ACAE050000
|
unkown
|
page read and write
|
||
2AE8000
|
unkown image
|
page readonly
|
||
20230202000
|
unkown
|
page read and write
|
||
1ACAEE6A000
|
unkown
|
page read and write
|
||
7FF561AA2000
|
unkown image
|
page readonly
|
||
1ACADFC0000
|
unkown image
|
page readonly
|
||
7FF51FC4C000
|
unkown image
|
page readonly
|
||
1DBA1CB0000
|
unkown image
|
page readonly
|
||
7FF521952000
|
unkown image
|
page readonly
|
||
7FF5BE076000
|
unkown image
|
page readonly
|
||
A90000
|
unkown
|
page read and write
|
||
18E61F00000
|
unkown
|
page read and write
|
||
23A4B232000
|
unkown
|
page read and write
|
||
7FF5342AF000
|
unkown image
|
page readonly
|
||
1E4BA432000
|
unkown
|
page read and write
|
||
7FF5B26FA000
|
unkown image
|
page readonly
|
||
1E4BA43B000
|
unkown
|
page read and write
|
||
27B4000
|
unkown image
|
page readonly
|
||
1ACAE9B7000
|
unkown
|
page read and write
|
||
2AE8000
|
unkown image
|
page readonly
|
||
252B000
|
unkown
|
page execute and read and write
|
||
921EDFB000
|
unkown
|
page read and write
|
||
1B735820000
|
heap default
|
page read and write
|
||
23A4B170000
|
unkown image
|
page readonly
|
||
18E6188F000
|
unkown
|
page read and write
|
||
7FF5342C4000
|
unkown image
|
page readonly
|
||
23A4B150000
|
unkown image
|
page read and write
|
||
7DF5211B0000
|
unkown image
|
page readonly
|
||
21F2DF00000
|
unkown
|
page read and write
|
||
5FB1B7A000
|
unkown
|
page read and write
|
||
2E43EFE000
|
unkown
|
page read and write
|
||
500E000
|
unkown
|
page read and write
|
||
7FF5A529F000
|
unkown image
|
page readonly
|
||
7FF5CE169000
|
unkown image
|
page readonly
|
||
7DF5BF4F2000
|
unkown image
|
page readonly
|
||
7FF5A4C8A000
|
unkown image
|
page readonly
|
||
7FF5A53B5000
|
unkown image
|
page readonly
|
||
7F0E0000
|
unkown image
|
page readonly
|
||
20042829000
|
unkown
|
page read and write
|
||
1ACAE9B4000
|
unkown
|
page read and write
|
||
1ACAE963000
|
unkown
|
page read and write
|
||
7FF5BE093000
|
unkown image
|
page readonly
|
||
7F0000
|
unkown image
|
page readonly
|
||
7FF534191000
|
unkown image
|
page readonly
|
||
7FF5343A3000
|
unkown image
|
page readonly
|
||
1ACAE992000
|
unkown
|
page read and write
|
||
DB0000
|
unkown
|
page read and write
|
||
7FF52194C000
|
unkown image
|
page readonly
|
||
FF7B2000
|
unkown image
|
page readonly
|
||
7FF55AA2B000
|
unkown image
|
page readonly
|
||
23A4B261000
|
unkown
|
page read and write
|
||
2E43D7B000
|
unkown
|
page read and write
|
||
1E4BA44D000
|
unkown
|
page read and write
|
||
7DF5A6940000
|
unkown image
|
page readonly
|
||
1ACAE9AA000
|
unkown
|
page read and write
|
||
7FF5BDE5F000
|
unkown image
|
page readonly
|
||
26B38460000
|
unkown image
|
page readonly
|
||
7F0F0000
|
unkown image
|
page readonly
|
||
C2E000
|
unkown
|
page read and write
|
||
1ACAE974000
|
unkown
|
page read and write
|
||
18E626A0000
|
unkown
|
page read and write
|
||
1DBA1DD0000
|
unkown
|
page read and write
|
||
4ECD000
|
unkown
|
page read and write
|
||
7FF55B516000
|
unkown image
|
page readonly
|
||
921F5FF000
|
unkown
|
page read and write
|
||
2AC6000
|
unkown image
|
page readonly
|
||
7FF5A54C5000
|
unkown image
|
page readonly
|
||
7FF5A5409000
|
unkown image
|
page readonly
|
||
7DF537920000
|
unkown image
|
page readonly
|
||
7DF535802000
|
unkown image
|
page readonly
|
||
7FF51FD53000
|
unkown image
|
page readonly
|
||
187F000
|
unkown
|
page read and write
|
||
1ACAE974000
|
unkown
|
page read and write
|
||
26F60229000
|
unkown
|
page read and write
|
||
DFCB47F000
|
unkown
|
page read and write
|
||
7FF5218F8000
|
unkown image
|
page readonly
|
||
4670000
|
unkown image
|
page readonly
|
||
478E000
|
unkown
|
page read and write
|
||
2B9B000
|
unkown image
|
page readonly
|
||
81A3EFE000
|
unkown
|
page read and write
|
||
1ACAEE02000
|
unkown
|
page read and write
|
||
7FF5A51CF000
|
unkown image
|
page readonly
|
||
20042680000
|
unkown image
|
page readonly
|
||
1ACAE971000
|
unkown
|
page read and write
|
||
1ACAE99F000
|
unkown
|
page read and write
|
||
7FF5217D1000
|
unkown image
|
page readonly
|
||
1110000
|
unkown image
|
page readonly
|
||
7FF55B4C1000
|
unkown image
|
page readonly
|
||
7FF561CAC000
|
unkown image
|
page readonly
|
||
7FF53641B000
|
unkown image
|
page readonly
|
||
7FF51FCA5000
|
unkown image
|
page readonly
|
||
5FB247E000
|
unkown
|
page read and write
|
||
7FF561C4F000
|
unkown image
|
page readonly
|
||
7DF5CF680000
|
unkown image
|
page readonly
|
||
20042670000
|
unkown image
|
page readonly
|
||
18E618A2000
|
unkown
|
page read and write
|
||
7FF51FCC2000
|
unkown image
|
page readonly
|
||
7FF5F2300000
|
unkown image
|
page readonly
|
||
9FC57FE000
|
unkown
|
page read and write
|
||
1DBA1C60000
|
unkown image
|
page read and write
|
||
26F60287000
|
unkown
|
page read and write
|
||
18E625C0000
|
unkown image
|
page read and write
|
||
1ACAE990000
|
unkown
|
page read and write
|
||
18E61813000
|
unkown
|
page read and write
|
||
7FF53607D000
|
unkown image
|
page readonly
|
||
3150000
|
unkown
|
page read and write
|
||
7F0F2000
|
unkown image
|
page readonly
|
||
9D8000
|
unkown
|
page read and write
|
||
1ACAE992000
|
unkown
|
page read and write
|
||
7FF5062EC000
|
unkown image
|
page readonly
|
||
1E4BA473000
|
unkown
|
page read and write
|
||
5A33FFB000
|
unkown
|
page read and write
|
||
7DF4A47F0000
|
unkown image
|
page readonly
|
||
2F8A000
|
heap private
|
page read and write
|
||
2004283C000
|
unkown
|
page read and write
|
||
2EC7000
|
heap private
|
page read and write
|
||
26F60130000
|
unkown image
|
page readonly
|
||
1E4BA440000
|
unkown
|
page read and write
|
||
2FAA000
|
heap private
|
page read and write
|
||
1E4BA446000
|
unkown
|
page read and write
|
||
7FF55B586000
|
unkown image
|
page readonly
|
||
7FF5BDC66000
|
unkown image
|
page readonly
|
||
1DBA2000000
|
unkown image
|
page readonly
|
||
20042813000
|
unkown
|
page read and write
|
||
26B37F24000
|
unkown
|
page read and write
|
||
A3C0BFB000
|
unkown
|
page read and write
|
||
2DE5C459000
|
unkown
|
page read and write
|
||
1ACAE920000
|
unkown
|
page read and write
|
||
1A5217E000
|
unkown
|
page read and write
|
||
7FF5F25CC000
|
unkown image
|
page readonly
|
||
7FF5CE1B6000
|
unkown image
|
page readonly
|
||
7F050000
|
unkown image
|
page readonly
|
||
2B82000
|
unkown image
|
page readonly
|
||
1ACAE993000
|
unkown
|
page read and write
|
||
A3C0AFF000
|
unkown
|
page read and write
|
||
1ACADE40000
|
heap private
|
page read and write
|
||
18E66BA0000
|
unkown
|
page read and write
|
||
1ACAEE02000
|
unkown
|
page read and write
|
||
7FF5062C5000
|
unkown image
|
page readonly
|
||
5FB1A77000
|
unkown
|
page read and write
|
||
7FF5F23E4000
|
unkown image
|
page readonly
|
||
5FA000
|
unkown
|
page read and write
|
||
7DF5077D0000
|
unkown image
|
page readonly
|
||
A3B000
|
unkown
|
page read and write
|
||
21F2DE56000
|
unkown
|
page read and write
|
||
1ACAEE1E000
|
unkown
|
page read and write
|
||
7FF5362CA000
|
unkown image
|
page readonly
|
||
1ACAE97E000
|
unkown
|
page read and write
|
||
1B735A13000
|
unkown
|
page read and write
|
||
7FF53406F000
|
unkown image
|
page readonly
|
||
1DBA2380000
|
unkown image
|
page readonly
|
||
21F2DDD0000
|
unkown image
|
page readonly
|
||
26F60200000
|
unkown
|
page read and write
|
||
7FF533FB0000
|
unkown image
|
page readonly
|
||
18E66BD0000
|
unkown
|
page read and write
|
||
7FF561CC6000
|
unkown image
|
page readonly
|
||
7FF533B02000
|
unkown image
|
page readonly
|
||
7FF51FA44000
|
unkown image
|
page readonly
|
||
7FF51FCBC000
|
unkown image
|
page readonly
|
||
1ACAE9AA000
|
unkown
|
page read and write
|
||
7FF505F3D000
|
unkown image
|
page readonly
|
||
26B37E28000
|
unkown
|
page read and write
|
||
26B37E00000
|
unkown
|
page read and write
|
||
7DF5631A0000
|
unkown image
|
page readonly
|
||
D00000
|
unkown image
|
page read and write
|
||
7FF5F22C2000
|
unkown image
|
page readonly
|
||
7FF5A5456000
|
unkown image
|
page readonly
|
||
7DF5CF690000
|
unkown image
|
page readonly
|
||
1ACADE70000
|
unkown image
|
page readonly
|
||
18E615A0000
|
heap private
|
page read and write
|
||
7FF5F26E5000
|
unkown image
|
page readonly
|
||
1ACAE9BF000
|
unkown
|
page read and write
|
||
21F2E602000
|
unkown
|
page read and write
|
||
7DF4CD550000
|
unkown image
|
page readonly
|
||
7FF5BE009000
|
unkown image
|
page readonly
|
||
A9D000
|
unkown
|
page read and write
|
||
2AB9000
|
unkown image
|
page readonly
|
||
3E3D17E000
|
unkown
|
page read and write
|
||
7FF5217AF000
|
unkown image
|
page readonly
|
||
7DF5357F2000
|
unkown image
|
page readonly
|
||
18E61877000
|
unkown
|
page read and write
|
||
7FF521921000
|
unkown image
|
page readonly
|
||
1ACAE96E000
|
unkown
|
page read and write
|
||
9C0000
|
heap default
|
page read and write
|
||
7FF5062A1000
|
unkown image
|
page readonly
|
||
7FF5619F5000
|
unkown image
|
page readonly
|
||
20230278000
|
unkown
|
page read and write
|
||
1E4BA600000
|
unkown image
|
page readonly
|
||
1ACAE9B8000
|
unkown
|
page read and write
|
||
7FF505EC8000
|
unkown image
|
page readonly
|
||
7FF5F24BD000
|
unkown image
|
page readonly
|
||
1B7357C0000
|
heap private
|
page read and write
|
||
7F170000
|
unkown image
|
page readonly
|
||
2ACF000
|
unkown image
|
page readonly
|
||
18E66FC0000
|
unkown
|
page read and write
|
||
7FF5218F5000
|
unkown image
|
page readonly
|
||
1ACAE108000
|
unkown
|
page read and write
|
||
AF0000
|
heap default
|
page read and write
|
||
7FF51FC40000
|
unkown image
|
page readonly
|
||
7FF5F2605000
|
unkown image
|
page readonly
|
||
1ACAE99B000
|
unkown
|
page read and write
|
||
7FF5F2629000
|
unkown image
|
page readonly
|
||
1ACAE0B9000
|
unkown
|
page read and write
|
||
23A4B3F0000
|
unkown image
|
page readonly
|
||
7DF5B43A2000
|
unkown image
|
page readonly
|
||
7DF5211A2000
|
unkown image
|
page readonly
|
||
7FF5363F1000
|
unkown image
|
page readonly
|
||
18E66CF9000
|
unkown
|
page read and write
|
||
20230170000
|
unkown
|
page read and write
|
||
B71000
|
unkown
|
page read and write
|
||
1880000
|
unkown image
|
page readonly
|
||
2E441FF000
|
unkown
|
page read and write
|
||
2DE5C250000
|
heap private
|
page read and write
|
||
921F8F8000
|
unkown
|
page read and write
|
||
1B735B08000
|
unkown
|
page read and write
|
||
7F1A0000
|
unkown image
|
page readonly
|
||
7F152000
|
unkown image
|
page readonly
|
||
7FF5B2E64000
|
unkown image
|
page readonly
|
||
B50000
|
heap default
|
page read and write
|
||
1ACAE088000
|
unkown
|
page read and write
|
||
5FB227E000
|
unkown
|
page read and write
|
||
3330000
|
unkown image
|
page readonly
|
||
7920000
|
unkown
|
page read and write
|
||
20042640000
|
heap private
|
page read and write
|
||
7FF536436000
|
unkown image
|
page readonly
|
||
26B380D0000
|
unkown image
|
page readonly
|
||
1ACAE999000
|
unkown
|
page read and write
|
||
18E66C3D000
|
unkown
|
page read and write
|
||
1E4BA43D000
|
unkown
|
page read and write
|
||
18E66AD0000
|
unkown
|
page read and write
|
||
7DF5B43A0000
|
unkown image
|
page readonly
|
||
7DF5F3B40000
|
unkown image
|
page readonly
|
||
20042870000
|
unkown
|
page read and write
|
||
2AC3000
|
unkown
|
page read and write
|
||
7DF5B4392000
|
unkown image
|
page readonly
|
||
612000
|
unkown
|
page read and write
|
||
921F4F8000
|
unkown
|
page read and write
|
||
1E4BA442000
|
unkown
|
page read and write
|
||
1B735800000
|
unkown image
|
page readonly
|
||
1ACAE994000
|
unkown
|
page read and write
|
||
1ACAE9AA000
|
unkown
|
page read and write
|
||
7FF52195C000
|
unkown image
|
page readonly
|
||
1ACAE9A0000
|
unkown
|
page read and write
|
||
7A10000
|
unkown
|
page read and write
|
||
1ACAE9BC000
|
unkown
|
page read and write
|
||
1E4BA1F0000
|
heap private
|
page read and write
|
||
1ACAE97F000
|
unkown
|
page read and write
|
||
7F3E2000
|
unkown image
|
page readonly
|
||
7FF561C95000
|
unkown image
|
page readonly
|
||
790000
|
unkown image
|
page readonly
|
||
7FF534396000
|
unkown image
|
page readonly
|
||
18E61F59000
|
unkown
|
page read and write
|
||
7FF5BDE5D000
|
unkown image
|
page readonly
|
||
1E4BA220000
|
unkown image
|
page readonly
|
||
7FF5363C8000
|
unkown image
|
page readonly
|
||
1E4BA200000
|
unkown image
|
page readonly
|
||
AB4000
|
unkown
|
page read and write
|
||
2B73000
|
unkown image
|
page readonly
|
||
B40000
|
unkown image
|
page readonly
|
||
12DD000
|
unkown
|
page read and write
|
||
7FF5A53F0000
|
unkown image
|
page readonly
|
||
7FF5A52EA000
|
unkown image
|
page readonly
|
||
26B37E56000
|
unkown
|
page read and write
|
||
7FF533F0B000
|
unkown image
|
page readonly
|
||
7DF537902000
|
unkown image
|
page readonly
|
||
1ACAE996000
|
unkown
|
page read and write
|
||
AA1000
|
unkown
|
page read and write
|
||
26F602C4000
|
unkown
|
page read and write
|
||
26B382D0000
|
unkown image
|
page readonly
|
||
18E62580000
|
unkown image
|
page readonly
|
||
1ACAE96C000
|
unkown
|
page read and write
|
||
1E4BA468000
|
unkown
|
page read and write
|
||
2023026A000
|
unkown
|
page read and write
|
||
1ACAE983000
|
unkown
|
page read and write
|
||
870000
|
unkown
|
page read and write
|
||
7DF5077E0000
|
unkown image
|
page readonly
|
||
21F2E380000
|
unkown image
|
page readonly
|
||
21F2DE8A000
|
unkown
|
page read and write
|
||
1ACAE04E000
|
unkown
|
page read and write
|
||
7FF5CE12C000
|
unkown image
|
page readonly
|
||
7DF5A6922000
|
unkown image
|
page readonly
|
||
B88000
|
unkown
|
page read and write
|
||
2AC6000
|
unkown image
|
page readonly
|
||
1ACAE9A3000
|
unkown
|
page read and write
|
||
7DF45A8B0000
|
unkown image
|
page readonly
|
||
7DF5F3B60000
|
unkown image
|
page readonly
|
||
2E440FE000
|
unkown
|
page read and write
|
||
2994000
|
unkown image
|
page readonly
|
||
3A81000
|
unkown
|
page read and write
|
||
7FF561C10000
|
unkown image
|
page readonly
|
||
1ACAE102000
|
unkown
|
page read and write
|
||
7FF506356000
|
unkown image
|
page readonly
|
||
7FF51FB05000
|
unkown image
|
page readonly
|
||
7DF5BF500000
|
unkown image
|
page readonly
|
||
AA8000
|
unkown
|
page read and write
|
||
7FF5A543C000
|
unkown image
|
page readonly
|
||
25DE000
|
unkown
|
page read and write
|
||
FF7B0000
|
unkown image
|
page readonly
|
||
23A4B248000
|
unkown
|
page read and write
|
||
2B6A000
|
unkown image
|
page readonly
|
||
1DBA3A00000
|
unkown
|
page read and write
|
||
2F90000
|
unkown image
|
page readonly
|
||
18E62590000
|
unkown image
|
page readonly
|
||
2AFB000
|
unkown image
|
page readonly
|
||
7FF521742000
|
unkown image
|
page readonly
|
||
2AA0000
|
unkown image
|
page readonly
|
||
921F0FD000
|
unkown
|
page read and write
|
||
26B37E64000
|
unkown
|
page read and write
|
||
7FF5A534C000
|
unkown image
|
page readonly
|
||
7FF5A53E8000
|
unkown image
|
page readonly
|
||
1ACAE0EA000
|
unkown
|
page read and write
|
||
1E4BA502000
|
unkown
|
page read and write
|
||
18E66B70000
|
unkown
|
page read and write
|
||
1E4BA441000
|
unkown
|
page read and write
|
||
20230400000
|
unkown image
|
page readonly
|
||
4C20000
|
unkown
|
page read and write
|
||
2B4F000
|
unkown image
|
page readonly
|
||
2B54000
|
unkown image
|
page readonly
|
||
5FB237F000
|
unkown
|
page read and write
|
||
9FC56FF000
|
unkown
|
page read and write
|
||
AA1000
|
unkown
|
page read and write
|
||
7DF5211B0000
|
unkown image
|
page readonly
|
||
67B78FF000
|
unkown
|
page read and write
|
||
7FF5F2570000
|
unkown image
|
page readonly
|
||
1ACAE6D0000
|
unkown image
|
page read and write
|
||
7FF561C60000
|
unkown image
|
page readonly
|
||
7FF5B2E4F000
|
unkown image
|
page readonly
|
||
ABD000
|
unkown
|
page read and write
|
||
1DBA1E58000
|
unkown
|
page read and write
|
||
7FF5B2F26000
|
unkown image
|
page readonly
|
||
3E3CD7E000
|
unkown
|
page read and write
|
||
18E616F0000
|
unkown image
|
page readonly
|
||
FF7A2000
|
unkown image
|
page readonly
|
||
F80000
|
unkown image
|
page read and write
|
||
7FF521974000
|
unkown image
|
page readonly
|
||
C29000
|
unkown
|
page read and write
|
||
7FF5F25C0000
|
unkown image
|
page readonly
|
||
7FF536395000
|
unkown image
|
page readonly
|
||
7DF5CF692000
|
unkown image
|
page readonly
|
||
1ACAE98C000
|
unkown
|
page read and write
|
||
1DBA1E02000
|
unkown
|
page read and write
|
||
7FF52185C000
|
unkown image
|
page readonly
|
||
7FF51FC81000
|
unkown image
|
page readonly
|
||
7FF5342D1000
|
unkown image
|
page readonly
|
||
2F80000
|
heap private
|
page read and write
|
||
5CF0000
|
unkown image
|
page readonly
|
||
1E4BA465000
|
unkown
|
page read and write
|
||
7FF5BDF9F000
|
unkown image
|
page readonly
|
||
9F0000
|
unkown
|
page read and write
|
||
26F60900000
|
unkown
|
page read and write
|
||
7FF55B593000
|
unkown image
|
page readonly
|
||
A3C0A7E000
|
unkown
|
page read and write
|
||
1ACAEE02000
|
unkown
|
page read and write
|
||
1ACAE98F000
|
unkown
|
page read and write
|
||
18E66CFF000
|
unkown
|
page read and write
|
||
E427BFD000
|
unkown
|
page read and write
|
||
7FF521911000
|
unkown image
|
page readonly
|
||
7DF5BF4F0000
|
unkown image
|
page readonly
|
||
18E66CFF000
|
unkown
|
page read and write
|
||
81A3CFB000
|
unkown
|
page read and write
|
||
7DF5211A0000
|
unkown image
|
page readonly
|
||
7DF420D00000
|
unkown image
|
page readonly
|
||
2A91000
|
unkown image
|
page readonly
|
||
7FF55B593000
|
unkown image
|
page readonly
|
||
7DF5BF4E2000
|
unkown image
|
page readonly
|
||
18E66B76000
|
unkown
|
page read and write
|
||
1ACAE983000
|
unkown
|
page read and write
|
||
504E000
|
unkown
|
page read and write
|
||
7FF5A5425000
|
unkown image
|
page readonly
|
||
2600000
|
unkown
|
page read and write
|
||
18E67170000
|
unkown
|
page read and write
|
||
2FA7000
|
heap private
|
page read and write
|
||
ABD000
|
unkown
|
page read and write
|
||
18E615E0000
|
unkown image
|
page readonly
|
||
7DF535800000
|
unkown image
|
page readonly
|
||
DFCAEFC000
|
unkown
|
page read and write
|
||
2720000
|
unkown
|
page execute and read and write
|
||
7F3D0000
|
unkown image
|
page readonly
|
||
29C8000
|
unkown image
|
page readonly
|
||
200426A0000
|
heap default
|
page read and write
|
||
1ACAE0F9000
|
unkown
|
page read and write
|
||
26F60040000
|
heap default
|
page read and write
|
||
7FF51FC70000
|
unkown image
|
page readonly
|
||
18E66C2E000
|
unkown
|
page read and write
|
||
18E66D07000
|
unkown
|
page read and write
|
||
7FF5342B5000
|
unkown image
|
page readonly
|
||
1A5207E000
|
unkown
|
page read and write
|
||
5A3417F000
|
unkown
|
page read and write
|
||
1E4BA485000
|
unkown
|
page read and write
|
||
163E000
|
unkown
|
page read and write
|
||
2DE5C280000
|
unkown image
|
page readonly
|
||
2B8F000
|
unkown image
|
page readonly
|
||
2831000
|
unkown image
|
page readonly
|
||
7DF55C9F0000
|
unkown image
|
page readonly
|
||
5A3457F000
|
unkown
|
page read and write
|
||
2B9B000
|
unkown image
|
page readonly
|
||
7DF537900000
|
unkown image
|
page readonly
|
||
7FF51FAB2000
|
unkown image
|
page readonly
|
||
1ACAE992000
|
unkown
|
page read and write
|
||
7FF5363E9000
|
unkown image
|
page readonly
|
||
7DF5B43B0000
|
unkown image
|
page readonly
|
||
48A4000
|
heap private
|
page read and write
|
||
921F07E000
|
unkown
|
page read and write
|
||
1ACAE9CD000
|
unkown
|
page read and write
|
||
A3C079B000
|
unkown
|
page read and write
|
||
5A33B9C000
|
unkown
|
page read and write
|
||
5A3467E000
|
unkown
|
page read and write
|
||
7DF405690000
|
unkown image
|
page readonly
|
||
1ACAE9CF000
|
unkown
|
page read and write
|
||
18E66CA0000
|
unkown
|
page read and write
|
||
C38000
|
unkown
|
page read and write
|
||
7FF5A5401000
|
unkown image
|
page readonly
|
||
FA0000
|
unkown image
|
page readonly
|
||
B7D000
|
unkown
|
page read and write
|
||
5FB1FFF000
|
unkown
|
page read and write
|
||
7FF533F45000
|
unkown image
|
page readonly
|
||
3250000
|
unkown image
|
page readonly
|
||
4790000
|
unkown image
|
page readonly
|
||
2B54000
|
unkown image
|
page readonly
|
||
1ACAE04B000
|
unkown
|
page read and write
|
||
18E61D80000
|
unkown image
|
page readonly
|
||
1ACAE900000
|
unkown
|
page read and write
|
||
23A4B237000
|
unkown
|
page read and write
|
||
29C0000
|
unkown image
|
page readonly
|
||
18E61E15000
|
unkown
|
page read and write
|
||
18E66CF6000
|
unkown
|
page read and write
|
||
7F0E2000
|
unkown image
|
page readonly
|
||
7FF506290000
|
unkown image
|
page readonly
|
||
7FF5F23EF000
|
unkown image
|
page readonly
|
||
1ACADE30000
|
unkown image
|
page read and write
|
||
C31000
|
unkown
|
page read and write
|
||
7FF55B519000
|
unkown image
|
page readonly
|
||
2AC0000
|
unkown image
|
page readonly
|
||
18E66B90000
|
unkown
|
page read and write
|
||
F80000
|
unkown image
|
page readonly
|
||
14D0000
|
unkown
|
page read and write
|
||
8EB000
|
heap default
|
page read and write
|
||
7FF561CB2000
|
unkown image
|
page readonly
|
||
7FF5CE021000
|
unkown image
|
page readonly
|
||
4D8D000
|
unkown
|
page read and write
|
||
7FF561C64000
|
unkown image
|
page readonly
|
||
860000
|
heap private
|
page read and write
|
||
7FF5363A9000
|
unkown image
|
page readonly
|
||
7FF5F25B4000
|
unkown image
|
page readonly
|
||
1ACAE996000
|
unkown
|
page read and write
|
||
E4274EB000
|
unkown
|
page read and write
|
||
23A4B1F0000
|
unkown
|
page read and write
|
||
1ACAE992000
|
unkown
|
page read and write
|
||
26F5FFF0000
|
unkown image
|
page readonly
|
||
C31000
|
unkown
|
page read and write
|
||
23A4B24D000
|
unkown
|
page read and write
|
||
7DF5631B0000
|
unkown image
|
page readonly
|
||
2B9B000
|
unkown image
|
page readonly
|
||
2831000
|
unkown image
|
page readonly
|
||
7FF5B2E51000
|
unkown image
|
page readonly
|
||
7780000
|
unkown
|
page read and write
|
||
7DF5211C0000
|
unkown image
|
page readonly
|
||
7FF5F26DC000
|
unkown image
|
page readonly
|
||
1ACAE998000
|
unkown
|
page read and write
|
||
7DF5CF6A0000
|
unkown image
|
page readonly
|
||
7FF51FC89000
|
unkown image
|
page readonly
|
||
7FF506373000
|
unkown image
|
page readonly
|
||
2B4F000
|
unkown image
|
page readonly
|
||
1B7357D0000
|
unkown image
|
page readonly
|
||
910000
|
unkown
|
page read and write
|
||
514E000
|
unkown
|
page read and write
|
||
7FF5219D6000
|
unkown image
|
page readonly
|
||
2DE5C980000
|
unkown image
|
page readonly
|
||
7FF55ACD8000
|
unkown image
|
page readonly
|
||
7F1A2000
|
unkown image
|
page readonly
|
||
1DBA1E5F000
|
unkown
|
page read and write
|
||
2A81000
|
unkown
|
page read and write
|
||
18E61F18000
|
unkown
|
page read and write
|
||
1ACAE985000
|
unkown
|
page read and write
|
||
26F60213000
|
unkown
|
page read and write
|
||
2AD5000
|
unkown image
|
page readonly
|
||
7FF5BDFB4000
|
unkown image
|
page readonly
|
||
2B47000
|
unkown image
|
page readonly
|
||
7FF5F24A5000
|
unkown image
|
page readonly
|
||
3120000
|
heap private
|
page read and write
|
||
1ACAEF00000
|
unkown
|
page read and write
|
||
23A4B25E000
|
unkown
|
page read and write
|
||
7DF461060000
|
unkown image
|
page readonly
|
||
2B94000
|
unkown image
|
page readonly
|
||
7FF536444000
|
unkown image
|
page readonly
|
||
FA0000
|
unkown image
|
page readonly
|
||
1E4BA435000
|
unkown
|
page read and write
|
||
7FF521820000
|
unkown image
|
page readonly
|
||
4C1E000
|
unkown
|
page read and write
|
||
7FF55B502000
|
unkown image
|
page readonly
|
||
5FB20FF000
|
unkown
|
page read and write
|
||
7FF561D2C000
|
unkown image
|
page readonly
|
||
2ABD000
|
unkown image
|
page readonly
|
||
7FF5A495D000
|
unkown image
|
page readonly
|
||
1170000
|
unkown image
|
page readonly
|
||
7DF5A6920000
|
unkown image
|
page readonly
|
||
921F2FB000
|
unkown
|
page read and write
|
||
18E66BA0000
|
unkown
|
page read and write
|
||
7FF5B2EB9000
|
unkown image
|
page readonly
|
||
1DBA1E62000
|
unkown
|
page read and write
|
||
18E66D0A000
|
unkown
|
page read and write
|
||
7FF5363E1000
|
unkown image
|
page readonly
|
||
21F2DCA0000
|
unkown image
|
page readonly
|
||
1ACAE9BE000
|
unkown
|
page read and write
|
||
7DF522E42000
|
unkown image
|
page readonly
|
||
18E66B71000
|
unkown
|
page read and write
|
||
21F2DF13000
|
unkown
|
page read and write
|
||
18E66D02000
|
unkown
|
page read and write
|
||
67B787A000
|
unkown
|
page read and write
|
||
7FF5B2F43000
|
unkown image
|
page readonly
|
||
AD0000
|
unkown
|
page read and write
|
||
1DBA3802000
|
unkown
|
page read and write
|
||
1ACAEE02000
|
unkown
|
page read and write
|
||
7FF536245000
|
unkown image
|
page readonly
|
||
7FF55B4B4000
|
unkown image
|
page readonly
|
||
7FF5363A0000
|
unkown image
|
page readonly
|
||
7DF55CA00000
|
unkown image
|
page readonly
|
||
7DF5BF500000
|
unkown image
|
page readonly
|
||
7FF5CE233000
|
unkown image
|
page readonly
|
||
18E62100000
|
unkown
|
page read and write
|
||
7FF55B524000
|
unkown image
|
page readonly
|
||
177E000
|
unkown
|
page read and write
|
||
E427AFF000
|
unkown
|
page read and write
|
||
921F1FB000
|
unkown
|
page read and write
|
||
23A4B600000
|
unkown image
|
page readonly
|
||
7FF5217AD000
|
unkown image
|
page readonly
|
||
7DF5CF6A0000
|
unkown image
|
page readonly
|
||
7FF55B50C000
|
unkown image
|
page readonly
|
||
DFCAFFD000
|
unkown
|
page read and write
|
||
7FF5F2401000
|
unkown image
|
page readonly
|
||
930000
|
unkown image
|
page readonly
|
||
FF6A0000
|
unkown image
|
page readonly
|
||
7FF5CE171000
|
unkown image
|
page readonly
|
||
1ACAE99B000
|
unkown
|
page read and write
|
||
FF7C0000
|
unkown image
|
page readonly
|
||
1ACAE98C000
|
unkown
|
page read and write
|
||
FF7C0000
|
unkown image
|
page readonly
|
||
5FB187B000
|
unkown
|
page read and write
|
||
A94000
|
heap default
|
page read and write
|
||
18E61F59000
|
unkown
|
page read and write
|
||
2AB9000
|
unkown image
|
page readonly
|
||
7FF536496000
|
unkown image
|
page readonly
|
||
1B735A87000
|
unkown
|
page read and write
|
||
2ECA000
|
heap private
|
page read and write
|
||
C4D000
|
unkown
|
page read and write
|
||
1ACAE983000
|
unkown
|
page read and write
|
||
7FF5CE0AC000
|
unkown image
|
page readonly
|
||
B5A000
|
heap default
|
page read and write
|
||
7EA000
|
unkown
|
page read and write
|
||
7FF51F20F000
|
unkown image
|
page readonly
|
||
26B37F00000
|
unkown
|
page read and write
|
||
18E66D0A000
|
unkown
|
page read and write
|
||
18E66CF6000
|
unkown
|
page read and write
|
||
7FF506255000
|
unkown image
|
page readonly
|
||
7FF5619F9000
|
unkown image
|
page readonly
|
||
1A80000
|
unkown image
|
page readonly
|
||
18E66B70000
|
unkown
|
page read and write
|
||
1E4BA46E000
|
unkown
|
page read and write
|
||
256E000
|
unkown
|
page read and write
|
||
1ACAE0A2000
|
unkown
|
page read and write
|
||
20042A00000
|
unkown image
|
page readonly
|
||
18E66AC0000
|
unkown
|
page read and write
|
||
7FF5A5039000
|
unkown image
|
page readonly
|
||
7F1A0000
|
unkown image
|
page readonly
|
||
7FF505EDB000
|
unkown image
|
page readonly
|
||
2F87000
|
heap private
|
page read and write
|
||
7FF5A5449000
|
unkown image
|
page readonly
|
||
1B735900000
|
unkown image
|
page readonly
|
||
7DF5077C2000
|
unkown image
|
page readonly
|
||
1ACAE660000
|
unkown image
|
page write copy
|
||
7FF5BE093000
|
unkown image
|
page readonly
|
||
1C00000
|
unkown image
|
page readonly
|
||
1ACAEF02000
|
unkown
|
page read and write
|
||
7DF563192000
|
unkown image
|
page readonly
|
||
1DBA1DF0000
|
unkown
|
page read and write
|
||
1B7357D0000
|
unkown image
|
page readonly
|
||
20230780000
|
unkown image
|
page readonly
|
||
7FF5CE216000
|
unkown image
|
page readonly
|
||
1ACAE992000
|
unkown
|
page read and write
|
||
1ACAE056000
|
unkown
|
page read and write
|
||
18E618BC000
|
unkown
|
page read and write
|
||
D5E000
|
unkown
|
page read and write
|
||
1ACAE9DE000
|
unkown
|
page read and write
|
||
7F3E2000
|
unkown image
|
page readonly
|
||
1ACAEE00000
|
unkown
|
page read and write
|
||
7FF55B4A5000
|
unkown image
|
page readonly
|
||
1ACAE98C000
|
unkown
|
page read and write
|
||
1ACAE99B000
|
unkown
|
page read and write
|
||
1ACAE6C0000
|
unkown
|
page read and write
|
||
1ACAE9AC000
|
unkown
|
page read and write
|
||
18E66C00000
|
unkown
|
page read and write
|
||
7FF5A503B000
|
unkown image
|
page readonly
|
||
7F1B2000
|
unkown image
|
page readonly
|
||
5A3477F000
|
unkown
|
page read and write
|
||
990000
|
unkown image
|
page readonly
|
||
7DF5077D0000
|
unkown image
|
page readonly
|
||
7FF5A51FF000
|
unkown image
|
page readonly
|
||
7DF522E42000
|
unkown image
|
page readonly
|
||
7DF5F3B42000
|
unkown image
|
page readonly
|
||
21F2E000000
|
unkown image
|
page readonly
|
||
18E66CF9000
|
unkown
|
page read and write
|
||
1A51B6E000
|
unkown
|
page read and write
|
||
23A4B170000
|
unkown image
|
page readonly
|
||
26F5FFD0000
|
unkown image
|
page read and write
|
||
7FF5CE06A000
|
unkown image
|
page readonly
|
||
7DF5F3B42000
|
unkown image
|
page readonly
|
||
895000
|
heap default
|
page read and write
|
||
7FF534319000
|
unkown image
|
page readonly
|
||
1ACAE9AD000
|
unkown
|
page read and write
|
||
7FF5F256C000
|
unkown image
|
page readonly
|
||
1B7357F0000
|
unkown image
|
page readonly
|
||
18E66D02000
|
unkown
|
page read and write
|
||
7FF5062F6000
|
unkown image
|
page readonly
|
||
3E3CE7F000
|
unkown
|
page read and write
|
||
7FF5F248B000
|
unkown image
|
page readonly
|
||
7FF5363C5000
|
unkown image
|
page readonly
|
||
5A3497E000
|
unkown
|
page read and write
|
||
18E62570000
|
unkown image
|
page readonly
|
||
1ACAE96E000
|
unkown
|
page read and write
|
||
7FF5BDFA5000
|
unkown image
|
page readonly
|
||
C44000
|
unkown
|
page read and write
|
||
2DE5C3E0000
|
unkown
|
page read and write
|
||
7FF53642C000
|
unkown image
|
page readonly
|
||
48A0000
|
heap private
|
page read and write
|
||
2F50000
|
unkown image
|
page readonly
|
||
26F60D40000
|
unkown image
|
page write copy
|
||
C31000
|
unkown
|
page read and write
|
||
18E61F18000
|
unkown
|
page read and write
|
||
7FF5BDE65000
|
unkown image
|
page readonly
|
||
7FF5A53DB000
|
unkown image
|
page readonly
|
||
3E3D07D000
|
unkown
|
page read and write
|
||
880000
|
unkown image
|
page readonly
|
||
18E66CFB000
|
unkown
|
page read and write
|
||
3E3CC7E000
|
unkown
|
page read and write
|
||
1ACAEE02000
|
unkown
|
page read and write
|
||
1ACAE99B000
|
unkown
|
page read and write
|
||
7DF41F070000
|
unkown image
|
page readonly
|
||
2DE5CA60000
|
unkown
|
page read and write
|
||
26B38470000
|
unkown image
|
page readonly
|
||
7FF506294000
|
unkown image
|
page readonly
|
||
7FF5CD6BD000
|
unkown image
|
page readonly
|
||
7FF5F25FB000
|
unkown image
|
page readonly
|
||
18E61913000
|
unkown
|
page read and write
|
||
7FF5F25FF000
|
unkown image
|
page readonly
|
||
2B8F000
|
unkown image
|
page readonly
|
||
18E66C15000
|
unkown
|
page read and write
|
||
1E4BA980000
|
unkown image
|
page readonly
|
||
7FF5341BA000
|
unkown image
|
page readonly
|
||
D32000
|
unkown
|
page execute and read and write
|
||
7FF5F23BF000
|
unkown image
|
page readonly
|
||
1E4BA47C000
|
unkown
|
page read and write
|
||
23A4B5F0000
|
unkown image
|
page readonly
|
||
1ACAE999000
|
unkown
|
page read and write
|
||
6BE000
|
unkown
|
page read and write
|
||
1E4BA45F000
|
unkown
|
page read and write
|
||
2730000
|
heap private
|
page read and write
|
||
7FF5A53E5000
|
unkown image
|
page readonly
|
||
7DF55C9F0000
|
unkown image
|
page readonly
|
||
2AC6000
|
unkown image
|
page readonly
|
||
7FF5F225B000
|
unkown image
|
page readonly
|
||
7FF5F25D5000
|
unkown image
|
page readonly
|
||
26F60400000
|
unkown image
|
page readonly
|
||
1E4BA200000
|
unkown image
|
page readonly
|
||
2B54000
|
unkown image
|
page readonly
|
||
7A00000
|
unkown
|
page read and write
|
||
7DF5BF4E2000
|
unkown image
|
page readonly
|
||
1ACAE04C000
|
unkown
|
page read and write
|
||
11F0000
|
unkown
|
page read and write
|
||
810000
|
unkown image
|
page readonly
|
||
7FF561CBC000
|
unkown image
|
page readonly
|
||
26B37DC0000
|
unkown image
|
page readonly
|
||
20230070000
|
heap default
|
page read and write
|
||
23A4B25E000
|
unkown
|
page read and write
|
||
7FF5A5394000
|
unkown image
|
page readonly
|
||
1ACADE80000
|
unkown image
|
page readonly
|
||
1ACAE0D5000
|
unkown
|
page read and write
|
||
47F0000
|
heap private
|
page read and write
|
||
1ACADF80000
|
unkown image
|
page readonly
|
||
18E66D15000
|
unkown
|
page read and write
|
||
1ACAE99B000
|
unkown
|
page read and write
|
||
7F3E0000
|
unkown image
|
page readonly
|
||
810000
|
unkown image
|
page readonly
|
||
7FF53428D000
|
unkown image
|
page readonly
|
||
7DF537912000
|
unkown image
|
page readonly
|
||
1B735A5B000
|
unkown
|
page read and write
|
||
A50000
|
unkown
|
page read and write
|
||
18E61F59000
|
unkown
|
page read and write
|
||
1ACAE9BF000
|
unkown
|
page read and write
|
||
7FF5A5464000
|
unkown image
|
page readonly
|
||
7FF51FC91000
|
unkown image
|
page readonly
|
||
7FF534386000
|
unkown image
|
page readonly
|
||
B82000
|
unkown
|
page read and write
|
||
C2D000
|
unkown
|
page read and write
|
||
7FF561C71000
|
unkown image
|
page readonly
|
||
173F000
|
unkown
|
page read and write
|
||
47AE000
|
unkown
|
page read and write
|
||
7FF535974000
|
unkown image
|
page readonly
|
||
7DF537902000
|
unkown image
|
page readonly
|
||
7FF5CE150000
|
unkown image
|
page readonly
|
||
DFCAB7C000
|
unkown
|
page read and write
|
||
20230313000
|
unkown
|
page read and write
|
||
B94000
|
unkown
|
page read and write
|
||
DFCA77B000
|
unkown
|
page read and write
|
||
1ACAE998000
|
unkown
|
page read and write
|
||
26F6026E000
|
unkown
|
page read and write
|
||
7FF5B2EB2000
|
unkown image
|
page readonly
|
||
18E66B50000
|
unkown
|
page read and write
|
||
7FF53430C000
|
unkown image
|
page readonly
|
||
20230213000
|
unkown
|
page read and write
|
||
18E66CF9000
|
unkown
|
page read and write
|
||
FF7B2000
|
unkown image
|
page readonly
|
||
1ACAE992000
|
unkown
|
page read and write
|
||
23A4B261000
|
unkown
|
page read and write
|
||
7F3D0000
|
unkown image
|
page readonly
|
||
81A3BFB000
|
unkown
|
page read and write
|
||
2AA4000
|
unkown image
|
page readonly
|
||
7FF5B2E71000
|
unkown image
|
page readonly
|
||
1ACAE98A000
|
unkown
|
page read and write
|
||
2994000
|
unkown image
|
page readonly
|
||
2DE5C390000
|
unkown image
|
page readonly
|
||
7FF5A52C1000
|
unkown image
|
page readonly
|
||
2FB0000
|
unkown image
|
page readonly
|
||
18E66F80000
|
unkown
|
page read and write
|
||
23A4B247000
|
unkown
|
page read and write
|
||
18E61E02000
|
unkown
|
page read and write
|
||
7FF5364B3000
|
unkown image
|
page readonly
|
||
7FF5CE1A2000
|
unkown image
|
page readonly
|
||
5A3447D000
|
unkown
|
page read and write
|
||
18E66F21000
|
unkown
|
page read and write
|
||
7FF506260000
|
unkown image
|
page readonly
|
||
2AA3000
|
unkown
|
page read and write
|
||
26F60120000
|
unkown image
|
page readonly
|
||
1E4BA474000
|
unkown
|
page read and write
|
||
7FF533F76000
|
unkown image
|
page readonly
|
||
7FF5B2F2C000
|
unkown image
|
page readonly
|
||
1ACAE048000
|
unkown
|
page read and write
|
||
7F3D2000
|
unkown image
|
page readonly
|
There are 1760 hidden memdumps, click here to show them.