Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
CU-6431 report.xlsm
|
Microsoft Excel 2007+
|
initial sample
|
 |
|
|
C:\Users\user\Desktop\~$CU-6431 report.xlsm
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.IE5\XNHC0JWC\U7NJK7LJ.htm
|
HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
|
downloaded
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\Windows\Temporary Internet Files\Content.MSO\17493318.png
|
PNG image data, 1714 x 241, 8-bit colormap, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\709E.tmp
|
Composite Document File V2 Document, Cannot read section info
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\~DFB67210ABB967FABD.TMP
|
data
|
dropped
|
|
|
|
C:\Users\user\besta.ocx
|
HTML document, UTF-8 Unicode text, with very long lines, with CRLF, LF line terminators
|
dropped
|
|
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Microsoft Office\Office14\EXCEL.EXE
|
"C:\Program Files\Microsoft Office\Office14\EXCEL.EXE" /automation -Embedding
|
|
|
|
C:\Windows\SysWOW64\rundll32.exe
|
C:\Windows\SysWow64\rundll32.exe ..\besta.ocx,44532.4786822917
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://standoutglobal.com/2/MWpqeVgZ/
|
162.240.9.126
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/ecommerce/conversion-rate-optimization/
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/happy-elementor-addons/assets/fonts/style.min.css?ver=3.
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/2021/10/framer.svg
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/elementor/css/post-1522.css?ver=1638212153
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital-en-cdmx/
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.svg?5.10.0#eico
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.4.8
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/e-commerce-efectivo/conversion-rate-optimizati
|
unknown
|
|
|
|
http://crl.pkioverheid.nl/DomOrganisatieLatestCRL-G2.crl0
|
unknown
|
|
|
|
http://www.diginotar.nl/cps/pkioverheid0
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/2021/11/logo-VNDSmkt-final-300x102.png
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/servicios-creativos/diseno-web-ux/
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/servicios-de-marketing-digital/creacion-de-con
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/2021/10/anuncios-300x270.png
|
unknown
|
|
|
|
http://schemas.open
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/servicios-de-marketing-digital/estrategias-en-
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor/assets/lib/font-awesome/css/solid.min.css?ver=
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/e-commerce-efectivo/pagos-online/
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/servicios-creativos/branding/
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/images/comentario1.jpg
|
unknown
|
|
|
|
https://vendes.marketing/
|
107.180.46.229
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/servicios-creativos/fotografia-y-edicion/
|
unknown
|
|
|
|
https://connect.facebook.net/en_US/fbevents.js
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?
|
unknown
|
|
|
|
http://standoutglobal.c
|
unknown
|
|
|
|
https://vendes.marketing/blog/
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/2021/10/visual-Studio.svg
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/servicios-de-marketing-digital/publicidad-digi
|
unknown
|
|
|
|
https://vendes.marketing/comments/feed/
|
unknown
|
|
|
|
https://standoutglobal.com/
|
unknown
|
|
|
|
https://vendes.marketing/wp-includes/js/wp-embed.min.js?ver=5.8.2
|
unknown
|
|
|
|
http://vendes.marketing/transmigrant/Wplzr/
|
107.180.46.229
|
|
|
|
https://s.w.org/images/core/emoji/13.1.0/svg/1f609.svg
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor-pro/assets/lib/smartmenus/jquery.smartmenus.mi
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/e-commerce-efectivo/tienda-online-con-magento/
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/consultorias/marketing-para-el-sector-salud/
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor/assets/lib/font-awesome/css/fontawesome.min.cs
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/2021/11/logo-VNDSmkt-final-1536x522.png
|
unknown
|
|
|
|
http://www.windows.com/pctv.
|
unknown
|
|
|
|
https://vendes.marketing/wp-includes/wlwmanifest.xml
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/servicios-de-desarrollo-web/automatizacion-de-
|
unknown
|
|
|
|
http://schemas.openformatrg/drawml/2006/spreadsheetD
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.4.8
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/2021/10/figma.svg
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/2021/10/marketing-digital-con-instagram.png
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor-pro/assets/css/frontend.min.css?ver=3.0.2
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital-en-monterrey/
|
unknown
|
|
|
|
https://schema.org
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/consultorias/consultoria-en-marketing-basado-e
|
unknown
|
|
|
|
http://windowsmedia.com/redir/services.asp?WMPFriendly=true
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/consultorias/auditorias-y-optimizacion-de-camp
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/servicios-de-desarrollo-web/desarrollo-de-mega
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/elementor/css/post-2157.css?ver=1638212282
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/themes/twentytwentyone/assets/js/responsive-embeds.js?ver=1.4
|
unknown
|
|
|
|
http://standoutglobal.co
|
unknown
|
|
|
|
https://connect.facebook.net/es_LA/sdk/xfbml.customerchat.js
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor-pro/assets/lib/lottie/lottie.min.js?ver=5.6.6
|
unknown
|
|
|
|
https://vendes.marketing/wp-includes/css/dist/block-library/style.min.css?ver=5.8.2
|
unknown
|
|
|
|
http://schemas.openformatrg/package/2006/r
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor/assets/lib/share-link/share-link.min.js?ver=3.
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/consultorias/digital-partner-incubadora-de-neg
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor/assets/lib/animations/animations.min.css?ver=3
|
unknown
|
|
|
|
https://vendes.marketing/wp-includes/js/imagesloaded.min.js?ver=4.1.4
|
unknown
|
|
|
|
https://vendes.marketing/wp-json/oembed/1.0/embed?url=https%3A%2F%2Fvendes.marketing%2F
|
unknown
|
|
|
|
https://standoutglobal.com/2/MWpqeVgZ/
|
162.240.9.126
|
|
|
|
https://vendes.marketing/xmlrpc.php?rsd
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/2021/10/elementor.svg
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/servicios-de-marketing-digital/inbound-marketi
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor/assets/js/preloaded-modules.min.js?ver=3.4.8
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/themes/twentytwentyone/assets/css/ie.css?ver=1.4
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor/assets/lib/font-awesome/js/v4-shims.min.js?ver
|
unknown
|
|
|
|
https://www.thinkwithgoogle.com/intl/es-419/futuro-del-marketing/transformacion-digital/tiendas-omni
|
unknown
|
|
|
|
https://vendes.marketing/feed/
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/images/caso-exito1.png
|
unknown
|
|
|
|
http://crl.entrust.net/2048ca.crl0
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/consultorias/consultoria-para-adsense/
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor/assets/lib/eicons/fonts/eicons.woff2?5.10.0)
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/2021/10/apple_android.svg
|
unknown
|
|
|
|
http://www.msnbc.com/news/ticker.txt
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor/assets/lib/font-awesome/css/all.min.css?ver=4.
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/ecommerce/emailing/
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/servicios-creativos/produccion-audiovisual/
|
unknown
|
|
|
|
http://ocsp.entrust.net03
|
unknown
|
|
|
|
http://schemas.openformatrg/package/2006/content-t
|
unknown
|
|
|
|
https://vendes.marketing/8
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/2021/10/anuncios.png
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/e-commerce-efectivo/tiendas-en-facebook-e-inst
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/ecommerce/
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/2021/10/marketing-digital-con-facebook.png
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.4.8
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/ecommerce/pagos-online/
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/elementor/css/post-2017.css?ver=1638212282
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/servicios-de-desarrollo-web/
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/2021/10/marketing-digital-con-youtube.png
|
unknown
|
|
|
|
https://vendes.marketing/wp-content/uploads/images/comentario5-m.jpg
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/e-commerce-efectivo/tienda-online-con-shopify/
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/consultorias/
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/consultorias/marketing-para-inmobiliarias-cons
|
unknown
|
|
|
|
https://vendes.marketing/agencia-de-marketing-digital/servicios-creativos/diseno-grafico/
|
unknown
|
|
There are 90 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
standoutglobal.com
|
162.240.9.126
|
|
|
|
vendes.marketing
|
107.180.46.229
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
162.240.9.126
|
standoutglobal.com
|
United States
|
|
|
|
107.180.46.229
|
vendes.marketing
|
United States
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Resiliency\StartupItems
|
jd*
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel
|
MTTT
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Common\ReviewCycle
|
ReviewToken
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Resiliency\DocumentRecovery\2D7A9
|
2D7A9
|
|
|
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00004109D30000000100000000F01FEC\Usage
|
VBAFiles
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Resiliency\StartupItems
|
fo*
|
|
|
|
HKEY_CURRENT_USER_CLASSES\Local Settings\MuiCache\151\52C64B7E
|
@%SystemRoot%\system32\qagentrt.dll,-10
|
|
|
|
HKEY_CURRENT_USER_CLASSES\Local Settings\MuiCache\151\52C64B7E
|
@%SystemRoot%\System32\fveui.dll,-843
|
|
|
|
HKEY_CURRENT_USER_CLASSES\Local Settings\MuiCache\151\52C64B7E
|
@%SystemRoot%\System32\fveui.dll,-844
|
|
|
|
HKEY_CURRENT_USER_CLASSES\Local Settings\MuiCache\151\52C64B7E
|
@%SystemRoot%\System32\wuaueng.dll,-400
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Place MRU
|
Max Display
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Max Display
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 1
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 2
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 3
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 4
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 5
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 6
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 7
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 8
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 9
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 10
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 11
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 12
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 13
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 14
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 15
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 16
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 17
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 18
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 19
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 20
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Resiliency\DocumentRecovery\37899
|
37899
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Place MRU
|
Max Display
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Max Display
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 1
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 2
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 3
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 4
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 5
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 6
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 7
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 8
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 9
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 10
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 11
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 12
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 13
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 14
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 15
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 16
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 17
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 18
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 19
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\file mru
|
Item 20
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Resiliency\DocumentRecovery\37F9B
|
37F9B
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Excel\Security\Trusted Documents
|
LastPurgeTime
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Common\LanguageResources\EnabledLanguages
|
1033
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Office\14.0\Common\LanguageResources\EnabledLanguages
|
1033
|
|
|
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00004109D30000000100000000F01FEC\Usage
|
EXCELFiles
|
|
|
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-18\Products\00004109D30000000100000000F01FEC\Usage
|
ProductFiles
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\Connections
|
SavedLegacySettings
|
|
|
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\3F728A35DE52B2C8994A4FB101A03B95E87B06C8
|
Blob
|
|
|
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\12891DF7B048CD69D0196C8AD7A754C8A812A08C
|
Blob
|
|
|
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\3F728A35DE52B2C8994A4FB101A03B95E87B06C8
|
Blob
|
|
|
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\3F728A35DE52B2C8994A4FB101A03B95E87B06C8
|
Blob
|
|
|
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\3F728A35DE52B2C8994A4FB101A03B95E87B06C8
|
Blob
|
|
|
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\3F728A35DE52B2C8994A4FB101A03B95E87B06C8
|
Blob
|
|
|
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\SystemCertificates\ROOT\Certificates\12891DF7B048CD69D0196C8AD7A754C8A812A08C
|
Blob
|
|
There are 59 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
357000
|
unkown
|
page read and write
|
|
|
|
7FFFFFB2000
|
unkown image
|
page readonly
|
|
|
|
2170000
|
unkown image
|
page readonly
|
|
|
|
2610000
|
unkown
|
page read and write
|
|
|
|
162000
|
unkown
|
page read and write
|
|
|
|
5AB4000
|
unkown
|
page read and write
|
|
|
|
A4F000
|
stack
|
page read and write
|
|
|
|
7430000
|
heap private
|
page read and write
|
|
|
|
7AAF000
|
heap private
|
page read and write
|
|
|
|
55E0000
|
unkown
|
page read and write
|
|
|
|
6FF4000
|
unkown image
|
page readonly
|
|
|
|
7390000
|
unkown
|
page read and write
|
|
|
|
7100000
|
unkown
|
page read and write
|
|
|
|
6EC0000
|
heap private
|
page read and write
|
|
|
|
C60000
|
heap private
|
page read and write
|
|
|
|
169000
|
unkown
|
page read and write
|
|
|
|
5B20000
|
unkown
|
page read and write
|
|
|
|
310000
|
heap private
|
page read and write
|
|
|
|
82E2000
|
unkown
|
page read and write
|
|
|
|
1D16000
|
unkown
|
page read and write
|
|
|
|
157000
|
unkown
|
page read and write
|
|
|
|
5627000
|
unkown
|
page read and write
|
|
|
|
7FEFF1A0000
|
unkown
|
page execute read
|
|
|
|
72B2000
|
unkown
|
page read and write
|
|
|
|
204D000
|
unkown
|
page read and write
|
|
|
|
70E6000
|
unkown
|
page read and write
|
|
|
|
20F0000
|
heap private
|
page read and write
|
|
|
|
3354000
|
heap private
|
page read and write
|
|
|
|
3665000
|
unkown
|
page read and write
|
|
|
|
10000
|
unkown image
|
page read and write
|
|
|
|
55E0000
|
unkown
|
page read and write
|
|
|
|
30000
|
unkown image
|
page readonly
|
|
|
|
7100000
|
unkown
|
page read and write
|
|
|
|
24F000
|
stack
|
page read and write
|
|
|
|
1CE0000
|
unkown
|
page read and write
|
|
|
|
41D0000
|
unkown
|
page read and write
|
|
|
|
71C0000
|
heap private
|
page read and write
|
|
|
|
43E1000
|
unkown
|
page read and write
|
|
|
|
7A79000
|
heap private
|
page read and write
|
|
|
|
55E0000
|
unkown
|
page read and write
|
|
|
|
55F0000
|
unkown
|
page read and write
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
5147000
|
unkown
|
page read and write
|
|
|
|
737C000
|
stack
|
page read and write
|
|
|
|
50000
|
unkown image
|
page readonly
|
|
|
|
49E000
|
unkown
|
page read and write
|
|
|
|
5724000
|
stack
|
page read and write
|
|
|
|
20000
|
unkown image
|
page readonly
|
|
|
|
3100000
|
unkown
|
page read and write
|
|
|
|
3640000
|
unkown
|
page read and write
|
|
|
|
55E0000
|
unkown
|
page read and write
|
|
|
|
7020000
|
unkown
|
page read and write
|
|
|
|
55E0000
|
unkown
|
page read and write
|
|
|
|
5609000
|
unkown
|
page read and write
|
|
|
|
7EE5000
|
unkown
|
page read and write
|
|
|
|
43B0000
|
unkown
|
page read and write
|
|
|
|
30E0000
|
unkown
|
page read and write
|
|
|
|
7C8C000
|
stack
|
page read and write
|
|
|
|
37A0000
|
unkown
|
page read and write
|
|
|
|
6BD0000
|
unkown
|
page read and write
|
|
|
|
6F70000
|
heap private
|
page read and write
|
|
|
|
46FE000
|
stack
|
page read and write
|
|
|
|
6CF4000
|
unkown
|
page read and write
|
|
|
|
7EFD0000
|
unkown image
|
page readonly
|
|
|
|
433000
|
unkown
|
page read and write
|
|
|
|
5A9A000
|
unkown
|
page read and write
|
|
|
|
7300000
|
unkown
|
page read and write
|
|
|
|
5100000
|
unkown
|
page read and write
|
|
|
|
42DF000
|
stack
|
page read and write
|
|
|
|
2069000
|
unkown
|
page read and write
|
|
|
|
406000
|
unkown
|
page read and write
|
|
|
|
3610000
|
unkown
|
page read and write
|
|
|
|
6BE0000
|
unkown
|
page read and write
|
|
|
|
5B40000
|
unkown
|
page read and write
|
|
|
|
430000
|
unkown
|
page read and write
|
|
|
|
7EFC000
|
unkown
|
page read and write
|
|
|
|
2560000
|
unkown
|
page read and write
|
|
|
|
562A000
|
unkown
|
page read and write
|
|
|
|
367000
|
unkown
|
page read and write
|
|
|
|
41B0000
|
unkown
|
page read and write
|
|
|
|
34C0000
|
unkown
|
page read and write
|
|
|
|
21AB000
|
heap private
|
page read and write
|
|
|
|
7930000
|
heap private
|
page read and write
|
|
|
|
214000
|
heap private
|
page read and write
|
|
|
|
70F0000
|
unkown
|
page read and write
|
|
|
|
38A0000
|
unkown
|
page read and write
|
|
|
|
7130000
|
heap private
|
page read and write
|
|
|
|
65300000
|
unkown image
|
page readonly
|
|
|
|
20B0000
|
unkown
|
page read and write
|
|
|
|
5AD9000
|
unkown
|
page read and write
|
|
|
|
4C70000
|
unkown
|
page read and write
|
|
|
|
2625000
|
heap private
|
page read and write
|
|
|
|
73B0000
|
unkown
|
page read and write
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
4C7000
|
heap default
|
page read and write
|
|
|
|
20000
|
heap private
|
page read and write
|
|
|
|
16D000
|
unkown
|
page read and write
|
|
|
|
453E000
|
stack
|
page read and write
|
|
|
|
420000
|
unkown image
|
page readonly
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
42E000
|
unkown
|
page read and write
|
|
|
|
3D0000
|
unkown
|
page read and write
|
|
|
|
488000
|
unkown
|
page read and write
|
|
|
|
2580000
|
unkown image
|
page readonly
|
|
|
|
2064000
|
unkown
|
page read and write
|
|
|
|
740000
|
unkown image
|
page readonly
|
|
|
|
2F0000
|
unkown
|
page read and write
|
|
|
|
6D23000
|
unkown
|
page read and write
|
|
|
|
4FF0000
|
unkown
|
page read and write
|
|
|
|
5748000
|
unkown
|
page read and write
|
|
|
|
2290000
|
heap private
|
page read and write
|
|
|
|
3618000
|
unkown
|
page read and write
|
|
|
|
3680000
|
unkown
|
page read and write
|
|
|
|
7020000
|
unkown
|
page read and write
|
|
|
|
7020000
|
unkown
|
page read and write
|
|
|
|
1A0000
|
unkown image
|
page readonly
|
|
|
|
154000
|
unkown
|
page read and write
|
|
|
|
927000
|
unkown image
|
page readonly
|
|
|
|
7256000
|
unkown
|
page read and write
|
|
|
|
574A000
|
unkown
|
page read and write
|
|
|
|
6D3E000
|
heap private
|
page read and write
|
|
|
|
7FFFFFC0000
|
unkown image
|
page readonly
|
|
|
|
7EFB2000
|
unkown image
|
page readonly
|
|
|
|
7022000
|
unkown
|
page read and write
|
|
|
|
8730000
|
unkown
|
page read and write
|
|
|
|
166000
|
unkown
|
page read and write
|
|
|
|
3000000
|
unkown image
|
page readonly
|
|
|
|
30D000
|
heap default
|
page read and write
|
|
|
|
7FFFFFC0000
|
unkown image
|
page readonly
|
|
|
|
35F0000
|
unkown
|
page read and write
|
|
|
|
7275000
|
unkown
|
page read and write
|
|
|
|
59CC000
|
stack
|
page read and write
|
|
|
|
71B0000
|
unkown
|
page read and write
|
|
|
|
7380000
|
unkown
|
page read and write
|
|
|
|
357000
|
heap default
|
page read and write
|
|
|
|
740000
|
unkown image
|
page readonly
|
|
|
|
7FFFFFB2000
|
unkown image
|
page readonly
|
|
|
|
2050000
|
unkown
|
page read and write
|
|
|
|
562000
|
heap default
|
page read and write
|
|
|
|
10000
|
unkown image
|
page read and write
|
|
|
|
150000
|
unkown
|
page read and write
|
|
|
|
7020000
|
unkown
|
page read and write
|
|
|
|
F0000
|
unkown
|
page read and write
|
|
|
|
7EFC0000
|
unkown image
|
page readonly
|
|
|
|
3662000
|
unkown
|
page read and write
|
|
|
|
6E88B000
|
unkown image
|
page read and write
|
|
|
|
5BD0000
|
unkown
|
page read and write
|
|
|
|
3977000
|
heap private
|
page read and write
|
|
|
|
6C50000
|
heap private
|
page read and write
|
|
|
|
74B0000
|
unkown
|
page read and write
|
|
|
|
5C0000
|
unkown image
|
page readonly
|
|
|
|
4FE0000
|
unkown
|
page read and write
|
|
|
|
15B000
|
unkown
|
page read and write
|
|
|
|
5A61000
|
unkown
|
page read and write
|
|
|
|
5860000
|
unkown
|
page read and write
|
|
|
|
6DB0000
|
unkown
|
page read and write
|
|
|
|
6BD0000
|
unkown
|
page read and write
|
|
|
|
7CB1000
|
stack
|
page read and write
|
|
|
|
5ACA000
|
unkown
|
page read and write
|
|
|
|
55FA000
|
unkown
|
page read and write
|
|
|
|
25A0000
|
unkown
|
page read and write
|
|
|
|
130000
|
heap private
|
page read and write
|
|
|
|
25D0000
|
unkown
|
page read and write
|
|
|
|
55E0000
|
unkown
|
page read and write
|
|
|
|
324E000
|
stack
|
page read and write
|
|
|
|
6BD0000
|
unkown
|
page read and write
|
|
|
|
6C01000
|
unkown
|
page read and write
|
|
|
|
2B6000
|
unkown
|
page read and write
|
|
|
|
7FFFFFC0000
|
unkown image
|
page readonly
|
|
|
|
6E898000
|
unkown image
|
page write copy
|
|
|
|
2FE0000
|
unkown
|
page read and write
|
|
|
|
3670000
|
unkown
|
page read and write
|
|
|
|
5B0000
|
unkown image
|
page readonly
|
|
|
|
347F000
|
stack
|
page read and write
|
|
|
|
320000
|
heap default
|
page read and write
|
|
|
|
6BD0000
|
unkown
|
page read and write
|
|
|
|
34E0000
|
unkown
|
page read and write
|
|
|
|
8E0000
|
unkown image
|
page readonly
|
|
|
|
7EFB2000
|
unkown image
|
page readonly
|
|
|
|
31B000
|
heap default
|
page read and write
|
|
|
|
6BFE000
|
unkown
|
page read and write
|
|
|
|
7EFE0000
|
unkown image
|
page readonly
|
|
|
|
160000
|
heap default
|
page read and write
|
|
|
|
6EBB000
|
unkown
|
page read and write
|
|
|
|
53E7000
|
unkown image
|
page readonly
|
|
|
|
7C8C000
|
stack
|
page read and write
|
|
|
|
7FFFFFC2000
|
unkown image
|
page readonly
|
|
|
|
3120000
|
unkown
|
page read and write
|
|
|
|
73E4000
|
heap private
|
page read and write
|
|
|
|
3488000
|
unkown
|
page read and write
|
|
|
|
7C2F000
|
unkown
|
page read and write
|
|
|
|
6DE6000
|
unkown
|
page read and write
|
|
|
|
3918000
|
unkown
|
page read and write
|
|
|
|
360E000
|
unkown
|
page read and write
|
|
|
|
7FFFFFB0000
|
unkown image
|
page readonly
|
|
|
|
1F0000
|
unkown image
|
page readonly
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
58B0000
|
unkown
|
page read and write
|
|
|
|
30C3000
|
unkown
|
page read and write
|
|
|
|
3370000
|
unkown
|
page read and write
|
|
|
|
34B0000
|
unkown
|
page read and write
|
|
|
|
371000
|
unkown
|
page read and write
|
|
|
|
25C0000
|
unkown
|
page read and write
|
|
|
|
6E89C000
|
unkown image
|
page read and write
|
|
|
|
3650000
|
unkown
|
page read and write
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
5AB0000
|
unkown
|
page read and write
|
|
|
|
34A0000
|
unkown
|
page read and write
|
|
|
|
362D000
|
unkown
|
page read and write
|
|
|
|
5860000
|
unkown
|
page read and write
|
|
|
|
1CD000
|
heap private
|
page read and write
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
5A9A000
|
unkown
|
page read and write
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
3F0000
|
unkown
|
page read and write
|
|
|
|
7EE5000
|
unkown
|
page read and write
|
|
|
|
443F000
|
unkown
|
page read and write
|
|
|
|
1C5000
|
heap private
|
page read and write
|
|
|
|
3630000
|
unkown
|
page read and write
|
|
|
|
5860000
|
unkown
|
page read and write
|
|
|
|
7EFC000
|
unkown
|
page read and write
|
|
|
|
4A0000
|
unkown image
|
page readonly
|
|
|
|
3010000
|
unkown image
|
page read and write
|
|
|
|
5750000
|
unkown
|
page read and write
|
|
|
|
6EB0000
|
unkown
|
page read and write
|
|
|
|
366E000
|
unkown
|
page read and write
|
|
|
|
43B8000
|
unkown
|
page read and write
|
|
|
|
7EFC000
|
unkown
|
page read and write
|
|
|
|
3040000
|
heap private
|
page read and write
|
|
|
|
59EF000
|
unkown
|
page read and write
|
|
|
|
7FFFFFC2000
|
unkown image
|
page readonly
|
|
|
|
561E000
|
unkown
|
page read and write
|
|
|
|
3620000
|
unkown
|
page read and write
|
|
|
|
3250000
|
unkown
|
page read and write
|
|
|
|
55E0000
|
unkown
|
page read and write
|
|
|
|
40000
|
unkown image
|
page readonly
|
|
|
|
4C0000
|
heap default
|
page read and write
|
|
|
|
232000
|
heap private
|
page read and write
|
|
|
|
7A70000
|
heap private
|
page read and write
|
|
|
|
7CB1000
|
stack
|
page read and write
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
6E570000
|
unkown image
|
page readonly
|
|
|
|
7000000
|
unkown
|
page read and write
|
|
|
|
7FFFFFB0000
|
unkown image
|
page readonly
|
|
|
|
7060000
|
heap private
|
page read and write
|
|
|
|
1D0000
|
unkown
|
page read and write
|
|
|
|
8280000
|
unkown
|
page read and write
|
|
|
|
464000
|
unkown
|
page read and write
|
|
|
|
59D8000
|
unkown
|
page read and write
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
2570000
|
unkown image
|
page readonly
|
|
|
|
58A0000
|
unkown
|
page read and write
|
|
|
|
4430000
|
unkown
|
page read and write
|
|
|
|
5615000
|
unkown
|
page read and write
|
|
|
|
190000
|
unkown
|
page read and write
|
|
|
|
2030000
|
unkown
|
page read and write
|
|
|
|
70F0000
|
unkown
|
page read and write
|
|
|
|
585A000
|
stack
|
page read and write
|
|
|
|
5ACA000
|
unkown
|
page read and write
|
|
|
|
7020000
|
unkown
|
page read and write
|
|
|
|
7EFB0000
|
unkown image
|
page readonly
|
|
|
|
2FF0000
|
unkown
|
page read and write
|
|
|
|
515D000
|
unkown
|
page read and write
|
|
|
|
4B0000
|
unkown
|
page read and write
|
|
|
|
420000
|
unkown
|
page read and write
|
|
|
|
5160000
|
unkown
|
page read and write
|
|
|
|
55E0000
|
unkown
|
page read and write
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
55E0000
|
unkown
|
page read and write
|
|
|
|
7FFFFFD0000
|
unkown image
|
page readonly
|
|
|
|
55E0000
|
unkown
|
page read and write
|
|
|
|
30000
|
unkown image
|
page readonly
|
|
|
|
20F5000
|
heap private
|
page read and write
|
|
|
|
7C9D000
|
stack
|
page read and write
|
|
|
|
35EF000
|
stack
|
page read and write
|
|
|
|
573F000
|
unkown
|
page read and write
|
|
|
|
8280000
|
unkown
|
page read and write
|
|
|
|
25F0000
|
unkown
|
page read and write
|
|
|
|
7050000
|
unkown
|
page read and write
|
|
|
|
7020000
|
unkown
|
page read and write
|
|
|
|
8070000
|
heap private
|
page read and write
|
|
|
|
7FFFFFD0000
|
unkown image
|
page readonly
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
376000
|
unkown
|
page read and write
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
86A5000
|
unkown
|
page read and write
|
|
|
|
6CE000
|
stack
|
page read and write
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
7EFE0000
|
unkown image
|
page readonly
|
|
|
|
70F0000
|
unkown
|
page read and write
|
|
|
|
5B4B000
|
unkown
|
page read and write
|
|
|
|
7EFC0000
|
unkown image
|
page readonly
|
|
|
|
5AB4000
|
unkown
|
page read and write
|
|
|
|
20B0000
|
unkown image
|
page readonly
|
|
|
|
6E841000
|
unkown image
|
page readonly
|
|
|
|
5600000
|
unkown
|
page read and write
|
|
|
|
6BD0000
|
unkown
|
page read and write
|
|
|
|
40000
|
unkown image
|
page readonly
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
2D0000
|
heap default
|
page read and write
|
|
|
|
8270000
|
unkown
|
page read and write
|
|
|
|
D0000
|
unkown image
|
page readonly
|
|
|
|
7EFE0000
|
unkown image
|
page readonly
|
|
|
|
134000
|
heap private
|
page read and write
|
|
|
|
3960000
|
unkown
|
page read and write
|
|
|
|
357000
|
unkown
|
page read and write
|
|
|
|
25E0000
|
unkown
|
page read and write
|
|
|
|
3600000
|
unkown
|
page read and write
|
|
|
|
8330000
|
unkown
|
page read and write
|
|
|
|
3625000
|
unkown
|
page read and write
|
|
|
|
340000
|
unkown
|
page read and write
|
|
|
|
379E000
|
stack
|
page read and write
|
|
|
|
7EFDF000
|
unkown
|
page read and write
|
|
|
|
477000
|
unkown
|
page read and write
|
|
|
|
7020000
|
unkown
|
page read and write
|
|
|
|
5622000
|
unkown
|
page read and write
|
|
|
|
7112000
|
unkown
|
page read and write
|
|
|
|
316000
|
heap default
|
page read and write
|
|
|
|
58C6000
|
unkown
|
page read and write
|
|
|
|
7022000
|
unkown
|
page read and write
|
|
|
|
5746000
|
unkown
|
page read and write
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
750000
|
unkown image
|
page readonly
|
|
|
|
356000
|
unkown
|
page read and write
|
|
|
|
17D000
|
unkown
|
page read and write
|
|
|
|
4FD0000
|
unkown
|
page read and write
|
|
|
|
5890000
|
unkown
|
page read and write
|
|
|
|
3360000
|
unkown
|
page read and write
|
|
|
|
60000
|
unkown image
|
page readonly
|
|
|
|
7FFFFFC0000
|
unkown image
|
page readonly
|
|
|
|
5860000
|
unkown
|
page read and write
|
|
|
|
210000
|
heap private
|
page read and write
|
|
|
|
2044000
|
unkown
|
page read and write
|
|
|
|
6BD0000
|
unkown
|
page read and write
|
|
|
|
443C000
|
unkown
|
page read and write
|
|
|
|
7250000
|
unkown
|
page read and write
|
|
|
|
6CD8000
|
unkown
|
page read and write
|
|
|
|
7EA0000
|
unkown
|
page read and write
|
|
|
|
3110000
|
unkown
|
page read and write
|
|
|
|
366A000
|
unkown
|
page read and write
|
|
|
|
826F000
|
stack
|
page read and write
|
|
|
|
4E76000
|
unkown
|
page read and write
|
|
|
|
7EC8000
|
unkown
|
page read and write
|
|
|
|
21A0000
|
heap private
|
page read and write
|
|
|
|
30F0000
|
unkown
|
page read and write
|
|
|
|
270000
|
heap private
|
page read and write
|
|
|
|
5730000
|
unkown
|
page read and write
|
|
|
|
35D000
|
heap default
|
page read and write
|
|
|
|
460000
|
unkown
|
page read and write
|
|
|
|
4B3000
|
unkown
|
page read and write
|
|
|
|
7EC8000
|
unkown
|
page read and write
|
|
|
|
7050000
|
unkown
|
page read and write
|
|
|
|
6C40000
|
unkown image
|
page read and write
|
|
|
|
7116000
|
unkown
|
page read and write
|
|
|
|
4FE000
|
heap default
|
page read and write
|
|
|
|
58C0000
|
unkown
|
page read and write
|
|
|
|
1B0000
|
unkown
|
page read and write
|
|
|
|
82A5000
|
unkown
|
page read and write
|
|
|
|
110000
|
unkown
|
page read and write
|
|
|
|
4FFB000
|
unkown
|
page read and write
|
|
|
|
344000
|
unkown
|
page read and write
|
|
|
|
7030000
|
unkown
|
page read and write
|
|
|
|
2629000
|
heap private
|
page read and write
|
|
|
|
6C10000
|
unkown image
|
page readonly
|
|
|
|
8271000
|
unkown
|
page read and write
|
|
|
|
10000
|
unkown image
|
page read and write
|
|
|
|
7110000
|
unkown
|
page read and write
|
|
|
|
7FFFFFB0000
|
unkown image
|
page readonly
|
|
|
|
70EA000
|
unkown
|
page read and write
|
|
|
|
2B4000
|
unkown
|
page read and write
|
|
|
|
71B0000
|
unkown
|
page read and write
|
|
|
|
5AB0000
|
unkown
|
page read and write
|
|
|
|
30C5000
|
unkown
|
page read and write
|
|
|
|
6D35000
|
heap private
|
page read and write
|
|
|
|
7010000
|
unkown
|
page read and write
|
|
|
|
86E2000
|
unkown
|
page read and write
|
|
|
|
7EFC2000
|
unkown image
|
page readonly
|
|
|
|
43D0000
|
unkown image
|
page readonly
|
|
|
|
8271000
|
unkown
|
page read and write
|
|
|
|
362B000
|
unkown
|
page read and write
|
|
|
|
28D000
|
unkown
|
page read and write
|
|
|
|
5610000
|
unkown
|
page read and write
|
|
|
|
5740000
|
unkown
|
page read and write
|
|
|
|
2D7000
|
heap default
|
page read and write
|
|
|
|
5BD0000
|
unkown
|
page read and write
|
|
|
|
55E0000
|
unkown
|
page read and write
|
|
|
|
BE0000
|
unkown
|
page read and write
|
|
|
|
38ED000
|
unkown
|
page read and write
|
|
|
|
1E0000
|
unkown
|
page read and write
|
|
|
|
7120000
|
unkown
|
page read and write
|
|
|
|
5AD9000
|
unkown
|
page read and write
|
|
|
|
15F000
|
unkown
|
page read and write
|
|
|
|
4C40000
|
unkown
|
page read and write
|
|
|
|
7EA0000
|
unkown
|
page read and write
|
|
|
|
5860000
|
unkown
|
page read and write
|
|
|
|
7EFC000
|
unkown
|
page read and write
|
|
|
|
4E65000
|
unkown
|
page read and write
|
|
|
|
7EE5000
|
unkown
|
page read and write
|
|
|
|
170000
|
unkown
|
page read and write
|
|
|
|
43A2000
|
unkown
|
page read and write
|
|
|
|
3350000
|
heap private
|
page read and write
|
|
|
|
2060000
|
unkown
|
page read and write
|
|
|
|
25B0000
|
unkown
|
page read and write
|
|
|
|
5860000
|
unkown
|
page read and write
|
|
|
|
5620000
|
unkown
|
page read and write
|
|
|
|
7020000
|
unkown
|
page read and write
|
|
|
|
34D0000
|
unkown
|
page read and write
|
|
|
|
5BD0000
|
unkown image
|
page read and write
|
|
|
|
21A4000
|
heap private
|
page read and write
|
|
|
|
480000
|
unkown
|
page read and write
|
|
|
|
2FD0000
|
unkown
|
page read and write
|
|
|
|
BA000
|
unkown
|
page read and write
|
|
|
|
5A0000
|
unkown image
|
page readonly
|
|
|
|
73C0000
|
unkown
|
page read and write
|
|
|
|
5200000
|
unkown image
|
page readonly
|
|
|
|
55E0000
|
unkown
|
page read and write
|
|
|
|
212B000
|
heap private
|
page read and write
|
|
|
|
4C50000
|
unkown
|
page read and write
|
|
|
|
7260000
|
unkown
|
page read and write
|
|
|
|
5B20000
|
unkown
|
page read and write
|
|
|
|
4D6F000
|
stack
|
page read and write
|
|
|
|
58A0000
|
unkown
|
page read and write
|
|
|
|
3629000
|
unkown
|
page read and write
|
|
|
|
5860000
|
unkown
|
page read and write
|
|
|
|
4D80000
|
unkown
|
page read and write
|
|
|
|
30000
|
unkown image
|
page readonly
|
|
|
|
55E0000
|
unkown
|
page read and write
|
|
|
|
6E89F000
|
unkown image
|
page readonly
|
|
|
|
7000000
|
unkown
|
page read and write
|
|
|
|
5BD0000
|
unkown
|
page read and write
|
|
|
|
140000
|
unkown image
|
page read and write
|
|
|
|
1C0000
|
heap private
|
page read and write
|
|
|
|
326000
|
unkown
|
page read and write
|
|
|
|
7FFFFFC2000
|
unkown image
|
page readonly
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
48E000
|
unkown
|
page read and write
|
|
|
|
5874000
|
unkown
|
page read and write
|
|
|
|
6BF0000
|
unkown
|
page read and write
|
|
|
|
6FF0000
|
unkown image
|
page readonly
|
|
|
|
8308000
|
unkown
|
page read and write
|
|
|
|
450000
|
unkown
|
page read and write
|
|
|
|
534000
|
heap default
|
page read and write
|
|
|
|
70E0000
|
unkown
|
page read and write
|
|
|
|
4BF0000
|
unkown
|
page read and write
|
|
|
|
7EFB0000
|
unkown image
|
page readonly
|
|
|
|
79B0000
|
heap private
|
page read and write
|
|
|
|
440000
|
unkown
|
page read and write
|
|
|
|
4FD7000
|
unkown
|
page read and write
|
|
|
|
5A28000
|
unkown
|
page read and write
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
59D0000
|
unkown
|
page read and write
|
|
|
|
7EA0000
|
unkown
|
page read and write
|
|
|
|
5A14000
|
unkown
|
page read and write
|
|
|
|
423000
|
unkown
|
page read and write
|
|
|
|
7EC8000
|
unkown
|
page read and write
|
|
|
|
7EFD0000
|
unkown image
|
page readonly
|
|
|
|
3490000
|
unkown
|
page read and write
|
|
|
|
3286000
|
unkown
|
page read and write
|
|
|
|
6E894000
|
unkown image
|
page read and write
|
|
|
|
7EE5000
|
unkown
|
page read and write
|
|
|
|
327000
|
heap default
|
page read and write
|
|
|
|
100000
|
unkown image
|
page readonly
|
|
|
|
7C9D000
|
stack
|
page read and write
|
|
|
|
2608000
|
unkown
|
page read and write
|
|
|
|
3148000
|
unkown
|
page read and write
|
|
|
|
55E0000
|
unkown
|
page read and write
|
|
|
|
E0000
|
unkown
|
page read and write
|
|
|
|
7386000
|
unkown
|
page read and write
|
|
|
|
4700000
|
unkown image
|
page readonly
|
|
|
|
455000
|
unkown
|
page read and write
|
|
|
|
5860000
|
unkown
|
page read and write
|
|
|
|
50FE000
|
stack
|
page read and write
|
|
|
|
21A8000
|
heap private
|
page read and write
|
|
|
|
42E0000
|
heap private
|
page execute and read and write
|
|
|
|
3030000
|
unkown
|
page read and write
|
|
|
|
6CE4000
|
unkown
|
page read and write
|
|
|
|
2040000
|
unkown
|
page read and write
|
|
|
|
2600000
|
unkown
|
page read and write
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
7FFFFFD0000
|
unkown image
|
page readonly
|
|
|
|
575B000
|
unkown
|
page read and write
|
|
|
|
7FFFFFD0000
|
unkown image
|
page readonly
|
|
|
|
73E0000
|
heap private
|
page read and write
|
|
|
|
6C30000
|
unkown image
|
page read and write
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
344000
|
heap default
|
page read and write
|
|
|
|
70F0000
|
unkown
|
page read and write
|
|
|
|
5B38000
|
unkown
|
page read and write
|
|
|
|
140000
|
unkown
|
page read and write
|
|
|
|
7FFFFFB2000
|
unkown image
|
page readonly
|
|
|
|
7EFC2000
|
unkown image
|
page readonly
|
|
|
|
3970000
|
heap private
|
page read and write
|
|
|
|
7FFFFFB2000
|
unkown image
|
page readonly
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
7FFFFFB0000
|
unkown image
|
page readonly
|
|
|
|
7260000
|
unkown
|
page read and write
|
|
|
|
2620000
|
heap private
|
page read and write
|
|
|
|
7E80000
|
unkown
|
page read and write
|
|
|
|
3130000
|
unkown
|
page read and write
|
|
|
|
2520000
|
unkown
|
page read and write
|
|
|
|
274000
|
heap private
|
page read and write
|
|
|
|
3667000
|
unkown
|
page read and write
|
|
|
|
6C20000
|
unkown image
|
page read and write
|
|
|
|
5A20000
|
unkown
|
page read and write
|
|
|
|
6E571000
|
unkown image
|
page execute read
|
|
|
|
5BD0000
|
unkown
|
page read and write
|
|
|
|
7EC8000
|
unkown
|
page read and write
|
|
|
|
7EA0000
|
unkown
|
page read and write
|
|
|
|
3140000
|
unkown
|
page read and write
|
|
|
|
3622000
|
unkown
|
page read and write
|
|
|
|
7FFFFFC2000
|
unkown image
|
page readonly
|
|
|
|
6D30000
|
heap private
|
page read and write
|
|
There are 502 hidden memdumps, click here to show them.