IOC Report

loading gif

Files

File Path
Type
Category
Malicious
PROFORMA INVOICE.xlsx
CDFV2 Encrypted
initial sample
 malicious
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\ZAE7RW1P\vbc[1].exe
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
downloaded
 malicious
C:\Users\user\AppData\Local\Temp\tmp5580.tmp
XML 1.0 document, ASCII text
dropped
 malicious
C:\Users\user\AppData\Roaming\nLOlOTZpUHFzC.exe
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
dropped
 malicious
C:\Users\user\Desktop\~$PROFORMA INVOICE.xlsx
data
dropped
 malicious
C:\Users\Public\vbc.exe
PE32 executable (GUI) Intel 80386 Mono/.Net assembly, for MS Windows
dropped
 malicious
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\30913362.png
PNG image data, 1295 x 471, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\49DB89C0.png
PNG image data, 130 x 176, 8-bit/color RGB, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\4C948E5C.png
PNG image data, 338 x 143, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\566AA7FB.png
PNG image data, 130 x 176, 8-bit/color RGB, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\597470CA.png
PNG image data, 600 x 306, 8-bit colormap, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\7B2EFE3F.png
PNG image data, 338 x 143, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\7C45E1A5.png
PNG image data, 600 x 306, 8-bit colormap, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\A725389E.emf
Windows Enhanced Metafile (EMF) image data version 0x10000
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\B8B07368.png
PNG image data, 130 x 176, 8-bit/color RGB, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\CED70334.png
PNG image data, 413 x 220, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\D8E0D407.png
PNG image data, 458 x 211, 8-bit/color RGB, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\ECCEF5B6.png
PNG image data, 458 x 211, 8-bit/color RGB, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\F3943643.png
PNG image data, 1295 x 471, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\F4194C49.png
PNG image data, 130 x 176, 8-bit/color RGB, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\FB3FE2AD.png
PNG image data, 413 x 220, 8-bit/color RGBA, non-interlaced
dropped
 clean
C:\Users\user\AppData\Local\Temp\~DF179E4FABD168830C.TMP
data
dropped
 clean
C:\Users\user\AppData\Local\Temp\~DF364B1570347A7C36.TMP
CDFV2 Encrypted
dropped
 clean
C:\Users\user\AppData\Local\Temp\~DF5ABA8F4F45C955BE.TMP
data
dropped
 clean
C:\Users\user\AppData\Local\Temp\~DFC39337F99D373AF1.TMP
data
dropped
 clean
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\6DVTRGQEANC1QDSD4KFD.temp
data
dropped
 clean
C:\Users\user\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\d93f411851d7c929.customDestinations-ms (copy)
data
dropped
 clean
There are 17 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.EXE
"C:\Program Files\Common Files\Microsoft Shared\EQUATION\EQNEDT32.EXE" -Embedding
 malicious
C:\Users\Public\vbc.exe
"C:\Users\Public\vbc.exe"
malicious
C:\Windows\SysWOW64\WindowsPowerShell\v1.0\powershell.exe
C:\Windows\System32\WindowsPowerShell\v1.0\powershell.exe" Add-MpPreference -ExclusionPath "C:\Users\user\AppData\Roaming\nLOlOTZpUHFzC.exe
 malicious
C:\Windows\SysWOW64\schtasks.exe
C:\Windows\System32\schtasks.exe" /Create /TN "Updates\nLOlOTZpUHFzC" /XML "C:\Users\user\AppData\Local\Temp\tmp5580.tmp
 malicious
C:\Users\Public\vbc.exe
C:\Users\Public\vbc.exe
 malicious
C:\Windows\explorer.exe
C:\Windows\Explorer.EXE
 malicious
C:\Windows\SysWOW64\svchost.exe
C:\Windows\SysWOW64\svchost.exe
 malicious
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
"C:\Program Files\Microsoft Office\Office14\EXCEL.EXE" /automation -Embedding
 clean
C:\Windows\SysWOW64\autofmt.exe
C:\Windows\SysWOW64\autofmt.exe
 clean

URLs

Name
IP
Malicious
http://107.173.229.133/90009/vbc.exe
107.173.229.133
 malicious
www.septemberstockevent200.com/ht08/
malicious
http://www.deboraverdian.com/ht08/?br2=hqaFuomov4HTN7lxwLOQI0L+zLU3A1JjC3kLHHHa91aVMp4VPmQJeUa+LGH249kypYugsQ==&fDKD5Z=lbLdxBhXWNSHTR
151.106.119.46
 malicious
http://www.franquiciasexclusivas.tienda/ht08/?br2=Wj4EIVjQBNu/bqqxJYrWPsWLHRdbpU/VGyAVKo6IxXme9nj69vNHjvuNthqXxUIvimxQ8w==&fDKD5Z=lbLdxBhXWNSHTR
108.167.189.66
 malicious
http://www.trashwasher.com/ht08/?br2=uW1sPHtBOFcvSjOqiE7uYKY6CRw967TpF9DAp4EO6MgnVSdl1zAyFQ+ogdnPtirgP8DfTg==&fDKD5Z=lbLdxBhXWNSHTR
151.101.66.159
 malicious
http://www.noyoucantridemyonewheel.com/ht08/?br2=60BX3p/jKqTFfatzdk67FZjwUvooQvGFnODgWFokXaJ7H/RmjwYG/Htt7Nd+S+ztCPQGkw==&fDKD5Z=lbLdxBhXWNSHTR
192.0.78.25
 malicious
http://www.windows.com/pctv.
unknown
 clean
http://investor.msn.com
unknown
 clean
http://www.msnbc.com/news/ticker.txt
unknown
 clean
http://wellformedweb.org/CommentAPI/
unknown
 clean
http://www.hacticum.com/ht08/?br2=NsDQ5dhzDoz6b+QTI369eNhdKzsm5WWXC1g1e1LkMaMU2QVIAgjIadv0XRSqFt55bwDZkw==&fDKD5Z=lbLdxBhXWNSHTR
34.102.136.180
 clean
http://www.iis.fhg.de/audioPA
unknown
 clean
http://www.mozilla.com0
unknown
 clean
http://windowsmedia.com/redir/services.asp?WMPFriendly=true
unknown
 clean
http://www.hotmail.com/oe
unknown
 clean
http://treyresearch.net
unknown
 clean
http://services.msn.com/svcs/oe/certpage.asp?name=%s&email=%s&&Check
unknown
 clean
http://java.sun.com
unknown
 clean
http://www.icra.org/vocabulary/.
unknown
 clean
http://schemas.xmlsoap.org/ws/2004/08/addressing/role/anonymous.
unknown
 clean
http://www.piriform.com/ccleanerhttp://www.piriform.com/ccleanerv
unknown
 clean
http://investor.msn.com/
unknown
 clean
http://www.piriform.com/ccleaner
unknown
 clean
http://computername/printers/printername/.printer
unknown
 clean
http://www.%s.comPA
unknown
 clean
http://www.autoitscript.com/autoit3
unknown
 clean
https://support.mozilla.org
unknown
 clean
http://schemas.xmlsoap.org/ws/2005/05/identity/claims/name
unknown
 clean
http://servername/isapibackend.dll
unknown
 clean
There are 19 hidden URLs, click here to show them.

Domains

Name
IP
Malicious
trashwasher.com
151.101.66.159
 malicious
noyoucantridemyonewheel.com
192.0.78.25
 malicious
www.franquiciasexclusivas.tienda
108.167.189.66
 malicious
deboraverdian.com
151.106.119.46
 malicious
www.trashwasher.com
unknown
 malicious
www.noyoucantridemyonewheel.com
unknown
 malicious
www.digipoint-entertainment.com
unknown
 malicious
www.deboraverdian.com
unknown
 malicious
www.hacticum.com
unknown
 malicious
www.getjoyce.net
unknown
 malicious
hacticum.com
34.102.136.180
 clean
There are 1 hidden domains, click here to show them.

IPs

IP
Domain
Country
Malicious
192.0.78.25
noyoucantridemyonewheel.com
United States
malicious
151.106.119.46
deboraverdian.com
Germany
malicious
151.101.66.159
trashwasher.com
United States
malicious
107.173.229.133
unknown
United States
malicious
108.167.189.66
www.franquiciasexclusivas.tienda
United States
malicious
34.102.136.180
hacticum.com
United States
clean

Registry

Path
Value
Malicious
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Resiliency\StartupItems
) '
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel
MTTT
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Common\ReviewCycle
ReviewToken
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Resiliency\DocumentRecovery\2D3A4
2D3A4
 clean
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00004109D30000000100000000F01FEC\Usage
VBAFiles
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Resiliency\StartupItems
/&'
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Resiliency\DocumentRecovery\31E4A
31E4A
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Resiliency\DocumentRecovery\33073
33073
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Place MRU
Max Display
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Place MRU
Item 1
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Max Display
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 1
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 2
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 3
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 4
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 5
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 6
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 7
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 8
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 9
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 10
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 11
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 12
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 13
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 14
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 15
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 16
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 17
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 18
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 19
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 20
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
Item 21
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Security\Trusted Documents
LastPurgeTime
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Common\LanguageResources\EnabledLanguages
1033
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Common\LanguageResources\EnabledLanguages
1033
 clean
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00004109D30000000100000000F01FEC\Usage
EXCELFiles
 clean
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00004109D30000000100000000F01FEC\Usage
ProductFiles
 clean
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Resiliency\DocumentRecovery\31E4A
31E4A
 clean
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00004109E60090400100000000F01FEC\Usage
EquationEditorFilesIntl_1033
 clean
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
SavedLegacySettings
 clean
There are 30 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
F0000
unkown image
page execute and read and write
 malicious
9780000
unkown image
page execute and read and write
 malicious
400000
unkown
page execute and read and write
 malicious
223F000
unkown
page read and write
 malicious
80000
unkown image
page execute and read and write
 malicious
170000
unkown image
page execute and read and write
 malicious
400000
unkown
page execute and read and write
 malicious
3456000
unkown
page read and write
 malicious
400000
unkown
page execute and read and write
 malicious
1D0000
unkown
page read and write
 malicious
210000
unkown image
page execute and read and write
 malicious
22CD000
unkown
page read and write
 malicious
9780000
unkown image
page execute and read and write
 malicious
2646000
unkown
page read and write
 clean
2100000
unkown image
page readonly
 clean
4590000
unkown
page read and write
 clean
6C0000
unkown
page read and write
 clean
20000
unkown image
page readonly
 clean
60000
unkown image
page readonly
 clean
7D20000
heap private
page read and write
 clean
562E000
stack
page read and write
 clean
AF0000
unkown
page read and write
 clean
45BF000
unkown
page read and write
 clean
31D000
heap default
page read and write
 clean
EC0000
unkown
page execute and read and write
 clean
7EFD0000
unkown image
page readonly
 clean
7FFFFFB0000
unkown image
page readonly
 clean
20000
unkown image
page readonly
 clean
7BD0000
heap private
page read and write
 clean
4B9D000
unkown
page read and write
 clean
41A5000
heap private
page read and write
 clean
7EFC0000
unkown image
page readonly
 clean
48B0000
unkown
page read and write
 clean
7EFD0000
unkown image
page readonly
 clean
1CE000
unkown
page read and write
 clean
5270000
unkown
page execute read
 clean
7EFDF000
unkown
page read and write
 clean
2550000
unkown
page read and write
 clean
B00000
unkown
page execute and read and write
 clean
83F6000
unkown
page read and write
 clean
7F59000
unkown
page read and write
 clean
49FE000
stack
page read and write
 clean
29D0000
unkown
page read and write
 clean
4E60000
unkown
page read and write
 clean
2646000
unkown
page read and write
 clean
C00000
heap private
page read and write
 clean
1E0000
unkown
page read and write
 clean
1FD0000
unkown image
page readonly
 clean
6A4000
heap default
page read and write
 clean
6A60000
heap private
page read and write
 clean
1B83000
heap private
page read and write
 clean
10000
unkown image
page read and write
 clean
7EFC2000
unkown image
page readonly
 clean
EB4000
unkown
page execute and read and write
 clean
3B0000
heap default
page read and write
 clean
1A0000
unkown image
page read and write
 clean
400000
unkown
page execute and read and write
 clean
2A10000
unkown
page read and write
 clean
30000
unkown image
page readonly
 clean
4575000
unkown
page read and write
 clean
263C000
unkown
page read and write
 clean
5B0000
unkown image
page readonly
 clean
4330000
unkown
page read and write
 clean
729A000
unkown
page read and write
 clean
8320000
unkown
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
30F0000
unkown image
page readonly
 clean
63F000
stack
page read and write
 clean
51AD000
unkown
page read and write
 clean
98D3000
heap private
page read and write
 clean
7FFFFFB2000
unkown image
page readonly
 clean
4D70000
unkown image
page readonly
 clean
7EFB0000
unkown image
page readonly
 clean
7FFFFFD0000
unkown image
page readonly
 clean
2360000
unkown image
page readonly
 clean
6BF000
unkown
page read and write
 clean
1FD0000
unkown image
page readonly
 clean
6BBE000
unkown
page read and write
 clean
5D7E000
stack
page read and write
 clean
2C7000
heap default
page read and write
 clean
2030000
unkown image
page readonly
 clean
423F000
unkown
page read and write
 clean
4D70000
unkown image
page readonly
 clean
9693000
unkown
page read and write
 clean
8C2A000
unkown
page read and write
 clean
6A60000
heap private
page read and write
 clean
6BBE000
unkown
page read and write
 clean
4D30000
unkown image
page readonly
 clean
4C7A000
heap private
page read and write
 clean
10000
unkown image
page read and write
 clean
43A0000
unkown image
page readonly
 clean
73B9000
unkown
page read and write
 clean
2540000
unkown
page read and write
 clean
2750000
unkown
page read and write
 clean
45BF000
unkown
page read and write
 clean
4D40000
unkown image
page readonly
 clean
8FEE000
unkown
page read and write
 clean
BB2000
unkown image
page execute read
 clean
A70000
unkown
page read and write
 clean
3C90000
unkown image
page read and write
 clean
4190000
unkown image
page readonly
 clean
1E0000
unkown
page read and write
 clean
4D80000
unkown image
page readonly
 clean
27E0000
unkown
page read and write
 clean
F0000
unkown image
page read and write
 clean
7EFC2000
unkown image
page readonly
 clean
2120000
unkown image
page read and write
 clean
43B0000
heap private
page read and write
 clean
2646000
unkown
page read and write
 clean
7EFC2000
unkown image
page readonly
 clean
6A60000
heap private
page read and write
 clean
8C20000
unkown
page read and write
 clean
29E0000
unkown
page read and write
 clean
32A0000
heap private
page read and write
 clean
34E000
unkown
page read and write
 clean
2AFC000
stack
page read and write
 clean
2AA0000
unkown
page read and write
 clean
4DD0000
heap private
page read and write
 clean
5390000
heap private
page read and write
 clean
834B000
unkown
page read and write
 clean
4300000
unkown
page read and write
 clean
39D000
stack
page read and write
 clean
834B000
unkown
page read and write
 clean
C1E000
unkown image
page readonly
 clean
9650000
unkown
page read and write
 clean
2740000
unkown image
page readonly
 clean
73BB000
unkown
page read and write
 clean
5190000
unkown
page read and write
 clean
532E000
unkown
page read and write
 clean
37D000
unkown
page read and write
 clean
30D0000
unkown image
page readonly
 clean
5270000
unkown
page execute read
 clean
40000
unkown image
page readonly
 clean
447A000
unkown
page read and write
 clean
6DF7000
unkown
page read and write
 clean
24F0000
unkown image
page readonly
 clean
7FFFFFD0000
unkown image
page readonly
 clean
728E000
unkown
page read and write
 clean
7EFC0000
unkown image
page readonly
 clean
2A90000
unkown
page read and write
 clean
448E000
stack
page read and write
 clean
74B4000
heap private
page read and write
 clean
8355000
unkown
page read and write
 clean
140000
unkown image
page readonly
 clean
7EFC0000
unkown image
page readonly
 clean
D10000
unkown
page execute and read and write
 clean
7B40000
unkown
page read and write
 clean
5390000
heap private
page read and write
 clean
60000
unkown image
page readonly
 clean
7EFC2000
unkown image
page readonly
 clean
7EFB2000
unkown image
page readonly
 clean
460B000
unkown
page read and write
 clean
1B60000
heap private
page read and write
 clean
532E000
unkown
page read and write
 clean
8A0000
unkown image
page execute and read and write
 clean
2100000
unkown image
page readonly
 clean
60000
unkown image
page readonly
 clean
4AC0000
unkown
page read and write
 clean
7B4B000
unkown
page read and write
 clean
1B50000
unkown
page read and write
 clean
10000
unkown image
page read and write
 clean
3CC0000
unkown image
page readonly
 clean
2A20000
unkown
page read and write
 clean
10000
unkown image
page read and write
 clean
4DD0000
heap private
page read and write
 clean
744D000
unkown
page read and write
 clean
29B000
heap default
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
41A0000
heap private
page read and write
 clean
6B0000
heap default
page read and write
 clean
180000
unkown
page execute and read and write
 clean
F30000
unkown
page execute and read and write
 clean
7EFC2000
unkown image
page readonly
 clean
2646000
unkown
page read and write
 clean
4D70000
unkown image
page readonly
 clean
4AC0000
unkown
page read and write
 clean
5140000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
449C000
unkown
page read and write
 clean
30C0000
unkown
page read and write
 clean
10000
unkown image
page read and write
 clean
60000
unkown image
page readonly
 clean
45D6000
unkown
page read and write
 clean
4B00000
unkown image
page readonly
 clean
1E0000
unkown
page execute and read and write
 clean
551E000
stack
page read and write
 clean
79F0000
heap private
page read and write
 clean
301E000
unkown
page read and write
 clean
1B50000
unkown
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
37A000
unkown
page read and write
 clean
371000
unkown
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
20000
unkown
page read and write
 clean
640000
unkown
page read and write
 clean
2947000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
8C20000
unkown
page read and write
 clean
4160000
unkown
page read and write
 clean
5AE000
stack
page read and write
 clean
8D0000
unkown image
page readonly
 clean
4E5E000
unkown
page read and write
 clean
60000
unkown image
page readonly
 clean
4490000
unkown
page read and write
 clean
2130000
unkown image
page read and write
 clean
7EFD0000
unkown image
page readonly
 clean
5B0E000
stack
page read and write | page guard
 clean
2A80000
unkown
page read and write
 clean
4A14000
heap private
page read and write
 clean
21BF000
unkown
page read and write
 clean
94D3000
unkown
page read and write
 clean
27A0000
unkown image
page readonly
 clean
7EFB0000
unkown image
page readonly
 clean
44E7000
unkown
page read and write
 clean
2A40000
unkown
page read and write
 clean
7FFFFFD0000
unkown image
page readonly
 clean
6D40000
unkown
page read and write
 clean
A07000
unkown
page read and write
 clean
556F000
unkown
page read and write
 clean
2AA0000
unkown
page read and write
 clean
27E0000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
57B0000
unkown
page read and write
 clean
97C0000
unkown image
page execute and read and write
 clean
163000
unkown
page execute and read and write
 clean
2D10000
unkown image
page readonly
 clean
BB0000
unkown image
page readonly
 clean
25C3000
unkown
page read and write
 clean
BB0000
unkown image
page readonly
 clean
4590000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
4AAD000
unkown
page read and write
 clean
7EFD0000
unkown image
page readonly
 clean
29B000
heap default
page read and write
 clean
5C0000
unkown
page read and write
 clean
5C0000
unkown image
page readonly
 clean
E0000
heap private
page read and write
 clean
100000
unkown image
page read and write
 clean
2A20000
unkown
page read and write
 clean
7FFFFFC2000
unkown image
page readonly
 clean
7B50000
heap private
page read and write
 clean
6DF7000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
6D40000
unkown
page read and write
 clean
9612000
unkown
page read and write
 clean
60000
unkown image
page readonly
 clean
2533000
unkown
page read and write
 clean
CA0000
unkown
page execute and read and write
 clean
4160000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
73B9000
unkown
page read and write
 clean
41A5000
heap private
page read and write
 clean
5DBE000
stack
page read and write
 clean
4D80000
unkown image
page readonly
 clean
45CF000
unkown
page read and write
 clean
460B000
unkown
page read and write
 clean
330000
unkown
page read and write
 clean
20C000
unkown
page read and write
 clean
36F000
unkown
page read and write
 clean
55CE000
stack
page read and write
 clean
470E000
stack
page read and write
 clean
30A8000
unkown
page read and write
 clean
2A30000
unkown
page read and write
 clean
140000
unkown image
page readonly
 clean
9650000
unkown
page read and write
 clean
20000
unkown
page read and write
 clean
447A000
unkown
page read and write
 clean
2A80000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
20DA000
unkown
page read and write
 clean
1200000
unkown image
page readonly
 clean
423F000
unkown
page read and write
 clean
2A70000
unkown
page read and write
 clean
5CB000
unkown
page read and write
 clean
556F000
unkown
page read and write
 clean
2550000
unkown
page read and write
 clean
2F98000
unkown
page read and write
 clean
2760000
unkown image
page readonly
 clean
5730000
unkown
page read and write
 clean
30A8000
unkown
page read and write
 clean
4E5E000
unkown
page read and write
 clean
2520000
unkown
page read and write
 clean
3DF8000
unkown
page read and write
 clean
97C0000
unkown image
page execute and read and write
 clean
60000
unkown image
page readonly
 clean
7EFC2000
unkown image
page readonly
 clean
7EFC2000
unkown image
page readonly
 clean
6DF0000
unkown
page read and write
 clean
81AE000
unkown
page read and write
 clean
4190000
unkown image
page readonly
 clean
2EC1000
unkown
page read and write
 clean
1BE0000
unkown image
page readonly
 clean
7EFB2000
unkown image
page readonly
 clean
2A20000
unkown
page read and write
 clean
4300000
unkown
page read and write
 clean
5B0000
unkown image
page readonly
 clean
4308000
unkown
page read and write
 clean
50000
unkown image
page readonly
 clean
73B9000
unkown
page read and write
 clean
4575000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
31FF000
unkown
page read and write
 clean
423F000
unkown
page read and write
 clean
29D0000
unkown
page read and write
 clean
2AE0000
unkown image
page readonly
 clean
330000
unkown
page read and write
 clean
3D40000
unkown
page read and write
 clean
4D60000
unkown image
page readonly
 clean
450000
heap default
page read and write
 clean
A00000
unkown image
page execute and read and write
 clean
2C7000
heap default
page read and write
 clean
7EFD0000
unkown image
page readonly
 clean
4DB1000
unkown image
page read and write
 clean
32AE000
heap private
page read and write
 clean
2AA0000
unkown
page read and write
 clean
2750000
unkown
page read and write
 clean
255000
heap default
page read and write
 clean
7FFFFFB2000
unkown image
page readonly
 clean
44E7000
unkown
page read and write
 clean
5F7E000
stack
page read and write
 clean
7EFC0000
unkown image
page readonly
 clean
8C2A000
unkown
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
C80000
unkown
page execute and read and write
 clean
8374000
unkown
page read and write
 clean
45B4000
unkown
page read and write
 clean
7BD0000
heap private
page read and write
 clean
2A30000
unkown
page read and write
 clean
AF0000
unkown
page read and write
 clean
1B50000
unkown
page read and write
 clean
32A5000
heap private
page read and write
 clean
25F000
stack
page read and write
 clean
728E000
unkown
page read and write
 clean
7F59000
unkown
page read and write
 clean
3D40000
unkown
page read and write
 clean
2A30000
unkown
page read and write
 clean
447A000
unkown
page read and write
 clean
B00000
unkown
page read and write
 clean
34B000
unkown
page read and write
 clean
6A09000
unkown
page read and write
 clean
24F0000
unkown image
page readonly
 clean
79F0000
heap private
page read and write
 clean
530000
heap default
page read and write
 clean
A10000
unkown
page execute and read and write
 clean
2A50000
unkown
page read and write
 clean
40000
unkown image
page readonly
 clean
30C0000
unkown
page read and write
 clean
4F4000
heap default
page read and write
 clean
DA0000
unkown
page execute and read and write
 clean
4380000
unkown
page read and write
 clean
E4000
heap private
page read and write
 clean
5390000
heap private
page read and write
 clean
AEE000
stack
page read and write
 clean
2540000
unkown
page read and write
 clean
6D4000
heap default
page read and write
 clean
BB2000
unkown image
page execute read
 clean
6A0000
unkown
page execute and read and write
 clean
6D0000
unkown
page read and write
 clean
50000
unkown image
page readonly
 clean
2A40000
unkown
page read and write
 clean
74B4000
heap private
page read and write
 clean
4D30000
unkown image
page readonly
 clean
17D000
unkown
page execute and read and write
 clean
7EFE0000
unkown image
page readonly
 clean
9612000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
2533000
unkown
page read and write
 clean
2A20000
unkown
page read and write
 clean
4A00000
unkown
page read and write
 clean
74D3000
heap private
page read and write
 clean
434000
heap default
page read and write
 clean
29C0000
unkown
page read and write
 clean
4C7A000
heap private
page read and write
 clean
3D50000
unkown
page read and write
 clean
6E50000
heap private
page read and write
 clean
2A90000
unkown
page read and write
 clean
C1E000
unkown image
page readonly
 clean
107F000
stack
page read and write
 clean
4C70000
heap private
page read and write
 clean
4DC0000
unkown
page read and write
 clean
29E0000
unkown
page read and write
 clean
BB0000
unkown image
page readonly
 clean
731E000
unkown
page read and write
 clean
4340000
heap private
page execute and read and write
 clean
2520000
unkown
page read and write
 clean
5B0F000
stack
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
6D48000
unkown
page read and write
 clean
4C70000
heap private
page read and write
 clean
30F0000
unkown image
page readonly
 clean
2540000
unkown
page read and write
 clean
7B40000
unkown
page read and write
 clean
BDE000
stack
page read and write
 clean
40000
unkown image
page readonly
 clean
3CC0000
unkown image
page readonly
 clean
24F0000
unkown image
page readonly
 clean
29B000
heap default
page read and write
 clean
3CA0000
unkown
page read and write
 clean
74B0000
heap private
page read and write
 clean
456F000
unkown
page read and write
 clean
2120000
unkown image
page read and write
 clean
220000
unkown image
page readonly
 clean
4575000
unkown
page read and write
 clean
4AF0000
unkown image
page readonly
 clean
7B40000
unkown
page read and write
 clean
4AAD000
unkown
page read and write
 clean
30A8000
unkown
page read and write
 clean
2AA0000
unkown
page read and write
 clean
3D50000
unkown
page read and write
 clean
7EFDF000
unkown
page read and write
 clean
C1E000
unkown image
page readonly
 clean
36B000
unkown
page read and write
 clean
4308000
unkown
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
23D000
heap default
page read and write
 clean
7B4B000
unkown
page read and write
 clean
7F59000
unkown
page read and write
 clean
750000
unkown image
page readonly
 clean
32A0000
heap private
page read and write
 clean
750000
unkown image
page readonly
 clean
41A0000
heap private
page read and write
 clean
2100000
unkown image
page readonly
 clean
9550000
unkown
page read and write
 clean
457A000
unkown
page read and write
 clean
8FD0000
unkown
page read and write
 clean
4D20000
unkown
page execute and read and write
 clean
2A50000
unkown
page read and write
 clean
7EFD0000
unkown image
page readonly
 clean
7EFD0000
unkown image
page readonly
 clean
2100000
unkown image
page readonly
 clean
29F0000
unkown
page read and write
 clean
7839000
unkown
page read and write
 clean
4E60000
unkown
page read and write
 clean
5D7000
unkown
page read and write
 clean
728E000
unkown
page read and write
 clean
50000
unkown image
page readonly
 clean
2AE0000
unkown image
page readonly
 clean
5410000
heap private
page read and write
 clean
1E0000
unkown
page read and write
 clean
8384000
unkown
page read and write
 clean
2B90000
unkown image
page readonly
 clean
192000
unkown
page read and write
 clean
13B000
unkown
page read and write
 clean
6DF0000
unkown
page read and write
 clean
60000
unkown image
page readonly
 clean
C97000
unkown
page execute and read and write
 clean
7EFC2000
unkown image
page readonly
 clean
456F000
unkown
page read and write
 clean
430000
unkown image
page readonly
 clean
7B4B000
unkown
page read and write
 clean
45CF000
unkown
page read and write
 clean
BB2000
unkown image
page execute read
 clean
309E000
unkown
page read and write
 clean
43B0000
heap private
page read and write
 clean
45A1000
unkown
page read and write
 clean
60000
unkown image
page readonly
 clean
C04000
heap private
page read and write
 clean
B2F000
stack
page read and write
 clean
7EFE0000
unkown image
page readonly
 clean
4E60000
unkown
page read and write
 clean
237000
heap default
page read and write
 clean
744D000
unkown
page read and write
 clean
7B0000
unkown image
page execute and read and write
 clean
A10000
unkown
page read and write
 clean
750000
unkown image
page readonly
 clean
98B0000
heap private
page read and write
 clean
B10000
unkown
page execute and read and write
 clean
C1E000
unkown image
page readonly
 clean
BB0000
unkown image
page readonly
 clean
7EFD0000
unkown image
page readonly
 clean
310000
unkown
page execute and read and write
 clean
54CE000
stack
page read and write
 clean
43B0000
heap private
page read and write
 clean
1B60000
heap private
page read and write
 clean
AF0000
unkown
page read and write
 clean
5410000
heap private
page read and write
 clean
3E50000
unkown image
page readonly
 clean
6DF0000
unkown
page read and write
 clean
60000
unkown image
page readonly
 clean
9594000
unkown
page read and write
 clean
C30000
unkown
page execute and read and write
 clean
301E000
unkown
page read and write
 clean
150000
unkown
page read and write
 clean
C22000
heap private
page read and write
 clean
2A50000
unkown
page read and write
 clean
750000
unkown image
page readonly
 clean
7BD0000
heap private
page read and write
 clean
83F6000
unkown
page read and write
 clean
249000
heap default
page read and write
 clean
6DF2000
unkown
page read and write
 clean
6D40000
unkown
page read and write
 clean
237000
heap default
page read and write
 clean
744D000
unkown
page read and write
 clean
30E000
stack
page read and write
 clean
21BF000
unkown
page read and write
 clean
30D0000
unkown image
page readonly
 clean
2130000
unkown image
page read and write
 clean
1210000
unkown image
page readonly
 clean
3D40000
unkown
page read and write
 clean
D0000
unkown image
page readonly
 clean
6E0000
unkown
page read and write
 clean
6D48000
unkown
page read and write
 clean
2C0000
heap default
page read and write
 clean
6E0000
unkown
page read and write
 clean
B14000
unkown
page execute and read and write
 clean
5520000
unkown image
page read and write
 clean
2F70000
unkown
page read and write
 clean
4590000
unkown
page read and write
 clean
6A9000
unkown
page read and write
 clean
8355000
unkown
page read and write
 clean
700000
unkown image
page read and write
 clean
10000
unkown image
page read and write
 clean
4650000
unkown image
page readonly
 clean
7EFC2000
unkown image
page readonly
 clean
4DC0000
unkown
page read and write
 clean
20000
unkown image
page readonly
 clean
2EC1000
unkown
page read and write
 clean
200000
unkown
page read and write
 clean
7EFC0000
unkown image
page readonly
 clean
5360000
unkown image
page read and write
 clean
52FC000
stack
page read and write
 clean
4E5E000
unkown
page read and write
 clean
98D3000
heap private
page read and write
 clean
2F70000
unkown
page read and write
 clean
3A0000
unkown
page execute and read and write
 clean
7EFB0000
unkown image
page readonly
 clean
3D4B000
unkown
page read and write
 clean
2947000
unkown
page read and write
 clean
7B40000
unkown
page read and write
 clean
A20000
unkown
page execute and read and write
 clean
592000
heap default
page read and write
 clean
C1E000
unkown image
page readonly
 clean
60000
unkown image
page readonly
 clean
44DE000
stack
page read and write
 clean
4650000
unkown image
page readonly
 clean
4D50000
unkown image
page readonly
 clean
45D6000
unkown
page read and write
 clean
731E000
unkown
page read and write
 clean
B50000
unkown
page read and write
 clean
8374000
unkown
page read and write
 clean
78EB000
unkown
page read and write
 clean
7E1E000
unkown
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
1E0000
unkown
page read and write
 clean
1A0000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
6A60000
heap private
page read and write
 clean
2CC7000
unkown image
page readonly
 clean
1AB000
unkown
page execute and read and write
 clean
60000
unkown image
page readonly
 clean
30000
unkown image
page readonly
 clean
C1E000
unkown image
page readonly
 clean
3D4B000
unkown
page read and write
 clean
301E000
unkown
page read and write
 clean
410000
heap default
page read and write
 clean
4B9D000
unkown
page read and write
 clean
9513000
unkown
page read and write
 clean
14B000
unkown
page read and write
 clean
41A0000
heap private
page read and write
 clean
8118000
unkown
page read and write
 clean
43A0000
unkown image
page readonly
 clean
4B9D000
unkown
page read and write
 clean
B90000
unkown
page execute and read and write
 clean
57AC000
unkown
page read and write
 clean
29B000
heap default
page read and write
 clean
4AC0000
unkown
page read and write
 clean
2B3F000
stack
page read and write
 clean
69F000
stack
page read and write
 clean
58DE000
stack
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
4E5E000
unkown
page read and write
 clean
4308000
unkown
page read and write
 clean
34E000
unkown
page read and write
 clean
60000
unkown image
page readonly
 clean
597E000
stack
page read and write
 clean
B00000
unkown image
page readonly
 clean
60000
unkown image
page readonly
 clean
74D3000
heap private
page read and write
 clean
7EFC2000
unkown image
page readonly
 clean
2AE0000
unkown image
page readonly
 clean
79F0000
heap private
page read and write
 clean
4248000
unkown
page read and write
 clean
7EDE000
unkown
page read and write
 clean
4150000
unkown image
page readonly
 clean
457A000
unkown
page read and write
 clean
710000
heap private
page execute and read and write
 clean
27C0000
unkown
page read and write
 clean
750000
unkown image
page readonly
 clean
50000
unkown image
page readonly
 clean
542E000
stack
page read and write
 clean
2550000
unkown
page read and write
 clean
609E000
stack
page read and write
 clean
4C7A000
heap private
page read and write
 clean
457A000
unkown
page read and write
 clean
29F0000
unkown
page read and write
 clean
4450000
unkown
page read and write
 clean
7EFD0000
unkown image
page readonly
 clean
6B3000
unkown
page read and write
 clean
83DA000
unkown
page read and write
 clean
7CFE000
unkown
page read and write
 clean
2F78000
unkown
page read and write
 clean
32A9000
heap private
page read and write
 clean
237000
heap default
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
4150000
unkown image
page readonly
 clean
8720000
unkown
page read and write
 clean
3CA0000
unkown
page read and write
 clean
728E000
unkown
page read and write
 clean
8320000
unkown
page read and write
 clean
4AF0000
unkown image
page readonly
 clean
2A60000
unkown
page read and write
 clean
2C7000
heap default
page read and write
 clean
4DD0000
heap private
page read and write
 clean
EB7000
unkown
page execute and read and write
 clean
57D1000
unkown
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
4650000
unkown image
page readonly
 clean
7CFE000
unkown
page read and write
 clean
3C90000
unkown image
page read and write
 clean
6D9000
heap default
page read and write
 clean
2EC1000
unkown
page read and write
 clean
5390000
heap private
page read and write
 clean
3D40000
unkown
page read and write
 clean
7EFC2000
unkown image
page readonly
 clean
5E0000
unkown
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
1C0000
heap private
page read and write
 clean
4D20000
unkown
page execute and read and write
 clean
5290000
unkown
page execute and read and write
 clean
D37000
unkown
page execute and read and write
 clean
7EFD0000
unkown image
page readonly
 clean
7EFB0000
unkown image
page readonly
 clean
50000
unkown image
page readonly
 clean
6BBE000
unkown
page read and write
 clean
230000
heap default
page read and write
 clean
243000
heap default
page read and write
 clean
42E0000
heap private
page read and write
 clean
20DA000
unkown
page read and write
 clean
180000
heap private
page read and write
 clean
2947000
unkown
page read and write
 clean
D20000
unkown
page execute and read and write
 clean
19A000
unkown
page execute and read and write
 clean
722000
heap default
page read and write
 clean
21BF000
unkown
page read and write
 clean
652F000
stack
page read and write
 clean
4AF0000
unkown image
page readonly
 clean
140000
unkown image
page readonly
 clean
2231000
unkown
page read and write
 clean
7EFC0000
unkown image
page readonly
 clean
7FFFFFC0000
unkown image
page readonly
 clean
1F0000
unkown
page read and write
 clean
2A60000
unkown
page read and write
 clean
5410000
heap private
page read and write
 clean
7EFC0000
unkown image
page readonly
 clean
3CC0000
unkown image
page readonly
 clean
BB2000
unkown image
page execute read
 clean
7EFC0000
unkown image
page readonly
 clean
1D7000
unkown
page read and write
 clean
4BB0000
heap private
page read and write
 clean
8C20000
unkown
page read and write
 clean
7FFFFFC2000
unkown image
page readonly
 clean
1B65000
heap private
page read and write
 clean
30000
unkown image
page execute and read and write
 clean
7EFD0000
unkown image
page readonly
 clean
7EFC2000
unkown image
page readonly
 clean
45BF000
unkown
page read and write
 clean
1A2000
unkown
page read and write
 clean
2A0000
unkown
page read and write
 clean
5270000
unkown
page execute read
 clean
36B000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
2120000
unkown
page read and write
 clean
7E1E000
unkown
page read and write
 clean
C1E000
unkown image
page readonly
 clean
5830000
unkown
page read and write
 clean
7EFC0000
unkown image
page readonly
 clean
255000
heap default
page read and write
 clean
7EFC2000
unkown image
page readonly
 clean
7EFB2000
unkown image
page readonly
 clean
4D60000
unkown image
page readonly
 clean
2120000
unkown image
page read and write
 clean
2921000
unkown
page read and write
 clean
1B0000
unkown
page read and write
 clean
C91000
unkown
page execute and read and write
 clean
834B000
unkown
page read and write
 clean
23D000
heap default
page read and write
 clean
1B65000
heap private
page read and write
 clean
8720000
unkown
page read and write
 clean
74B4000
heap private
page read and write
 clean
6DF7000
unkown
page read and write
 clean
782F000
unkown
page read and write
 clean
10000
unkown image
page read and write
 clean
51C000
heap default
page read and write
 clean
2110000
unkown image
page read and write
 clean
8118000
unkown
page read and write
 clean
1EE000
stack
page read and write
 clean
23D000
heap default
page read and write
 clean
4150000
unkown image
page readonly
 clean
7EFB2000
unkown image
page readonly
 clean
4450000
unkown
page read and write
 clean
4450000
unkown
page read and write
 clean
98B0000
heap private
page read and write
 clean
8FEE000
unkown
page read and write
 clean
2760000
unkown image
page readonly
 clean
150000
unkown
page read and write
 clean
7EFD0000
unkown image
page readonly
 clean
20DA000
unkown
page read and write
 clean
7B50000
heap private
page read and write
 clean
4D40000
unkown image
page readonly
 clean
2B8D000
stack
page read and write
 clean
6DF2000
unkown
page read and write
 clean
E4000
heap private
page read and write
 clean
9F0000
unkown
page read and write
 clean
2A00000
unkown
page read and write
 clean
2F20000
unkown
page read and write
 clean
31D000
heap default
page read and write
 clean
8FEE000
unkown
page read and write
 clean
2F70000
unkown
page read and write
 clean
648000
unkown
page read and write
 clean
263C000
unkown
page read and write
 clean
910000
unkown
page read and write
 clean
2CC7000
unkown image
page readonly
 clean
3CC0000
unkown image
page readonly
 clean
98B5000
heap private
page read and write
 clean
83DA000
unkown
page read and write
 clean
6E50000
heap private
page read and write
 clean
83F6000
unkown
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
4BB0000
heap private
page read and write
 clean
96D0000
unkown image
page execute and read and write
 clean
48E0000
unkown
page read and write
 clean
BB0000
unkown image
page readonly
 clean
4D40000
unkown image
page readonly
 clean
5120000
unkown
page read and write
 clean
729A000
unkown
page read and write
 clean
45CB000
unkown
page read and write
 clean
F20000
unkown
page execute and read and write
 clean
782F000
unkown
page read and write
 clean
44E7000
unkown
page read and write
 clean
255000
heap default
page read and write
 clean
31FF000
unkown
page read and write
 clean
57A7000
unkown
page read and write
 clean
27C0000
unkown
page read and write
 clean
59CE000
stack
page read and write
 clean
9550000
unkown
page read and write
 clean
88A000
unkown
page read and write
 clean
309E000
unkown
page read and write
 clean
78EB000
unkown
page read and write
 clean
74B0000
heap private
page read and write
 clean
6B7000
heap default
page read and write
 clean
3D90000
unkown
page read and write
 clean
4D40000
unkown image
page readonly
 clean
A01000
unkown
page read and write
 clean
2750000
unkown
page read and write
 clean
17C000
unkown
page read and write
 clean
50000
unkown image
page readonly
 clean
2500000
unkown image
page readonly
 clean
2760000
unkown image
page readonly
 clean
45D6000
unkown
page read and write
 clean
2110000
unkown image
page read and write
 clean
41A5000
heap private
page read and write
 clean
7FFFFFC0000
unkown image
page readonly
 clean
7EFC0000
unkown image
page readonly
 clean
9550000
unkown
page read and write
 clean
5B0000
unkown image
page readonly
 clean
45CB000
unkown
page read and write
 clean
7FFFFFC0000
unkown image
page readonly
 clean
4308000
unkown
page read and write
 clean
1D7000
unkown
page read and write
 clean
30F0000
unkown image
page readonly
 clean
7EFD0000
unkown image
page readonly
 clean
5D4000
unkown
page read and write
 clean
7CFE000
unkown
page read and write
 clean
9693000
unkown
page read and write
 clean
7E1E000
unkown
page read and write
 clean
BB0000
unkown image
page readonly
 clean
556F000
unkown
page read and write
 clean
729A000
unkown
page read and write
 clean
BB0000
unkown image
page readonly
 clean
309E000
unkown
page read and write
 clean
AF0000
unkown
page read and write
 clean
5130000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
7EFD0000
unkown image
page readonly
 clean
7D20000
heap private
page read and write
 clean
36F000
unkown
page read and write
 clean
2D20000
unkown image
page readonly
 clean
3CA0000
unkown
page read and write
 clean
4E0000
unkown
page read and write
 clean
7EFC2000
unkown image
page readonly
 clean
36B000
unkown
page read and write
 clean
4DB1000
unkown image
page read and write
 clean
7EDE000
unkown
page read and write
 clean
2A60000
unkown
page read and write
 clean
50000
unkown image
page readonly
 clean
7B50000
heap private
page read and write
 clean
D40000
unkown
page execute and read and write
 clean
2A70000
unkown
page read and write
 clean
AF0000
unkown
page read and write
 clean
2A50000
unkown
page read and write
 clean
1A0000
unkown
page read and write
 clean
BAE000
unkown
page read and write
 clean
687000
heap default
page read and write
 clean
D00000
unkown
page execute and read and write
 clean
460B000
unkown
page read and write
 clean
6D48000
unkown
page read and write
 clean
140000
unkown image
page readonly
 clean
170000
unkown
page read and write
 clean
BB2000
unkown image
page execute read
 clean
4D20000
unkown
page execute and read and write
 clean
2A10000
unkown
page read and write
 clean
6F0000
unkown image
page readonly
 clean
E0000
heap private
page read and write
 clean
3E50000
unkown image
page readonly
 clean
29D0000
unkown
page read and write
 clean
BB0000
unkown image
page readonly
 clean
48C0000
unkown
page read and write
 clean
30F0000
unkown image
page readonly
 clean
5731000
unkown
page read and write
 clean
830000
unkown image
page readonly
 clean
5C0000
unkown image
page readonly
 clean
2740000
unkown image
page readonly
 clean
7EFC2000
unkown image
page readonly
 clean
2A00000
unkown
page read and write
 clean
447A000
unkown
page read and write
 clean
7CFE000
unkown
page read and write
 clean
309E000
unkown
page read and write
 clean
45A1000
unkown
page read and write
 clean
27A0000
unkown image
page readonly
 clean
29C0000
unkown
page read and write
 clean
2F70000
unkown
page read and write
 clean
263C000
unkown
page read and write
 clean
4D7000
heap default
page read and write
 clean
230000
heap default
page read and write
 clean
255000
heap default
page read and write
 clean
7839000
unkown
page read and write
 clean
2500000
unkown image
page readonly
 clean
9FF000
stack
page read and write
 clean
7839000
unkown
page read and write
 clean
BB2000
unkown image
page execute read
 clean
1BE0000
unkown image
page readonly
 clean
88D000
unkown
page read and write
 clean
7EFC0000
unkown image
page readonly
 clean
7EFC0000
unkown image
page readonly
 clean
32A9000
heap private
page read and write
 clean
4499000
unkown
page read and write
 clean
9650000
unkown
page read and write
 clean
9513000
unkown
page read and write
 clean
8FD0000
unkown
page read and write
 clean
110000
unkown
page read and write
 clean
8384000
unkown
page read and write
 clean
32A5000
heap private
page read and write
 clean
308000
unkown
page read and write
 clean
32A0000
heap private
page read and write
 clean
7EFD0000
unkown image
page readonly
 clean
BA0000
unkown
page read and write
 clean
2A70000
unkown
page read and write
 clean
4300000
unkown
page read and write
 clean
5360000
unkown image
page read and write
 clean
6D48000
unkown
page read and write
 clean
45CF000
unkown
page read and write
 clean
5360000
unkown image
page read and write
 clean
2F78000
unkown
page read and write
 clean
45D6000
unkown
page read and write
 clean
4BB0000
heap private
page read and write
 clean
243000
heap default
page read and write
 clean
7EFD0000
unkown image
page readonly
 clean
518F000
stack
page read and write
 clean
449C000
unkown
page read and write
 clean
3D50000
unkown
page read and write
 clean
60000
unkown image
page readonly
 clean
6DF0000
unkown
page read and write
 clean
2F98000
unkown
page read and write
 clean
4AF0000
unkown image
page readonly
 clean
518E000
stack
page read and write | page guard
 clean
BB0000
unkown image
page readonly
 clean
8118000
unkown
page read and write
 clean
6DF2000
unkown
page read and write
 clean
1FD0000
unkown image
page readonly
 clean
9612000
unkown
page read and write
 clean
4C7A000
heap private
page read and write
 clean
D0000
unkown image
page readonly
 clean
20000
unkown image
page read and write
 clean
220000
unkown image
page readonly
 clean
29E0000
unkown
page read and write
 clean
AF0000
unkown
page read and write
 clean
2760000
unkown image
page readonly
 clean
4DC0000
unkown
page read and write
 clean
572D000
stack
page read and write
 clean
94D3000
unkown
page read and write
 clean
4D50000
unkown image
page readonly
 clean
7F59000
unkown
page read and write
 clean
7EFC0000
unkown image
page readonly
 clean
460B000
unkown
page read and write
 clean
6B7000
heap private
page read and write
 clean
2A80000
unkown
page read and write
 clean
BB0000
unkown image
page readonly
 clean
7EFDF000
unkown
page read and write
 clean
29C0000
unkown
page read and write
 clean
371000
unkown
page read and write
 clean
45B4000
unkown
page read and write
 clean
32A0000
heap private
page read and write
 clean
C1E000
unkown image
page readonly
 clean
2500000
unkown image
page readonly
 clean
2750000
unkown
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
4A32000
heap private
page read and write
 clean
640000
unkown
page read and write
 clean
120000
unkown
page execute and read and write
 clean
7EFC0000
unkown image
page readonly
 clean
7BD0000
heap private
page read and write
 clean
4300000
unkown
page read and write
 clean
9513000
unkown
page read and write
 clean
4D80000
unkown image
page readonly
 clean
98B0000
heap private
page read and write
 clean
B20000
unkown
page execute and read and write
 clean
577D000
unkown
page read and write
 clean
50000
unkown image
page readonly
 clean
4DC0000
unkown
page read and write
 clean
263C000
unkown
page read and write
 clean
8C2A000
unkown
page read and write
 clean
1B83000
heap private
page read and write
 clean
43B0000
heap private
page read and write
 clean
F0000
unkown image
page readonly
 clean
900000
unkown
page read and write
 clean
4C70000
heap private
page read and write
 clean
B60000
heap private
page read and write
 clean
4230000
unkown
page read and write
 clean
22AE000
unkown
page read and write
 clean
2921000
unkown
page read and write
 clean
57AA000
unkown
page read and write
 clean
834B000
unkown
page read and write
 clean
2A60000
unkown
page read and write
 clean
652E000
stack
page read and write | page guard
 clean
4190000
unkown image
page readonly
 clean
25C3000
unkown
page read and write
 clean
81AE000
unkown
page read and write
 clean
7EFC2000
unkown image
page readonly
 clean
6AC000
heap default
page read and write
 clean
74D3000
heap private
page read and write
 clean
4D0000
unkown
page read and write
 clean
7EFC0000
unkown image
page readonly
 clean
330000
unkown
page read and write
 clean
3DF8000
unkown
page read and write
 clean
1B60000
heap private
page read and write
 clean
AF0000
unkown
page read and write
 clean
2F98000
unkown
page read and write
 clean
23D000
heap default
page read and write
 clean
B4C000
stack
page read and write
 clean
45CB000
unkown
page read and write
 clean
4450000
unkown
page read and write
 clean
7E1E000
unkown
page read and write
 clean
7EFD0000
unkown image
page readonly
 clean
C1E000
unkown image
page readonly
 clean
237000
heap default
page read and write
 clean
4248000
unkown
page read and write
 clean
7EFC2000
unkown image
page readonly
 clean
4575000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
7EFC0000
unkown image
page readonly
 clean
7EFB2000
unkown image
page readonly
 clean
7EFB0000
unkown image
page readonly
 clean
4DB1000
unkown image
page read and write
 clean
32A5000
heap private
page read and write
 clean
430000
unkown image
page readonly
 clean
5CB000
heap default
page read and write
 clean
3D90000
unkown
page read and write
 clean
2740000
unkown image
page readonly
 clean
B00000
unkown
page read and write
 clean
7EFC2000
unkown image
page readonly
 clean
31FF000
unkown
page read and write
 clean
BB0000
unkown image
page readonly
 clean
25C3000
unkown
page read and write
 clean
4BB0000
heap private
page read and write
 clean
9594000
unkown
page read and write
 clean
7EFDF000
unkown
page read and write
 clean
2520000
unkown
page read and write
 clean
29D0000
unkown
page read and write
 clean
510000
heap default
page read and write
 clean
7EFC0000
unkown image
page readonly
 clean
4DB1000
unkown image
page read and write
 clean
30C0000
unkown
page read and write
 clean
4B00000
unkown image
page readonly
 clean
2110000
unkown image
page read and write
 clean
27A0000
unkown image
page readonly
 clean
7FFFFFB0000
unkown image
page readonly
 clean
1BE0000
unkown image
page readonly
 clean
6A09000
unkown
page read and write
 clean
744D000
unkown
page read and write
 clean
5410000
heap private
page read and write
 clean
7EFC0000
unkown image
page readonly
 clean
B17000
unkown
page execute and read and write
 clean
83DA000
unkown
page read and write
 clean
2A40000
unkown
page read and write
 clean
6BBE000
unkown
page read and write
 clean
5270000
unkown
page execute read
 clean
4326000
unkown
page read and write
 clean
243000
heap default
page read and write
 clean
449C000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
4AAD000
unkown
page read and write
 clean
5D1000
unkown
page read and write
 clean
50000
unkown image
page readonly
 clean
3E50000
unkown image
page readonly
 clean
1D7000
unkown
page read and write
 clean
29C0000
unkown
page read and write
 clean
457A000
unkown
page read and write
 clean
31D000
heap default
page read and write
 clean
7EFD0000
unkown image
page readonly
 clean
640E000
stack
page read and write
 clean
243000
heap default
page read and write
 clean
449C000
unkown
page read and write
 clean
74B0000
heap private
page read and write
 clean
78EB000
unkown
page read and write
 clean
2947000
unkown
page read and write
 clean
2533000
unkown
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
73B9000
unkown
page read and write
 clean
F0000
unkown image
page read and write
 clean
7D20000
heap private
page read and write
 clean
249000
heap default
page read and write
 clean
45B4000
unkown
page read and write
 clean
60000
unkown image
page readonly
 clean
7EFD0000
unkown image
page readonly
 clean
51A000
heap default
page read and write
 clean
5830000
unkown
page read and write
 clean
BA0000
unkown
page execute and read and write
 clean
2500000
unkown image
page readonly
 clean
65E000
stack
page read and write
 clean
20B6000
unkown
page read and write
 clean
6C0000
unkown
page read and write
 clean
196000
unkown
page execute and read and write
 clean
34E000
unkown
page read and write
 clean
8384000
unkown
page read and write
 clean
1080000
unkown image
page readonly
 clean
D0000
unkown image
page readonly
 clean
20B6000
unkown
page read and write
 clean
16C000
unkown
page read and write
 clean
2F78000
unkown
page read and write
 clean
6A0000
unkown image
page readonly
 clean
2CC7000
unkown image
page readonly
 clean
21BF000
unkown
page read and write
 clean
2520000
unkown
page read and write
 clean
9594000
unkown
page read and write
 clean
2F20000
unkown
page read and write
 clean
20000
unkown
page read and write
 clean
1CE000
unkown
page read and write
 clean
1CE000
unkown
page read and write
 clean
7D20000
heap private
page read and write
 clean
532E000
unkown
page read and write
 clean
3D90000
unkown
page read and write
 clean
2C7000
heap default
page read and write
 clean
1B60000
heap private
page read and write
 clean
7EFE0000
unkown image
page readonly
 clean
3DF8000
unkown
page read and write
 clean
6E50000
heap private
page read and write
 clean
42B0000
unkown image
page readonly
 clean
50000
unkown image
page readonly
 clean
3D90000
unkown
page read and write
 clean
438000
unkown
page read and write
 clean
7EFC0000
unkown image
page readonly
 clean
423F000
unkown
page read and write
 clean
6BE000
unkown
page read and write
 clean
2EC1000
unkown
page read and write
 clean
4248000
unkown
page read and write
 clean
36B000
unkown
page read and write
 clean
45CB000
unkown
page read and write
 clean
5BEE000
stack
page read and write
 clean
1B65000
heap private
page read and write
 clean
2A80000
unkown
page read and write
 clean
E4000
heap private
page read and write
 clean
6A09000
unkown
page read and write
 clean
36F000
unkown
page read and write
 clean
6DF2000
unkown
page read and write
 clean
7EFC0000
unkown image
page readonly
 clean
164000
unkown
page read and write
 clean
430000
unkown image
page readonly
 clean
782F000
unkown
page read and write
 clean
731E000
unkown
page read and write
 clean
430000
unkown image
page readonly
 clean
4160000
unkown
page read and write
 clean
30C0000
unkown
page read and write
 clean
660000
heap private
page execute and read and write
 clean
5B0000
unkown image
page readonly
 clean
5C0000
unkown image
page readonly
 clean
1B50000
unkown
page read and write
 clean
5120000
unkown
page read and write
 clean
510000
unkown image
page readonly
 clean
3C90000
unkown image
page read and write
 clean
7EFC2000
unkown image
page readonly
 clean
3D4B000
unkown
page read and write
 clean
32A9000
heap private
page read and write
 clean
417000
heap default
page read and write
 clean
2130000
unkown image
page read and write
 clean
2550000
unkown
page read and write
 clean
5830000
unkown
page read and write
 clean
5B6E000
stack
page read and write
 clean
60000
unkown image
page readonly
 clean
7B50000
heap private
page read and write
 clean
731E000
unkown
page read and write
 clean
96D0000
unkown image
page execute and read and write
 clean
7B4B000
unkown
page read and write
 clean
371000
unkown
page read and write
 clean
1FD0000
unkown image
page readonly
 clean
4E60000
unkown
page read and write
 clean
30E0000
unkown image
page readonly
 clean
1BE0000
unkown image
page readonly
 clean
EB1000
unkown
page execute and read and write
 clean
40000
unkown image
page readonly
 clean
110000
unkown
page read and write
 clean
BB0000
unkown image
page readonly
 clean
24F0000
unkown image
page readonly
 clean
2CC7000
unkown image
page readonly
 clean
6D40000
unkown
page read and write
 clean
8FD0000
unkown
page read and write
 clean
30E0000
unkown image
page readonly
 clean
8320000
unkown
page read and write
 clean
7EFD0000
unkown image
page readonly
 clean
7EFC2000
unkown image
page readonly
 clean
4D20000
unkown
page execute and read and write
 clean
B80000
unkown
page execute and read and write
 clean
AF0000
unkown
page read and write
 clean
8E0000
unkown image
page readonly
 clean
1A5000
unkown
page execute and read and write
 clean
50000
unkown image
page readonly
 clean
3D50000
unkown
page read and write
 clean
6DF7000
unkown
page read and write
 clean
4650000
unkown image
page readonly
 clean
7EFD0000
unkown image
page readonly
 clean
E4000
heap private
page read and write
 clean
249000
heap default
page read and write
 clean
50000
unkown image
page readonly
 clean
4248000
unkown
page read and write
 clean
4C70000
heap private
page read and write
 clean
6B0000
heap private
page read and write
 clean
4A10000
heap private
page read and write
 clean
4D30000
unkown image
page readonly
 clean
27A0000
unkown image
page readonly
 clean
32A9000
heap private
page read and write
 clean
1CE000
unkown
page read and write
 clean
10A2000
unkown image
page read and write
 clean
2F98000
unkown
page read and write
 clean
57A7000
unkown
page read and write
 clean
D0000
unkown image
page readonly
 clean
27E0000
unkown
page read and write
 clean
29F0000
unkown
page read and write
 clean
29F0000
unkown
page read and write
 clean
BB2000
unkown image
page execute read
 clean
680000
heap default
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
2921000
unkown
page read and write
 clean
7EFE0000
unkown image
page readonly
 clean
BB2000
unkown image
page execute read
 clean
3231000
unkown
page read and write
 clean
73BB000
unkown
page read and write
 clean
30E0000
unkown image
page readonly
 clean
220000
unkown image
page readonly
 clean
371000
unkown
page read and write
 clean
8355000
unkown
page read and write
 clean
110000
unkown
page read and write
 clean
20B6000
unkown
page read and write
 clean
BB0000
unkown image
page readonly
 clean
45DF000
stack
page read and write
 clean
1A7000
unkown
page execute and read and write
 clean
4D80000
unkown image
page readonly
 clean
22B2000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
8118000
unkown
page read and write
 clean
A04000
unkown
page read and write
 clean
74D3000
heap private
page read and write
 clean
2A10000
unkown
page read and write
 clean
24B0000
unkown
page read and write
 clean
16D000
unkown
page execute and read and write
 clean
4D30000
unkown image
page readonly
 clean
E0000
heap private
page read and write
 clean
50000
unkown image
page readonly
 clean
2921000
unkown
page read and write
 clean
2740000
unkown image
page readonly
 clean
A00000
unkown image
page execute and read and write
 clean
32AE000
heap private
page read and write
 clean
532E000
unkown
page read and write
 clean
2120000
unkown image
page read and write
 clean
32A5000
heap private
page read and write
 clean
3D4B000
unkown
page read and write
 clean
20000
unkown image
page readonly
 clean
5B8000
heap default
page read and write
 clean
E0000
heap private
page read and write
 clean
81AE000
unkown
page read and write
 clean
73BB000
unkown
page read and write
 clean
8374000
unkown
page read and write
 clean
A90000
unkown
page read and write
 clean
2F78000
unkown
page read and write
 clean
20B6000
unkown
page read and write
 clean
729A000
unkown
page read and write
 clean
2A90000
unkown
page read and write
 clean
27C0000
unkown
page read and write
 clean
3CA0000
unkown
page read and write
 clean
2540000
unkown
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
4B00000
unkown image
page readonly
 clean
230000
heap default
page read and write
 clean
D34000
unkown
page execute and read and write
 clean
6CB000
unkown
page read and write
 clean
36F000
unkown
page read and write
 clean
7EDE000
unkown
page read and write
 clean
7EFC2000
unkown image
page readonly
 clean
6B9000
unkown
page read and write
 clean
323D000
unkown
page read and write
 clean
2EB0000
unkown image
page readonly
 clean
249000
heap default
page read and write
 clean
32AE000
heap private
page read and write
 clean
27E0000
unkown
page read and write
 clean
7EFC0000
unkown image
page readonly
 clean
2533000
unkown
page read and write
 clean
78EB000
unkown
page read and write
 clean
98B5000
heap private
page read and write
 clean
1B65000
heap private
page read and write
 clean
50000
unkown image
page readonly
 clean
7EFC0000
unkown image
page readonly
 clean
EA0000
unkown
page execute and read and write
 clean
5360000
unkown image
page read and write
 clean
4D30000
unkown image
page readonly
 clean
7EDE000
unkown
page read and write
 clean
120000
unkown image
page readonly
 clean
48F0000
unkown
page read and write
 clean
D30000
unkown
page execute and read and write
 clean
29C000
unkown
page read and write
 clean
5430000
unkown
page read and write
 clean
4D70000
unkown image
page readonly
 clean
4B9D000
unkown
page read and write
 clean
25C3000
unkown
page read and write
 clean
45A1000
unkown
page read and write
 clean
7EFD0000
unkown image
page readonly
 clean
43A0000
unkown image
page readonly
 clean
4D60000
unkown image
page readonly
 clean
3EF000
stack
page read and write
 clean
7EFE0000
unkown image
page readonly
 clean
620E000
stack
page read and write
 clean
9693000
unkown
page read and write
 clean
7B0000
unkown
page read and write
 clean
7EFE0000
unkown image
page readonly
 clean
1B83000
heap private
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
74B4000
heap private
page read and write
 clean
7EFC2000
unkown image
page readonly
 clean
1EB000
unkown
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
B00000
unkown
page read and write
 clean
32AE000
heap private
page read and write
 clean
F0000
unkown image
page read and write
 clean
41A0000
heap private
page read and write
 clean
2A10000
unkown
page read and write
 clean
222F000
stack
page read and write
 clean
1D7000
unkown
page read and write
 clean
45B4000
unkown
page read and write
 clean
35E000
stack
page read and write
 clean
2F20000
unkown
page read and write
 clean
45A1000
unkown
page read and write
 clean
57A3000
unkown
page read and write
 clean
5B3000
unkown
page read and write
 clean
A70000
unkown image
page read and write
 clean
31D000
heap default
page read and write
 clean
690000
unkown image
page readonly
 clean
30D0000
unkown image
page readonly
 clean
C1E000
unkown image
page readonly
 clean
330000
unkown
page read and write
 clean
7EFB2000
unkown image
page readonly
 clean
50000
unkown image
page readonly
 clean
7EFC0000
unkown image
page readonly
 clean
782F000
unkown
page read and write
 clean
4AC0000
unkown
page read and write
 clean
2A70000
unkown
page read and write
 clean
7EFC2000
unkown image
page readonly
 clean
2A40000
unkown
page read and write
 clean
48D0000
unkown
page read and write
 clean
30A8000
unkown
page read and write
 clean
81AE000
unkown
page read and write
 clean
79F0000
heap private
page read and write
 clean
BB2000
unkown image
page execute read
 clean
6E50000
heap private
page read and write
 clean
DB0000
unkown
page execute and read and write
 clean
2130000
unkown image
page read and write
 clean
3E50000
unkown image
page readonly
 clean
44E7000
unkown
page read and write
 clean
F0000
unkown image
page read and write
 clean
45BF000
unkown
page read and write
 clean
DC0000
unkown
page execute and read and write
 clean
4AAD000
unkown
page read and write
 clean
4150000
unkown image
page readonly
 clean
456F000
unkown
page read and write
 clean
7EFB0000
unkown image
page readonly
 clean
2A00000
unkown
page read and write
 clean
50000
unkown image
page readonly
 clean
50000
unkown image
page readonly
 clean
27D0000
unkown
page read and write
 clean
2A90000
unkown
page read and write
 clean
4D60000
unkown image
page readonly
 clean
4D50000
unkown image
page readonly
 clean
34E000
unkown
page read and write
 clean
D2A000
unkown image
page read and write
 clean
27D0000
unkown
page read and write
 clean
110000
unkown
page read and write
 clean
3DF8000
unkown
page read and write
 clean
2110000
unkown
page read and write
 clean
20DA000
unkown
page read and write
 clean
4DD0000
heap private
page read and write
 clean
7839000
unkown
page read and write
 clean
4D0000
heap default
page read and write
 clean
29E0000
unkown
page read and write
 clean
220000
unkown image
page readonly
 clean
3C90000
unkown image
page read and write
 clean
73BB000
unkown
page read and write
 clean
C94000
unkown
page execute and read and write
 clean
57A3000
unkown
page read and write
 clean
43A0000
unkown image
page readonly
 clean
556F000
unkown
page read and write
 clean
7EFD0000
unkown image
page readonly
 clean
41A5000
heap private
page read and write
 clean
10000
unkown image
page read and write
 clean
30000
unkown image
page readonly
 clean
7FFFFFB0000
unkown image
page readonly
 clean
4160000
unkown
page read and write
 clean
30E0000
unkown image
page readonly
 clean
5C0000
unkown image
page readonly
 clean
8320000
unkown
page read and write
 clean
A80000
heap private
page read and write
 clean
74B0000
heap private
page read and write
 clean
30000
unkown image
page readonly
 clean
1B83000
heap private
page read and write
 clean
2110000
unkown image
page read and write
 clean
4B00000
unkown image
page readonly
 clean
4590000
unkown
page read and write
 clean
BB2000
unkown image
page execute read
 clean
98D3000
heap private
page read and write
 clean
230000
heap default
page read and write
 clean
C40000
unkown
page execute and read and write
 clean
C1E000
unkown image
page readonly
 clean
6A09000
unkown
page read and write
 clean
456F000
unkown
page read and write
 clean
30D0000
unkown image
page readonly
 clean
BB2000
unkown image
page execute read
 clean
8355000
unkown
page read and write
 clean
98B5000
heap private
page read and write
 clean
4190000
unkown image
page readonly
 clean
94D3000
unkown
page read and write
 clean
7FFFFFB2000
unkown image
page readonly
 clean
60000
unkown image
page readonly
 clean
31FF000
unkown
page read and write
 clean
200000
heap private
page read and write
 clean
27D0000
unkown
page read and write
 clean
7EFE0000
unkown image
page readonly
 clean
2AE0000
unkown image
page readonly
 clean
45CF000
unkown
page read and write
 clean
2A00000
unkown
page read and write
 clean
2A30000
unkown
page read and write
 clean
50000
unkown image
page readonly
 clean
4D50000
unkown image
page readonly
 clean
7FFFFFC2000
unkown image
page readonly
 clean
8720000
unkown
page read and write
 clean
301E000
unkown
page read and write
 clean
There are 1350 hidden memdumps, click here to show them.