Files
File Path
|
Type
|
Category
|
Malicious
|
|
---|---|---|---|---|
View Shared File.pdf
|
PDF document, version 1.7
|
initial sample
|
||
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
||
C:\Program Files\Google\Chrome\ChromeRecovery\scoped_dir3876_980132676\ChromeRecovery.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
||
C:\Program Files\Google\Chrome\ChromeRecovery\scoped_dir3876_980132676\ChromeRecoveryCRX.crx
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Program Files\Google\Chrome\ChromeRecovery\scoped_dir3876_980132676\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Program Files\Google\Chrome\ChromeRecovery\scoped_dir3876_980132676\manifest.json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\05349744be1ad4ad_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0786087c3c360803_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0998db3a32ab3f41_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0ace9ee3d914a5c0_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0f25049d69125b1e_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\230e5fe3e6f82b2c_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\2798067b152b83c7_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\2a426f11fd8ebe18_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\39c14c1f4b086971_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\3a4ae3940784292a_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\4a0e94571d979b3c_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\560e9c8bff5008d8_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\56c4cd218555ae2b_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\6267ed4d4a13f54b_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\6fb6d030c4ebbc21_0
|
data
|
modified
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\7120c35b509b0fae_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\71febec55d5c75cd_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\86b8040b7132b608_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\8c159cc5880890bc_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\8c84d92a9dbce3e0_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\8e417e79df3bf0e9_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\91cec06bb2836fa5_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\927a1596c37ebe5e_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\92c56fa2a6c4d5ba_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\946896ee27df7947_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\983b7a3da8f39a46_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\aba6710fde0876af_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\b6d5deb4812ac6e9_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\bba29d2e6197e2f4_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\bf0ac66ae1eb4a7f_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\cf3e34002cde7e9c_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\d449e58cb15daaf1_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\d88192ac53852604_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\de789e80edd740d6_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\f0cf6dfa8a1afa3d_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\f4a0d4ca2f3b95da_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\f941376b2efdd6e6_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\f971b7eda7fa05c3_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\fd17b2d8331c91e8_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\fdd733564de6fbcb_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\febb41df4ea2b63a_0
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\index-dir\temp-index
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\index-dir\the-real-index (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Visited Links
|
data
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ConnectorIcons\icon-220527154329Z-214.bmp
|
PC bitmap, Windows 3.x format, 152 x -152 x 32
|
dropped
|
||
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages
|
SQLite 3.x database, last written using SQLite version 3024000
|
modified
|
||
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages-journal
|
SQLite Rollback Journal
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\AdobeFnt16.lst.5236
|
PostScript document text
|
dropped
|
||
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\AdobeSysFnt19.lst (copy)
|
PostScript document text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\012888bb-c034-47e7-85c9-9ec290c4c908.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\05f23d1f-dd2a-42bb-95ee-de240b72b0a7.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\1e97ddb5-9b94-4d11-8e3f-d8e111e13618.tmp
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\2c5d1626-74eb-4396-b376-532bf38e430b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\61177bf4-3adf-4556-94e5-07fc74310034.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\6b2414f8-2abc-44f5-831d-8c2d23611ab1.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\82b72114-359e-496d-b51d-69ea4390266f.tmp
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\9a6ec8ea-05b0-47a9-813f-add56c12bd69.tmp
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\489464f3-d7d6-4730-89cc-46a1e014e96b.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\60544900-fd59-4ac3-b61d-5b07ee4fe0b5.tmp
|
very short file (no magic)
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\7c4ab1c3-bb89-4ffd-be01-80d6ebc791dd.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9201d6f7-b73e-4a17-9370-924f601aeb69.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\9895fc68-2e53-4b0c-b28b-e5d40f4092fb.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History Provider Cache
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Preferences (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\19fa8736-0cad-4232-b7d2-b453200b1e8b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\7e1e79ea-bcff-45de-845a-43cf18598136.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\7016b328-c69b-4427-bf66-a5317616c2ba.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\adcadca8-7e62-4081-9b90-d2a4ceb321f6.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\b4a5c365-0bc0-4e36-950a-496e402d52aa.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\ce47dec3-96de-4d65-8058-5b9785341d32.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\cf56e9c4-f167-4e68-9039-4911a77579ab.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\d7a0d96c-6739-4c68-badd-9b3ea09ef812.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\dbc05ae3-04c6-437c-9d41-b2249c7cf2c0.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\f73a4c12-4c3c-46cf-a067-a85e9f9e4530.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\fca7bb2a-cc0f-4ec8-ac83-a7bd0567f968.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\a96e33c5-d810-4ba1-8939-5076c58bd766.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\d148ee5f-0bf5-42b8-94df-f945549433f0.tmp
|
SysEx File -
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\ec48fc1f-5457-41e1-9aac-cce5b7baae29.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Google\Chrome\User Data\fd9d58c2-95bf-4baa-82e0-e8ab07d12f3f.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\0ee41148-4477-4340-a363-12fec86f745b.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_1449025593\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_1449025593\_platform_specific\x86_64\pnacl_public_pnacl_json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_1449025593\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_1449025593\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_1449025593\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_1449025593\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377,
stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_1449025593\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
|
current ar archive
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_1449025593\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
|
current ar archive
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_1449025593\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_1449025593\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_1449025593\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce,
stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_1449025593\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_1449025593\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_1449025593\manifest.json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_351108375\Recovery.crx3
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_351108375\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_351108375\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\3152_351108375\manifest.json
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\779d81d7-3e8b-4d0c-8906-c34f014b158e.tmp
|
very short file (no magic)
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\0ee41148-4477-4340-a363-12fec86f745b.tmp
|
Google Chrome extension, version 3
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
||
C:\Users\user\AppData\Local\Temp\scoped_dir3152_764491848\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
There are 169 hidden files, click here to show them.
Processes
Path
|
Cmdline
|
Malicious
|
|
---|---|---|---|
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
|
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" "C:\Users\user\Desktop\View Shared File.pdf
|
||
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
|
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe" --type=renderer /prefetch:1 "C:\Users\user\Desktop\View
Shared File.pdf
|
||
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
|
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --backgroundcolor=16514043
|
||
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
|
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --log-file="C:\Program Files (x86)\Adobe\Acrobat
Reader DC\Reader\AcroCEF\debug.log" --touch-events=enabled --field-trial-handle=1692,9505094711010095436,2813685380730867450,131072
--disable-features=VizDisplayCompositor --disable-gpu-compositing --service-pipe-token=4522651327695846108 --lang=en-US --disable-pack-loading
--log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.12.20035
Chrome/80.0.0.0" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=4522651327695846108
--renderer-client-id=2 --mojo-platform-channel-handle=1704 --allow-no-sandbox-job /prefetch:1
|
||
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
|
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=gpu-process --field-trial-handle=1692,9505094711010095436,2813685380730867450,131072
--disable-features=VizDisplayCompositor --disable-pack-loading --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log"
--log-severity=disable --product-version="ReaderServices/19.12.20035 Chrome/80.0.0.0" --lang=en-US --gpu-preferences=KAAAAAAAAACAAwABAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA
--use-gl=swiftshader-webgl --log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --service-request-channel-token=10689791772710628581
--mojo-platform-channel-handle=1728 --allow-no-sandbox-job --ignored=" --type=renderer " /prefetch:2
|
||
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
|
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --log-file="C:\Program Files (x86)\Adobe\Acrobat
Reader DC\Reader\AcroCEF\debug.log" --touch-events=enabled --field-trial-handle=1692,9505094711010095436,2813685380730867450,131072
--disable-features=VizDisplayCompositor --disable-gpu-compositing --service-pipe-token=1168505979000462944 --lang=en-US --disable-pack-loading
--log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.12.20035
Chrome/80.0.0.0" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=1168505979000462944
--renderer-client-id=4 --mojo-platform-channel-handle=1812 --allow-no-sandbox-job /prefetch:1
|
||
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
|
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --log-file="C:\Program Files (x86)\Adobe\Acrobat
Reader DC\Reader\AcroCEF\debug.log" --touch-events=enabled --field-trial-handle=1692,9505094711010095436,2813685380730867450,131072
--disable-features=VizDisplayCompositor --disable-gpu-compositing --service-pipe-token=12017203034287935800 --lang=en-US --disable-pack-loading
--log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.12.20035
Chrome/80.0.0.0" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=12017203034287935800
--renderer-client-id=5 --mojo-platform-channel-handle=2192 --allow-no-sandbox-job /prefetch:1
|
||
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
|
"C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe" --type=renderer --log-file="C:\Program Files (x86)\Adobe\Acrobat
Reader DC\Reader\AcroCEF\debug.log" --touch-events=enabled --field-trial-handle=1692,9505094711010095436,2813685380730867450,131072
--disable-features=VizDisplayCompositor --disable-gpu-compositing --service-pipe-token=1325300201368898226 --lang=en-US --disable-pack-loading
--log-file="C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log" --log-severity=disable --product-version="ReaderServices/19.12.20035
Chrome/80.0.0.0" --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=1325300201368898226
--renderer-client-id=6 --mojo-platform-channel-handle=2804 --allow-no-sandbox-job /prefetch:1
|
||
C:\Windows\System32\conhost.exe
|
C:\Windows\system32\conhost.exe 0xffffffff -ForceV1
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation -- "http://v2.bpkbsaya.com/wp-includes/css/cPanel.SharePoint_documentOnline/redirecting.php
|
||
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1556,1458980921024501746,2057635213361371639,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1908 /prefetch:8
|
||
C:\Program Files\Google\Chrome\Application\85.0.4183.121\elevation_service.exe
|
C:\Program Files\Google\Chrome\Application\85.0.4183.121\elevation_service.exe
|
||
C:\Program Files\Google\Chrome\ChromeRecovery\scoped_dir3876_980132676\ChromeRecovery.exe
|
"C:\Program Files\Google\Chrome\ChromeRecovery\scoped_dir3876_980132676\ChromeRecovery.exe" --appguid={8A69D345-D564-463c-AFF1-A69D9E530F96}
--browser-version=85.0.4183.121 --sessionid={3300d716-561c-4453-9d4f-82432db65734} --system
|
There are 3 hidden processes, click here to show them.
URLs
Name
|
IP
|
Malicious
|
|
---|---|---|---|
https://arthurperush.com/css/cPanel.SharePoint_documentOnline/login.html2
|
unknown
|
||
https://arthurperush.com/css/cPanel.SharePoint_documentOnline/login.html
|
|||
https://arthurperush.com/css/cPanel.SharePoint_documentOnline/login.html
|
138.59.135.12
|
||
https://webmail.serendahsteel.com/cPanel_magic_revision_1463518546/unprotected/cpanel/images/notice-success.png
|
103.6.196.136
|
||
https://webmail.serendahsteel.com/cPanel_magic_revision_1463518546/unprotected/cpanel/images/warning.png
|
103.6.196.136
|
||
http://www.aiim.org/pdfe/ns/id/i
|
unknown
|
||
http://www.aiim.org/pdfe/ns/id/l
|
unknown
|
||
https://PrefSyncJob/com.adobe.acrobat.ADotCom/Resource/Sync/iew
|
unknown
|
||
https://www.google.com/images/cleardot.gif
|
unknown
|
||
https://play.google.com
|
unknown
|
||
https://webmail.unitedyacht.com/cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.woff
|
72.9.144.117
|
||
http://www.aiim.org/pdfa/ns/schema#
|
unknown
|
||
https://webmail.unitedyacht.com/cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.woff
|
72.9.144.117
|
||
http://cipa.jp/exif/1.0/
|
unknown
|
||
https://webmail.unitedyacht.com/cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.ttf
|
72.9.144.117
|
||
https://PrefSyncJob/com.adobe.acrobat.ADotCom/Resource/Sync/Upload/U
|
unknown
|
||
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
||
https://accounts.google.com/MergeSession
|
unknown
|
||
https://webmail.unitedyacht.com/cPanel_magic_revision_1508464910/unprotected/cpanel/style_v2_optimized.css
|
72.9.144.117
|
||
https://www.google.com
|
unknown
|
||
http://www.aiim.org/pdfa/ns/type#
|
unknown
|
||
https://webmail.serendahsteel.com/cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/OpenSans-Regular-webfont.woff
|
103.6.196.136
|
||
https://api.echosign.com
|
unknown
|
||
https://PrefSyncJob/com.adobe.acrobat.ADotCom/Resource/Sync/Upload/
|
unknown
|
||
http://www.pdf-tools.com)
|
unknown
|
||
https://accounts.google.com
|
unknown
|
||
http://www.npes.org/pdfx/ns/id/
|
unknown
|
||
https://PrefSyncJob/com.adobe.acrobat.ADotCom/Resource/Sync/Upload/w
|
unknown
|
||
http://www.aiim.org/pdfa/ns/extension/
|
unknown
|
||
https://webmail.unitedyacht.com/cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.woff
|
72.9.144.117
|
||
https://apis.google.com
|
unknown
|
||
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
||
https://api.echosign.comA
|
unknown
|
||
https://PrefSyncJob/com.adobe.acrobat.ADotCom/Resource/Sync/rsi
|
unknown
|
||
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
||
https://clients2.google.com
|
unknown
|
||
http://www.aiim.org/pdfa/ns/property#
|
unknown
|
||
http://cipa.jp/exif/1.0/)
|
unknown
|
||
https://dns.google
|
unknown
|
||
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
||
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
||
https://ogs.google.com
|
unknown
|
||
http://ns.useplus.org/ldf/xmp/1.0/
|
unknown
|
||
https://webmail.serendahsteel.com/cPanel_magic_revision_1463518546/unprotected/cpanel/images/notice-info.png
|
103.6.196.136
|
||
https://webmail.serendahsteel.com/cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/open_sans.min.css
|
103.6.196.136
|
||
https://webmail.serendahsteel.com/cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.woff
|
103.6.196.136
|
||
https://webmail.serendahsteel.com/cPanel_magic_revision_1463518546/unprotected/cpanel/images/notice-error.png
|
103.6.196.136
|
||
http://www.aiim.org/pdfa/ns/id/
|
unknown
|
||
http://www.aiim.org/pdfa/ns/property#8
|
unknown
|
||
http://iptc.org/std/Iptc4xmpExt/2008-02-29/
|
unknown
|
||
http://www.npes.org/pdfx/ns/id/6
|
unknown
|
||
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
216.58.215.238
|
||
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
142.250.203.109
|
||
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
||
https://i.imgur.com/VCmmJUv.png
|
151.101.112.193
|
||
http://v2.bpkbsaya.com/wp-includes/css/cPanel.SharePoint_documentOnline/redirecting.php2
|
unknown
|
||
http://iptc.org/std/Iptc4xmpCore/1.0/xmlns/
|
unknown
|
||
http://www.aiim.org/pdfe/ns/id/
|
unknown
|
||
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
|
unknown
|
||
http://cipa.jp/exif/1.0/1.0/
|
unknown
|
||
https://www.google.com/images/x2.gif
|
unknown
|
||
http://llvm.org/):
|
unknown
|
||
https://webmail.unitedyacht.com/cPanel_magic_revision_1386192030/unprotected/cpanel/fonts/open_sans/open_sans.min.css
|
72.9.144.117
|
||
https://www.google.com/images/dot2.gif
|
unknown
|
||
https://webmail.unitedyacht.com/cPanel_magic_revision_1547665285/unprotected/cpanel/images/icon-password.png
|
72.9.144.117
|
||
https://webmail.unitedyacht.com/cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.ttf
|
72.9.144.117
|
||
https://code.google.com/p/nativeclient/issues/entry%s:
|
unknown
|
||
http://v2.bpkbsaya.com/wp-includes/css/cPanel.SharePoint_documentOnline/redirecting.php
|
203.161.184.43
|
||
https://webmail.serendahsteel.com/cPanel_magic_revision_1463518546/unprotected/cpanel/images/icon-password.png
|
103.6.196.136
|
||
https://webmail.unitedyacht.com/cPanel_magic_revision_1547665285/unprotected/cpanel/images/icon-username.png
|
72.9.144.117
|
||
https://webmail.unitedyacht.com/cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/OpenSans-Bold-webfont.ttf
|
72.9.144.117
|
||
https://webmail.serendahsteel.com/cPanel_magic_revision_1463518546/unprotected/cpanel/images/icon-username.png
|
103.6.196.136
|
||
https://code.google.com/p/nativeclient/issues/entry
|
unknown
|
||
https://webmail.serendahsteel.com/cPanel_magic_revision_1463518546/unprotected/cpanel/images/webmail-logo.svg
|
103.6.196.136
|
||
http://www.aiim.org/pdfa/ns/field#
|
unknown
|
||
https://webmail.unitedyacht.com/cPanel_magic_revision_1458739301/unprotected/cpanel/images/webmail-logo.svg
|
72.9.144.117
|
||
https://webmail.serendahsteel.com/cPanel_magic_revision_1616517441/unprotected/cpanel/fonts/open_sans/OpenSans-Semibold-webfont.woff
|
103.6.196.136
|
||
https://PrefSyncJob/com.adobe.acrobat.ADotCom/Resource/Sync/
|
unknown
|
||
https://clients2.googleusercontent.com
|
unknown
|
||
http://www.quicktime.com.Acrobat
|
unknown
|
||
https://ims-na1.adobelogin.com
|
unknown
|
||
http://www.aiim.org/pdfa/ns/property#x(
|
unknown
|
||
https://PrefSyncJob/com.adobe.acrobat.ADotCom/Resource/Sync/ut
|
unknown
|
||
https://www.google.com/
|
unknown
|
||
https://webmail.serendahsteel.com/cPanel_magic_revision_1630269605/unprotected/cpanel/style_v2_optimized.css
|
103.6.196.136
|
||
https://chromium.googlesource.com/a/native_client/pnacl-clang.git
|
unknown
|
||
https://clients2.google.com/service/update2/crx
|
unknown
|
There are 77 hidden URLs, click here to show them.
Domains
Name
|
IP
|
Malicious
|
|
---|---|---|---|
webmail.serendahsteel.com
|
103.6.196.136
|
||
bpkbsaya.com
|
203.161.184.43
|
||
accounts.google.com
|
142.250.203.109
|
||
arthurperush.com
|
138.59.135.12
|
||
clients.l.google.com
|
216.58.215.238
|
||
v2.bpkbsaya.com
|
203.161.184.43
|
||
webmail.unitedyacht.com
|
72.9.144.117
|
||
ipv4.imgur.map.fastly.net
|
151.101.112.193
|
||
clients2.google.com
|
unknown
|
||
i.imgur.com
|
unknown
|
IPs
IP
|
Domain
|
Country
|
Malicious
|
|
---|---|---|---|---|
192.168.2.1
|
unknown
|
unknown
|
||
203.161.184.43
|
bpkbsaya.com
|
Indonesia
|
||
216.58.215.238
|
clients.l.google.com
|
United States
|
||
72.9.144.117
|
webmail.unitedyacht.com
|
United States
|
||
103.6.196.136
|
webmail.serendahsteel.com
|
Malaysia
|
||
138.59.135.12
|
arthurperush.com
|
Costa Rica
|
||
239.255.255.250
|
unknown
|
Reserved
|
||
151.101.112.193
|
ipv4.imgur.map.fastly.net
|
United States
|
||
127.0.0.1
|
unknown
|
unknown
|
||
142.250.203.109
|
accounts.google.com
|
United States
|
Registry
Path
|
Value
|
Malicious
|
|
---|---|---|---|
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral\cRecentFiles\c1
|
aFS
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral\cRecentFiles\c1
|
tDIText
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral\cRecentFiles\c1
|
tFileName
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral\cRecentFiles\c1
|
tFileSource
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral\cRecentFiles\c1
|
sFileAncestors
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral\cRecentFiles\c1
|
sDI
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral\cRecentFiles\c1
|
sDate
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral\cRecentFiles\c1
|
uFileSize
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral\cRecentFiles\c1
|
uPageCount
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral\cRecentFiles\c2
|
aFS
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral\cRecentFiles\c2
|
tDIText
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral\cRecentFiles\c2
|
tFileName
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral\cRecentFiles\c2
|
sFileAncestors
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral\cRecentFiles\c2
|
sDI
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral\cRecentFiles\c2
|
sDate
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\SessionManagement\cWindowsCurrent\cWin0\cTab0\cPathInfo
|
sDI
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\SessionManagement\cWindowsCurrent\cWin0\cTab0\cPathInfo
|
tDIText
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\SessionManagement\cWindowsCurrent\cWin0\cTab0\cPathInfo
|
aFS
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\SessionManagement\cWindowsCurrent\cWin0\cTab0
|
tfilename
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\SessionManagement\cWindowsCurrent\cWin0
|
iTabCount
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\SessionManagement\cWindowsCurrent
|
iWinCount
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral
|
aDefaultRHPViewModeL
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral
|
bExpandRHPInViewer
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\NoTimeOut
|
smailto
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\TrustManager\cDefaultLaunchURLPerms
|
tHostPerms
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\ExitSection
|
bLastExitNormal
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\SessionManagement
|
bNormalExit
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral
|
uLastAppLaunchTimeStamp
|
||
HKEY_CURRENT_USER\Software\Adobe\Acrobat Reader\DC\AVGeneral
|
iNumReaderLaunches
|
||
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
||
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
||
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
||
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
||
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Session Manager
|
PendingFileRenameOperations
|
||
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Session Manager
|
PendingFileRenameOperations
|
||
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Session Manager
|
PendingFileRenameOperations
|
||
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Session Manager
|
PendingFileRenameOperations
|
||
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\Session Manager
|
PendingFileRenameOperations
|
There are 68 hidden registries, click here to show them.
Memdumps
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
---|---|---|---|---|
AAB1000
|
unkown
|
page read and write
|
||
7538B7B000
|
stack
|
page read and write
|
||
ED82000
|
unkown
|
page read and write
|
||
BE40000
|
unkown
|
page read and write
|
||
BEB0000
|
unkown
|
page read and write
|
||
CD00000
|
unkown
|
page read and write
|
||
AD33000
|
unkown
|
page read and write
|
||
B240000
|
unkown
|
page read and write
|
||
22F47F34000
|
heap
|
page read and write
|
||
BCCD000
|
unkown
|
page read and write
|
||
1DE9928E000
|
heap
|
page read and write
|
||
BDD0000
|
unkown
|
page read and write
|
||
20D35DB3000
|
heap
|
page read and write
|
||
8F6F000
|
unkown
|
page read and write
|
||
BD40000
|
unkown
|
page read and write
|
||
1DE9E904000
|
heap
|
page read and write
|
||
D2D0000
|
unkown
|
page read and write
|
||
A2A2000
|
unkown
|
page read and write
|
||
B160000
|
unkown
|
page read and write
|
||
892D000
|
unkown
|
page read and write
|
||
1DE99258000
|
heap
|
page read and write
|
||
BE50000
|
unkown
|
page read and write
|
||
1DE9E8F4000
|
heap
|
page read and write
|
||
ACE6000
|
unkown
|
page read and write
|
||
8F40000
|
unkown
|
page readonly
|
||
4B354FC000
|
stack
|
page read and write
|
||
B130000
|
unkown
|
page read and write
|
||
ECEC000
|
unkown
|
page readonly
|
||
ED82000
|
unkown
|
page read and write
|
||
12D5000
|
heap
|
page read and write
|
||
BCCD000
|
unkown
|
page read and write
|
||
18EAF757000
|
heap
|
page read and write
|
||
22F47F45000
|
heap
|
page read and write
|
||
2B6AA7B000
|
stack
|
page read and write
|
||
BE10000
|
unkown
|
page read and write
|
||
21961202000
|
trusted library allocation
|
page read and write
|
||
21960A13000
|
heap
|
page read and write
|
||
A490000
|
unkown
|
page read and write
|
||
B3FD000
|
unkown
|
page read and write
|
||
22F487E0000
|
heap
|
page read and write
|
||
2333C448000
|
heap
|
page read and write
|
||
E7A287B000
|
stack
|
page read and write
|
||
ADE7000
|
unkown
|
page read and write
|
||
CD70000
|
unkown
|
page read and write
|
||
24625720000
|
heap
|
page read and write
|
||
B0C0000
|
unkown
|
page read and write
|
||
D210000
|
unkown
|
page read and write
|
||
8F3F000
|
unkown
|
page read and write
|
||
4CB0000
|
unkown
|
page execute read
|
||
ED08000
|
unkown
|
page readonly
|
||
224B8EE0000
|
heap
|
page read and write
|
||
4E60000
|
unkown
|
page readonly
|
||
B0F0000
|
unkown
|
page read and write
|
||
22F47F6D000
|
heap
|
page read and write
|
||
2328DEF3000
|
heap
|
page read and write
|
||
AB33000
|
unkown
|
page read and write
|
||
2328DE57000
|
heap
|
page read and write
|
||
224B9029000
|
heap
|
page read and write
|
||
B1D0000
|
unkown
|
page read and write
|
||
B300000
|
unkown
|
page read and write
|
||
4E10000
|
unkown
|
page readonly
|
||
B2B0000
|
unkown
|
page read and write
|
||
E7A29FF000
|
stack
|
page read and write
|
||
322597B000
|
stack
|
page read and write
|
||
7538BFF000
|
stack
|
page read and write
|
||
BB40000
|
unkown
|
page read and write
|
||
BE30000
|
unkown
|
page read and write
|
||
BDF0000
|
unkown
|
page read and write
|
||
4BD8000
|
stack
|
page read and write
|
||
1DE9E902000
|
heap
|
page read and write
|
||
D200000
|
unkown
|
page read and write
|
||
9FD5DFF000
|
stack
|
page read and write
|
||
18EAFF1B000
|
heap
|
page read and write
|
||
ACD7000
|
unkown
|
page read and write
|
||
A764000
|
unkown
|
page read and write
|
||
1DE9E740000
|
trusted library allocation
|
page read and write
|
||
BB30000
|
unkown
|
page read and write
|
||
246257D2000
|
heap
|
page read and write
|
||
4CD0000
|
unkown
|
page execute read
|
||
184D01A0000
|
heap
|
page read and write
|
||
A290000
|
unkown
|
page read and write
|
||
BDC0000
|
unkown
|
page read and write
|
||
B1B0000
|
unkown
|
page read and write
|
||
CE20000
|
unkown
|
page read and write
|
||
4DEA000
|
unkown
|
page read and write
|
||
17E7D1DD000
|
heap
|
page read and write
|
||
2333C44B000
|
heap
|
page read and write
|
||
BB10000
|
unkown
|
page read and write
|
||
AF84000
|
unkown
|
page read and write
|
||
1DE992A0000
|
heap
|
page read and write
|
||
22F47FEE000
|
heap
|
page read and write
|
||
2328DCB0000
|
heap
|
page read and write
|
||
BE90000
|
unkown
|
page read and write
|
||
2328DE00000
|
heap
|
page read and write
|
||
18EAFF13000
|
heap
|
page read and write
|
||
1A1D9081000
|
heap
|
page read and write
|
||
CD70000
|
unkown
|
page read and write
|
||
799000
|
unkown
|
page read and write
|
||
18EAEEAA000
|
heap
|
page read and write
|
||
1908C830000
|
heap
|
page read and write
|
||
2328E79D000
|
heap
|
page read and write
|
||
8E3D000
|
unkown
|
page read and write
|
||
4BDC000
|
stack
|
page read and write
|
||
ADC21FF000
|
stack
|
page read and write
|
||
A9EB000
|
unkown
|
page read and write
|
||
184D02C1000
|
heap
|
page read and write
|
||
2328DEE8000
|
heap
|
page read and write
|
||
A86F000
|
unkown
|
page read and write
|
||
A350000
|
unkown
|
page read and write
|
||
9FD5B7E000
|
stack
|
page read and write
|
||
D88B000
|
unkown
|
page read and write
|
||
1DE9E671000
|
trusted library allocation
|
page read and write
|
||
B340000
|
unkown
|
page read and write
|
||
A8D7000
|
unkown
|
page read and write
|
||
A8DB000
|
unkown
|
page read and write
|
||
1DE9E844000
|
heap
|
page read and write
|
||
4B3527E000
|
stack
|
page read and write
|
||
BE40000
|
unkown
|
page read and write
|
||
BE40000
|
unkown
|
page read and write
|
||
22F47F45000
|
heap
|
page read and write
|
||
ACD7000
|
unkown
|
page read and write
|
||
224B904F000
|
heap
|
page read and write
|
||
4E93000
|
unkown
|
page read and write
|
||
21960980000
|
heap
|
page read and write
|
||
BEA0000
|
unkown
|
page read and write
|
||
C96F000
|
unkown
|
page read and write
|
||
4DD0000
|
unkown
|
page execute read
|
||
D2A0000
|
unkown
|
page read and write
|
||
8A30000
|
unkown
|
page read and write
|
||
1EC24829000
|
heap
|
page read and write
|
||
8CBE000
|
unkown
|
page read and write
|
||
727EDFA000
|
stack
|
page read and write
|
||
A9D8000
|
unkown
|
page read and write
|
||
18EAEE2E000
|
heap
|
page read and write
|
||
B051000
|
unkown
|
page read and write
|
||
1908C850000
|
heap
|
page read and write
|
||
1908C845000
|
heap
|
page read and write
|
||
1DE99900000
|
heap
|
page read and write
|
||
BE70000
|
unkown
|
page read and write
|
||
4F0E000
|
unkown
|
page read and write
|
||
113C000
|
stack
|
page read and write
|
||
17E7D198000
|
heap
|
page read and write
|
||
B110000
|
unkown
|
page read and write
|
||
18EAECA0000
|
heap
|
page read and write
|
||
C0BBD78000
|
stack
|
page read and write
|
||
224B9013000
|
heap
|
page read and write
|
||
12B8000
|
heap
|
page read and write
|
||
26568500000
|
heap
|
page read and write
|
||
2B6AFFE000
|
stack
|
page read and write
|
||
C203000
|
unkown
|
page read and write
|
||
2328EC00000
|
heap
|
page read and write
|
||
1908C87A000
|
heap
|
page read and write
|
||
38AA7FC000
|
stack
|
page read and write
|
||
2333C467000
|
heap
|
page read and write
|
||
BEA0000
|
unkown
|
page read and write
|
||
ED5B000
|
unkown
|
page read and write
|
||
17E7E030000
|
trusted library allocation
|
page read and write
|
||
B290000
|
unkown
|
page read and write
|
||
18EAEE73000
|
heap
|
page read and write
|
||
38AACFD000
|
stack
|
page read and write
|
||
B2A0000
|
unkown
|
page read and write
|
||
2333C500000
|
heap
|
page read and write
|
||
1908C82F000
|
heap
|
page read and write
|
||
CCE0000
|
unkown
|
page read and write
|
||
184D0B14000
|
heap
|
page read and write
|
||
2328E75A000
|
heap
|
page read and write
|
||
4C00000
|
unkown
|
page execute read
|
||
A92A000
|
unkown
|
page read and write
|
||
A69E000
|
unkown
|
page read and write
|
||
D89B000
|
unkown
|
page read and write
|
||
21960920000
|
heap
|
page read and write
|
||
AA0F000
|
unkown
|
page read and write
|
||
78000
|
unkown
|
page read and write
|
||
ECE6000
|
unkown
|
page readonly
|
||
A360000
|
unkown
|
page read and write
|
||
184D0140000
|
heap
|
page read and write
|
||
51E0000
|
unkown
|
page readonly
|
||
2328DEEB000
|
heap
|
page read and write
|
||
1908C877000
|
heap
|
page read and write
|
||
BB60000
|
unkown
|
page read and write
|
||
1DE9E8AA000
|
heap
|
page read and write
|
||
A3AF000
|
unkown
|
page read and write
|
||
22F47DE0000
|
heap
|
page read and write
|
||
1908C840000
|
heap
|
page read and write
|
||
1A1D9042000
|
heap
|
page read and write
|
||
4DEA000
|
unkown
|
page read and write
|
||
1DE9E862000
|
heap
|
page read and write
|
||
20D35C60000
|
heap
|
page read and write
|
||
5EF000
|
stack
|
page read and write
|
||
AD33000
|
unkown
|
page read and write
|
||
B2B0000
|
unkown
|
page read and write
|
||
1DE99302000
|
heap
|
page read and write
|
||
7CCA7E000
|
stack
|
page read and write
|
||
D5FD000
|
unkown
|
page read and write
|
||
22F47F41000
|
heap
|
page read and write
|
||
2B6AAFE000
|
stack
|
page read and write
|
||
1DE99815000
|
heap
|
page read and write
|
||
2328E7A8000
|
heap
|
page read and write
|
||
773D000
|
unkown
|
page read and write
|
||
1DE9E8D9000
|
heap
|
page read and write
|
||
246257AB000
|
heap
|
page read and write
|
||
A9D8000
|
unkown
|
page read and write
|
||
2333C449000
|
heap
|
page read and write
|
||
4EE0000
|
unkown
|
page read and write
|
||
A5D8000
|
unkown
|
page read and write
|
||
D250000
|
unkown
|
page read and write
|
||
CCA0000
|
unkown
|
page readonly
|
||
76D0000
|
unkown
|
page readonly
|
||
4B3547F000
|
stack
|
page read and write
|
||
BB10000
|
unkown
|
page read and write
|
||
B0E0000
|
unkown
|
page read and write
|
||
4E10000
|
unkown
|
page readonly
|
||
184D0313000
|
heap
|
page read and write
|
||
727ECFF000
|
stack
|
page read and write
|
||
8E3D000
|
unkown
|
page read and write
|
||
22F487E2000
|
heap
|
page read and write
|
||
184D0A02000
|
heap
|
page read and write
|
||
B3BF000
|
unkown
|
page read and write
|
||
1331CFD000
|
stack
|
page read and write
|
||
1908C83F000
|
heap
|
page read and write
|
||
8AC4000
|
unkown
|
page read and write
|
||
1697CFE000
|
stack
|
page read and write
|
||
2328E78B000
|
heap
|
page read and write
|
||
4F2B000
|
unkown
|
page read and write
|
||
6870000
|
unkown
|
page read and write
|
||
BAFF000
|
unkown
|
page read and write
|
||
20D35FB5000
|
heap
|
page read and write
|
||
1DE9E67A000
|
trusted library allocation
|
page read and write
|
||
2328E7C4000
|
heap
|
page read and write
|
||
1DE9E6B0000
|
trusted library allocation
|
page read and write
|
||
A9EB000
|
unkown
|
page read and write
|
||
1DE99313000
|
heap
|
page read and write
|
||
BE20000
|
unkown
|
page read and write
|
||
1DE99959000
|
heap
|
page read and write
|
||
79C000
|
unkown
|
page read and write
|
||
18EAEF9D000
|
heap
|
page read and write
|
||
2328DF16000
|
heap
|
page read and write
|
||
B0B0000
|
unkown
|
page read and write
|
||
246257F2000
|
heap
|
page read and write
|
||
BD60000
|
unkown
|
page read and write
|
||
7B000
|
unkown
|
page readonly
|
||
ED3B000
|
unkown
|
page read and write
|
||
AE27000
|
unkown
|
page read and write
|
||
B250000
|
unkown
|
page read and write
|
||
7B7000
|
unkown
|
page read and write
|
||
BE00000
|
unkown
|
page read and write
|
||
FF240000
|
unkown
|
page readonly
|
||
BD10000
|
unkown
|
page read and write
|
||
B310000
|
unkown
|
page read and write
|
||
CD30000
|
unkown
|
page read and write
|
||
ECD0000
|
unkown
|
page readonly
|
||
20D35DAC000
|
heap
|
page read and write
|
||
ED4C000
|
unkown
|
page read and write
|
||
1A1D8FC0000
|
trusted library allocation
|
page read and write
|
||
1EC246D0000
|
heap
|
page read and write
|
||
2328DEC0000
|
heap
|
page read and write
|
||
ED35000
|
unkown
|
page read and write
|
||
67000
|
unkown
|
page readonly
|
||
ECFB000
|
unkown
|
page readonly
|
||
ED4A000
|
unkown
|
page read and write
|
||
224B9072000
|
heap
|
page read and write
|
||
B3B0000
|
unkown
|
page read and write
|
||
CDF0000
|
unkown
|
page read and write
|
||
A8D9000
|
unkown
|
page read and write
|
||
155596A0000
|
heap
|
page read and write
|
||
1EC24802000
|
heap
|
page read and write
|
||
1EC2485A000
|
heap
|
page read and write
|
||
E7A2977000
|
stack
|
page read and write
|
||
2328DF08000
|
heap
|
page read and write
|
||
B310000
|
unkown
|
page read and write
|
||
4E80000
|
unkown
|
page read and write
|
||
14AE000
|
stack
|
page read and write
|
||
1A1D8EC0000
|
heap
|
page read and write
|
||
184D02E0000
|
heap
|
page read and write
|
||
BD50000
|
unkown
|
page read and write
|
||
2328DE13000
|
heap
|
page read and write
|
||
ED17000
|
unkown
|
page readonly
|
||
A42C000
|
unkown
|
page read and write
|
||
5EF000
|
stack
|
page read and write
|
||
1A1D9000000
|
heap
|
page read and write
|
||
18EAEC90000
|
heap
|
page read and write
|
||
2328E7A3000
|
heap
|
page read and write
|
||
21960B13000
|
heap
|
page read and write
|
||
A3AF000
|
unkown
|
page read and write
|
||
ED50000
|
unkown
|
page read and write
|
||
A953000
|
unkown
|
page read and write
|
||
20D35D73000
|
heap
|
page read and write
|
||
A65C000
|
unkown
|
page read and write
|
||
CD60000
|
unkown
|
page read and write
|
||
BC60000
|
unkown
|
page read and write
|
||
2328DE52000
|
heap
|
page read and write
|
||
4C90000
|
unkown
|
page execute read
|
||
9FD5A7E000
|
stack
|
page read and write
|
||
8AC4000
|
unkown
|
page read and write
|
||
B150000
|
unkown
|
page read and write
|
||
5360000
|
unkown
|
page readonly
|
||
CDB0000
|
unkown
|
page read and write
|
||
799000
|
unkown
|
page read and write
|
||
18EAEEC9000
|
heap
|
page read and write
|
||
7B000
|
unkown
|
page readonly
|
||
BD70000
|
unkown
|
page read and write
|
||
22F47F45000
|
heap
|
page read and write
|
||
1908C844000
|
heap
|
page read and write
|
||
1DE98FB0000
|
heap
|
page read and write
|
||
4BDF000
|
stack
|
page read and write
|
||
8B50000
|
unkown
|
page readonly
|
||
88EF000
|
unkown
|
page read and write
|
||
ED68000
|
unkown
|
page read and write
|
||
A890000
|
unkown
|
page read and write
|
||
CCC0000
|
unkown
|
page read and write
|
||
22F47F97000
|
heap
|
page read and write
|
||
20D35DAE000
|
heap
|
page read and write
|
||
8A30000
|
unkown
|
page read and write
|
||
20D35DAC000
|
heap
|
page read and write
|
||
B170000
|
unkown
|
page read and write
|
||
1908C87B000
|
heap
|
page read and write
|
||
67000
|
unkown
|
page readonly
|
||
1DE99279000
|
heap
|
page read and write
|
||
1908C847000
|
heap
|
page read and write
|
||
6E10000
|
unkown
|
page readonly
|
||
20D35DAB000
|
heap
|
page read and write
|
||
20D35B00000
|
heap
|
page read and write
|
||
E7A235B000
|
stack
|
page read and write
|
||
815FC8B000
|
stack
|
page read and write
|
||
7538AFE000
|
stack
|
page read and write
|
||
2328E7B4000
|
heap
|
page read and write
|
||
D7F4000
|
unkown
|
page read and write
|
||
B1B0000
|
unkown
|
page read and write
|
||
1908C838000
|
heap
|
page read and write
|
||
1A1D9078000
|
heap
|
page read and write
|
||
1908C863000
|
heap
|
page read and write
|
||
1A1D9048000
|
heap
|
page read and write
|
||
1DE9E67B000
|
trusted library allocation
|
page read and write
|
||
B290000
|
unkown
|
page read and write
|
||
2328E797000
|
heap
|
page read and write
|
||
26568520000
|
heap
|
page read and write
|
||
ED08000
|
unkown
|
page readonly
|
||
2328DF13000
|
heap
|
page read and write
|
||
CCF0000
|
unkown
|
page read and write
|
||
224B9108000
|
heap
|
page read and write
|
||
2333C461000
|
heap
|
page read and write
|
||
2328DE54000
|
heap
|
page read and write
|
||
224B9802000
|
trusted library allocation
|
page read and write
|
||
8A4D000
|
unkown
|
page read and write
|
||
17E7DD50000
|
trusted library allocation
|
page read and write
|
||
C190000
|
unkown
|
page execute read
|
||
AE06000
|
unkown
|
page read and write
|
||
4E93000
|
unkown
|
page read and write
|
||
9030000
|
unkown
|
page read and write
|
||
A8E3000
|
unkown
|
page read and write
|
||
800000
|
unkown
|
page readonly
|
||
18EAEEC0000
|
heap
|
page read and write
|
||
2328EC02000
|
heap
|
page read and write
|
||
816027B000
|
stack
|
page read and write
|
||
ED5B000
|
unkown
|
page read and write
|
||
D700000
|
unkown
|
page read and write
|
||
B230000
|
unkown
|
page read and write
|
||
17E7E020000
|
trusted library allocation
|
page read and write
|
||
18EAEE95000
|
heap
|
page read and write
|
||
2328DCC0000
|
heap
|
page read and write
|
||
4EEB000
|
unkown
|
page read and write
|
||
41000
|
unkown
|
page execute read
|
||
4CD0000
|
unkown
|
page execute read
|
||
5440000
|
unkown
|
page readonly
|
||
A8F1000
|
unkown
|
page read and write
|
||
1DE9E513000
|
trusted library allocation
|
page read and write
|
||
B051000
|
unkown
|
page read and write
|
||
22F47FF6000
|
heap
|
page read and write
|
||
A8F1000
|
unkown
|
page read and write
|
||
1908C802000
|
heap
|
page read and write
|
||
4E93000
|
unkown
|
page read and write
|
||
1DE9E800000
|
heap
|
page read and write
|
||
B370000
|
unkown
|
page read and write
|
||
8AC2000
|
unkown
|
page read and write
|
||
A350000
|
unkown
|
page read and write
|
||
4E80000
|
unkown
|
page read and write
|
||
B9BF000
|
unkown
|
page read and write
|
||
18EAF713000
|
heap
|
page read and write
|
||
ADC24FE000
|
stack
|
page read and write
|
||
BCD0000
|
unkown
|
page read and write
|
||
4DEA000
|
unkown
|
page read and write
|
||
A998000
|
unkown
|
page read and write
|
||
1908C883000
|
heap
|
page read and write
|
||
219609B0000
|
trusted library allocation
|
page read and write
|
||
A5D8000
|
unkown
|
page read and write
|
||
B1B0000
|
unkown
|
page read and write
|
||
1C1E000
|
stack
|
page read and write
|
||
BB60000
|
unkown
|
page read and write
|
||
A8DD000
|
unkown
|
page read and write
|
||
BD10000
|
unkown
|
page read and write
|
||
BE20000
|
unkown
|
page read and write
|
||
B3ED000
|
unkown
|
page read and write
|
||
2328E7CC000
|
heap
|
page read and write
|
||
D2B0000
|
unkown
|
page read and write
|
||
26568540000
|
heap
|
page read and write
|
||
A764000
|
unkown
|
page read and write
|
||
22F47FA9000
|
heap
|
page read and write
|
||
C180000
|
unkown
|
page readonly
|
||
1DE9E4F0000
|
trusted library allocation
|
page read and write
|
||
B3AD000
|
unkown
|
page read and write
|
||
1A1D9029000
|
heap
|
page read and write
|
||
B200000
|
unkown
|
page read and write
|
||
CE40000
|
unkown
|
page read and write
|
||
15559902000
|
heap
|
page read and write
|
||
B8BD000
|
unkown
|
page read and write
|
||
A92A000
|
unkown
|
page read and write
|
||
51E0000
|
unkown
|
page readonly
|
||
727E8AB000
|
stack
|
page read and write
|
||
1DE9E67E000
|
trusted library allocation
|
page read and write
|
||
B350000
|
unkown
|
page read and write
|
||
4F2B000
|
unkown
|
page read and write
|
||
18EAEE00000
|
heap
|
page read and write
|
||
AA2D000
|
unkown
|
page read and write
|
||
ED59000
|
unkown
|
page read and write
|
||
A4D0000
|
unkown
|
page read and write
|
||
D846000
|
unkown
|
page read and write
|
||
4DE0000
|
unkown
|
page read and write
|
||
2328E7D8000
|
heap
|
page read and write
|
||
20D35D58000
|
heap
|
page read and write
|
||
B220000
|
unkown
|
page read and write
|
||
ED64000
|
unkown
|
page read and write
|
||
1908C829000
|
heap
|
page read and write
|
||
1697AF9000
|
stack
|
page read and write
|
||
8EA887B000
|
stack
|
page read and write
|
||
8CFE000
|
unkown
|
page read and write
|
||
A764000
|
unkown
|
page read and write
|
||
BE70000
|
unkown
|
page read and write
|
||
18EAEE4F000
|
heap
|
page read and write
|
||
CD50000
|
unkown
|
page read and write
|
||
18EAEEBD000
|
heap
|
page read and write
|
||
ECE6000
|
unkown
|
page readonly
|
||
4EA0000
|
unkown
|
page read and write
|
||
ACC8000
|
unkown
|
page read and write
|
||
18EAF731000
|
heap
|
page read and write
|
||
AB53000
|
unkown
|
page read and write
|
||
8EA86FD000
|
stack
|
page read and write
|
||
AF56000
|
unkown
|
page read and write
|
||
B3C7000
|
unkown
|
page read and write
|
||
4DE0000
|
unkown
|
page read and write
|
||
816057C000
|
stack
|
page read and write
|
||
1DE99010000
|
heap
|
page read and write
|
||
A7CD000
|
unkown
|
page read and write
|
||
AC2A000
|
unkown
|
page read and write
|
||
1DE991E0000
|
trusted library allocation
|
page read and write
|
||
1908C866000
|
heap
|
page read and write
|
||
D09D000
|
unkown
|
page read and write
|
||
18EAEEA4000
|
heap
|
page read and write
|
||
A9DD000
|
unkown
|
page read and write
|
||
1DE99959000
|
heap
|
page read and write
|
||
727F27E000
|
stack
|
page read and write
|
||
4DF0000
|
unkown
|
page readonly
|
||
1908C879000
|
heap
|
page read and write
|
||
4E20000
|
unkown
|
page readonly
|
||
A554000
|
unkown
|
page read and write
|
||
8A2F000
|
unkown
|
page read and write
|
||
2333C508000
|
heap
|
page read and write
|
||
B250000
|
unkown
|
page read and write
|
||
A490000
|
unkown
|
page read and write
|
||
ADAB000
|
unkown
|
page read and write
|
||
A554000
|
unkown
|
page read and write
|
||
4EE0000
|
unkown
|
page read and write
|
||
1908C84A000
|
heap
|
page read and write
|
||
169739C000
|
stack
|
page read and write
|
||
4DD0000
|
unkown
|
page execute read
|
||
15559829000
|
heap
|
page read and write
|
||
ADAB000
|
unkown
|
page read and write
|
||
21960B02000
|
heap
|
page read and write
|
||
8F3F000
|
unkown
|
page read and write
|
||
1DE99200000
|
heap
|
page read and write
|
||
B3A7000
|
unkown
|
page read and write
|
||
C1DD000
|
unkown
|
page read and write
|
||
4EEB000
|
unkown
|
page read and write
|
||
BDE0000
|
unkown
|
page read and write
|
||
A9E3000
|
unkown
|
page read and write
|
||
CD90000
|
unkown
|
page read and write
|
||
7CC477000
|
stack
|
page read and write
|
||
4E30000
|
unkown
|
page read and write
|
||
2328E540000
|
remote allocation
|
page read and write
|
||
B429000
|
unkown
|
page read and write
|
||
8E3D000
|
unkown
|
page read and write
|
||
CE00000
|
unkown
|
page read and write
|
||
ECD5000
|
unkown
|
page readonly
|
||
4C00000
|
unkown
|
page execute read
|
||
2C64C7A000
|
stack
|
page read and write
|
||
B190000
|
unkown
|
page read and write
|
||
B250000
|
unkown
|
page read and write
|
||
B200000
|
unkown
|
page read and write
|
||
1DE99B81000
|
trusted library allocation
|
page read and write
|
||
20D35D91000
|
heap
|
page read and write
|
||
8CFE000
|
unkown
|
page read and write
|
||
1DE9E694000
|
trusted library allocation
|
page read and write
|
||
21960A02000
|
heap
|
page read and write
|
||
5440000
|
unkown
|
page readonly
|
||
BE60000
|
unkown
|
page read and write
|
||
18EAEE37000
|
heap
|
page read and write
|
||
799000
|
unkown
|
page read and write
|
||
892D000
|
unkown
|
page read and write
|
||
ADC1DFC000
|
stack
|
page read and write
|
||
D6FE000
|
unkown
|
page read and write
|
||
2328E7A3000
|
heap
|
page read and write
|
||
A998000
|
unkown
|
page read and write
|
||
AC40000
|
unkown
|
page read and write
|
||
BD00000
|
unkown
|
page read and write
|
||
2328E785000
|
heap
|
page read and write
|
||
ECF9000
|
unkown
|
page readonly
|
||
B0E0000
|
unkown
|
page read and write
|
||
7B7000
|
unkown
|
page read and write
|
||
AD33000
|
unkown
|
page read and write
|
||
224B9102000
|
heap
|
page read and write
|
||
9030000
|
unkown
|
page read and write
|
||
AA0F000
|
unkown
|
page read and write
|
||
D35D000
|
unkown
|
page read and write
|
||
21960A60000
|
heap
|
page read and write
|
||
1DE99F63000
|
trusted library allocation
|
page read and write
|
||
8A74000
|
unkown
|
page read and write
|
||
ACFD000
|
unkown
|
page read and write
|
||
ECDB000
|
unkown
|
page readonly
|
||
20D35DAC000
|
heap
|
page read and write
|
||
246257C6000
|
heap
|
page read and write
|
||
6850000
|
unkown
|
page read and write
|
||
2328E797000
|
heap
|
page read and write
|
||
E7A2AFF000
|
stack
|
page read and write
|
||
ED04000
|
unkown
|
page readonly
|
||
ECDB000
|
unkown
|
page readonly
|
||
1DE9E670000
|
trusted library allocation
|
page read and write
|
||
B1A0000
|
unkown
|
page read and write
|
||
7CCD7F000
|
stack
|
page read and write
|
||
1A1D904F000
|
heap
|
page read and write
|
||
BD00000
|
unkown
|
page read and write
|
||
783F000
|
unkown
|
page read and write
|
||
21960A3C000
|
heap
|
page read and write
|
||
A8D7000
|
unkown
|
page read and write
|
||
6E10000
|
unkown
|
page readonly
|
||
B320000
|
unkown
|
page read and write
|
||
6870000
|
unkown
|
page read and write
|
||
1A1D9049000
|
heap
|
page read and write
|
||
B3F9000
|
unkown
|
page read and write
|
||
C203000
|
unkown
|
page read and write
|
||
1DE9E560000
|
trusted library allocation
|
page read and write
|
||
BB60000
|
unkown
|
page read and write
|
||
4DE5000
|
unkown
|
page read and write
|
||
22F47FEE000
|
heap
|
page read and write
|
||
2328EC03000
|
heap
|
page read and write
|
||
AE08000
|
unkown
|
page read and write
|
||
20D35DAE000
|
heap
|
page read and write
|
||
246257A0000
|
heap
|
page read and write
|
||
8CFE000
|
unkown
|
page read and write
|
||
A512000
|
unkown
|
page read and write
|
||
1908C875000
|
heap
|
page read and write
|
||
2333CB30000
|
trusted library allocation
|
page read and write
|
||
17E7D179000
|
heap
|
page read and write
|
||
18EAF490000
|
trusted library allocation
|
page read and write
|
||
22F47F65000
|
heap
|
page read and write
|
||
CDE0000
|
unkown
|
page read and write
|
||
AE1B000
|
unkown
|
page read and write
|
||
5360000
|
unkown
|
page readonly
|
||
88EF000
|
unkown
|
page read and write
|
||
B8BD000
|
unkown
|
page read and write
|
||
816017F000
|
stack
|
page read and write
|
||
B429000
|
unkown
|
page read and write
|
||
4EA0000
|
unkown
|
page read and write
|
||
20AF000
|
stack
|
page read and write
|
||
2328E75B000
|
heap
|
page read and write
|
||
21960A00000
|
heap
|
page read and write
|
||
BB20000
|
unkown
|
page read and write
|
||
B100000
|
unkown
|
page read and write
|
||
9020000
|
unkown
|
page read and write
|
||
1DE9E855000
|
heap
|
page read and write
|
||
18EAEDF0000
|
trusted library allocation
|
page read and write
|
||
CD10000
|
unkown
|
page read and write
|
||
1EC24660000
|
heap
|
page read and write
|
||
2328E770000
|
heap
|
page read and write
|
||
D2F0000
|
unkown
|
page read and write
|
||
20D35D8D000
|
heap
|
page read and write
|
||
1DE99918000
|
heap
|
page read and write
|
||
1DE98FA0000
|
heap
|
page read and write
|
||
2333C488000
|
heap
|
page read and write
|
||
1908C902000
|
heap
|
page read and write
|
||
22F47F65000
|
heap
|
page read and write
|
||
A2A2000
|
unkown
|
page read and write
|
||
C0BB33B000
|
stack
|
page read and write
|
||
AA2D000
|
unkown
|
page read and write
|
||
17E7D360000
|
trusted library allocation
|
page read and write
|
||
18EAEE9C000
|
heap
|
page read and write
|
||
B8BD000
|
unkown
|
page read and write
|
||
AB53000
|
unkown
|
page read and write
|
||
ED22000
|
unkown
|
page readonly
|
||
1180000
|
heap
|
page read and write
|
||
B0B0000
|
unkown
|
page read and write
|
||
796000
|
unkown
|
page read and write
|
||
8AC2000
|
unkown
|
page read and write
|
||
184D0302000
|
heap
|
page read and write
|
||
B340000
|
unkown
|
page read and write
|
||
1DE9A1A0000
|
trusted library section
|
page readonly
|
||
E7CF000
|
unkown
|
page read and write
|
||
7CC67A000
|
stack
|
page read and write
|
||
2328E7C7000
|
heap
|
page read and write
|
||
2328EC02000
|
heap
|
page read and write
|
||
38AA97E000
|
stack
|
page read and write
|
||
4CB0000
|
unkown
|
page execute read
|
||
4E30000
|
unkown
|
page read and write
|
||
17E7D0C0000
|
trusted library allocation
|
page read and write
|
||
2328EC02000
|
heap
|
page read and write
|
||
727EEFE000
|
stack
|
page read and write
|
||
22F47FA9000
|
heap
|
page read and write
|
||
1908D002000
|
trusted library allocation
|
page read and write
|
||
B200000
|
unkown
|
page read and write
|
||
CD10000
|
unkown
|
page read and write
|
||
246257C3000
|
heap
|
page read and write
|
||
4DF0000
|
unkown
|
page readonly
|
||
22F47F87000
|
heap
|
page read and write
|
||
4E10000
|
unkown
|
page readonly
|
||
A722000
|
unkown
|
page read and write
|
||
8AC2000
|
unkown
|
page read and write
|
||
8A2F000
|
unkown
|
page read and write
|
||
A3B7000
|
unkown
|
page read and write
|
||
790000
|
unkown
|
page read and write
|
||
727F1FA000
|
stack
|
page read and write
|
||
17E7D190000
|
heap
|
page read and write
|
||
A65C000
|
unkown
|
page read and write
|
||
AB33000
|
unkown
|
page read and write
|
||
1DE9A190000
|
trusted library section
|
page readonly
|
||
6850000
|
unkown
|
page read and write
|
||
A8DD000
|
unkown
|
page read and write
|
||
BD40000
|
unkown
|
page read and write
|
||
CF9D000
|
unkown
|
page read and write
|
||
1DE9E813000
|
heap
|
page read and write
|
||
81600FC000
|
stack
|
page read and write
|
||
76E0000
|
unkown
|
page read and write
|
||
1DE99276000
|
heap
|
page read and write
|
||
4BD8000
|
stack
|
page read and write
|
||
AD3B000
|
unkown
|
page read and write
|
||
4F0E000
|
unkown
|
page read and write
|
||
4C00000
|
unkown
|
page execute read
|
||
4E70000
|
unkown
|
page read and write
|
||
87ED000
|
unkown
|
page read and write
|
||
88EF000
|
unkown
|
page read and write
|
||
4DE5000
|
unkown
|
page read and write
|
||
7CCB7F000
|
stack
|
page read and write
|
||
2328E78F000
|
heap
|
page read and write
|
||
D19E000
|
unkown
|
page read and write
|
||
17E7D1A1000
|
heap
|
page read and write
|
||
C190000
|
unkown
|
page execute read
|
||
ED5F000
|
unkown
|
page read and write
|
||
38AAB7D000
|
stack
|
page read and write
|
||
4ED0000
|
unkown
|
page readonly
|
||
B280000
|
unkown
|
page read and write
|
||
18EAEEC0000
|
heap
|
page read and write
|
||
ECF9000
|
unkown
|
page readonly
|
||
22F47F87000
|
heap
|
page read and write
|
||
BD90000
|
unkown
|
page read and write
|
||
9FD5D7E000
|
stack
|
page read and write
|
||
184D02BA000
|
heap
|
page read and write
|
||
1A1D9052000
|
heap
|
page read and write
|
||
1EC24875000
|
heap
|
page read and write
|
||
A596000
|
unkown
|
page read and write
|
||
ED3B000
|
unkown
|
page read and write
|
||
CCA0000
|
unkown
|
page readonly
|
||
CD60000
|
unkown
|
page read and write
|
||
2328DF02000
|
heap
|
page read and write
|
||
18EAF70B000
|
heap
|
page read and write
|
||
A9E3000
|
unkown
|
page read and write
|
||
1DE9E8F9000
|
heap
|
page read and write
|
||
38AA87F000
|
stack
|
page read and write
|
||
2328DE70000
|
heap
|
page read and write
|
||
B230000
|
unkown
|
page read and write
|
||
8DFC000
|
unkown
|
page read and write
|
||
17E7D1D5000
|
heap
|
page read and write
|
||
18EAFE6C000
|
heap
|
page read and write
|
||
2328DD20000
|
heap
|
page read and write
|
||
AE08000
|
unkown
|
page read and write
|
||
DB0000
|
heap
|
page read and write
|
||
B3ED000
|
unkown
|
page read and write
|
||
B2D0000
|
unkown
|
page read and write
|
||
1908C800000
|
heap
|
page read and write
|
||
6870000
|
unkown
|
page read and write
|
||
B1D0000
|
unkown
|
page read and write
|
||
4DF0000
|
unkown
|
page readonly
|
||
22F47F41000
|
heap
|
page read and write
|
||
D300000
|
unkown
|
page read and write
|
||
1DE9A170000
|
trusted library section
|
page readonly
|
||
B0C0000
|
unkown
|
page read and write
|
||
17E7D0B0000
|
heap
|
page read and write
|
||
1DE99229000
|
heap
|
page read and write
|
||
1DE99959000
|
heap
|
page read and write
|
||
810000
|
unkown
|
page readonly
|
||
1DE99959000
|
heap
|
page read and write
|
||
20D35D74000
|
heap
|
page read and write
|
||
D270000
|
unkown
|
page read and write
|
||
1DE9927B000
|
heap
|
page read and write
|
||
2328E715000
|
heap
|
page read and write
|
||
BE80000
|
unkown
|
page read and write
|
||
1DE99918000
|
heap
|
page read and write
|
||
B2C0000
|
unkown
|
page read and write
|
||
38AABFE000
|
stack
|
page read and write
|
||
ADC17BB000
|
stack
|
page read and write
|
||
BE50000
|
unkown
|
page read and write
|
||
CE10000
|
unkown
|
page read and write
|
||
18EAEEAE000
|
heap
|
page read and write
|
||
B3B0000
|
unkown
|
page read and write
|
||
4EEB000
|
unkown
|
page read and write
|
||
16977FE000
|
stack
|
page read and write
|
||
22F47F00000
|
heap
|
page read and write
|
||
B3FD000
|
unkown
|
page read and write
|
||
CD90000
|
unkown
|
page read and write
|
||
9030000
|
unkown
|
page read and write
|
||
129E000
|
stack
|
page read and write
|
||
2333C424000
|
heap
|
page read and write
|
||
2328EC02000
|
heap
|
page read and write
|
||
BDA0000
|
unkown
|
page read and write
|
||
B2D0000
|
unkown
|
page read and write
|
||
B230000
|
unkown
|
page read and write
|
||
A8E9000
|
unkown
|
page read and write
|
||
820000
|
unkown
|
page read and write
|
||
22F47CA0000
|
heap
|
page read and write
|
||
892D000
|
unkown
|
page read and write
|
||
246256A0000
|
heap
|
page read and write
|
||
D250000
|
unkown
|
page read and write
|
||
18EAEFFC000
|
heap
|
page read and write
|
||
4DE0000
|
unkown
|
page read and write
|
||
22F47F45000
|
heap
|
page read and write
|
||
1331A7C000
|
stack
|
page read and write
|
||
BD80000
|
unkown
|
page read and write
|
||
CD80000
|
unkown
|
page read and write
|
||
AC40000
|
unkown
|
page read and write
|
||
773D000
|
unkown
|
page read and write
|
||
B1E0000
|
unkown
|
page read and write
|
||
22F47F41000
|
heap
|
page read and write
|
||
B3FD000
|
unkown
|
page read and write
|
||
ACC8000
|
unkown
|
page read and write
|
||
AB33000
|
unkown
|
page read and write
|
||
2328DEEB000
|
heap
|
page read and write
|
||
B2F0000
|
unkown
|
page read and write
|
||
75386BC000
|
stack
|
page read and write
|
||
B2C0000
|
unkown
|
page read and write
|
||
8F3F000
|
unkown
|
page read and write
|
||
17E7DDB0000
|
trusted library allocation
|
page read and write
|
||
2328E78B000
|
heap
|
page read and write
|
||
20D35D8C000
|
heap
|
page read and write
|
||
ACCF000
|
unkown
|
page read and write
|
||
8B50000
|
unkown
|
page readonly
|
||
8EA8A77000
|
stack
|
page read and write
|
||
ED77000
|
unkown
|
page read and write
|
||
A6E0000
|
unkown
|
page read and write
|
||
BE60000
|
unkown
|
page read and write
|
||
ACFD000
|
unkown
|
page read and write
|
||
D290000
|
unkown
|
page read and write
|
||
4E34000
|
unkown
|
page read and write
|
||
BCF0000
|
unkown
|
page read and write
|
||
ADE7000
|
unkown
|
page read and write
|
||
4BDC000
|
stack
|
page read and write
|
||
2328E797000
|
heap
|
page read and write
|
||
2333C447000
|
heap
|
page read and write
|
||
ED3F000
|
unkown
|
page read and write
|
||
C1DD000
|
unkown
|
page read and write
|
||
17E7DDC0000
|
trusted library allocation
|
page read and write
|
||
FF240000
|
unkown
|
page readonly
|
||
A8E9000
|
unkown
|
page read and write
|
||
1DE9E780000
|
trusted library allocation
|
page read and write
|
||
4E20000
|
unkown
|
page readonly
|
||
B270000
|
unkown
|
page read and write
|
||
793000
|
unkown
|
page read and write
|
||
224B904C000
|
heap
|
page read and write
|
||
17E7D170000
|
heap
|
page read and write
|
||
B2A0000
|
unkown
|
page read and write
|
||
4EC0000
|
unkown
|
page readonly
|
||
18EAEE52000
|
heap
|
page read and write
|
||
2328E540000
|
remote allocation
|
page read and write
|
||
A3B7000
|
unkown
|
page read and write
|
||
AD0F000
|
unkown
|
page read and write
|
||
22F47E00000
|
heap
|
page read and write
|
||
AE08000
|
unkown
|
page read and write
|
||
AAB1000
|
unkown
|
page read and write
|
||
BAFF000
|
unkown
|
page read and write
|
||
ACFD000
|
unkown
|
page read and write
|
||
BCD0000
|
unkown
|
page read and write
|
||
B220000
|
unkown
|
page read and write
|
||
1BB0000
|
trusted library allocation
|
page read and write
|
||
184D0289000
|
heap
|
page read and write
|
||
D280000
|
unkown
|
page read and write
|
||
2333CC02000
|
trusted library allocation
|
page read and write
|
||
2B6AEFE000
|
stack
|
page read and write
|
||
1908C869000
|
heap
|
page read and write
|
||
AA52000
|
unkown
|
page read and write
|
||
B260000
|
unkown
|
page read and write
|
||
D240000
|
unkown
|
page read and write
|
||
133177B000
|
stack
|
page read and write
|
||
17E7E080000
|
trusted library allocation
|
page read and write
|
||
18EAECF0000
|
heap
|
page read and write
|
||
B130000
|
unkown
|
page read and write
|
||
1DE99213000
|
heap
|
page read and write
|
||
4CE0000
|
unkown
|
page read and write
|
||
1A1D904C000
|
heap
|
page read and write
|
||
B3A7000
|
unkown
|
page read and write
|
||
AAB1000
|
unkown
|
page read and write
|
||
A512000
|
unkown
|
page read and write
|
||
A350000
|
unkown
|
page read and write
|
||
A9F1000
|
unkown
|
page read and write
|
||
18EAF602000
|
heap
|
page read and write
|
||
2333C466000
|
heap
|
page read and write
|
||
1DE9E8FA000
|
heap
|
page read and write
|
||
A953000
|
unkown
|
page read and write
|
||
1DE9E6A0000
|
trusted library allocation
|
page read and write
|
||
A8D5000
|
unkown
|
page read and write
|
||
20D35D7B000
|
heap
|
page read and write
|
||
BCCD000
|
unkown
|
page read and write
|
||
1A1D904D000
|
heap
|
page read and write
|
||
1DE99913000
|
heap
|
page read and write
|
||
E7A23DE000
|
stack
|
page read and write
|
||
BD50000
|
unkown
|
page read and write
|
||
BD40000
|
unkown
|
page read and write
|
||
4C90000
|
unkown
|
page execute read
|
||
3225A7E000
|
stack
|
page read and write
|
||
224B8F70000
|
trusted library allocation
|
page read and write
|
||
ECF0000
|
unkown
|
page readonly
|
||
ED30000
|
unkown
|
page read and write
|
||
A5D8000
|
unkown
|
page read and write
|
||
BB30000
|
unkown
|
page read and write
|
||
B3A7000
|
unkown
|
page read and write
|
||
1DE992FE000
|
heap
|
page read and write
|
||
1DE99918000
|
heap
|
page read and write
|
||
15559EA0000
|
remote allocation
|
page read and write
|
||
1DE99800000
|
heap
|
page read and write
|
||
AD3B000
|
unkown
|
page read and write
|
||
18EAFE13000
|
heap
|
page read and write
|
||
9020000
|
unkown
|
page read and write
|
||
76E0000
|
unkown
|
page read and write
|
||
AF56000
|
unkown
|
page read and write
|
||
A42C000
|
unkown
|
page read and write
|
||
22F47F08000
|
heap
|
page read and write
|
||
ACCC000
|
unkown
|
page read and write
|
||
18EAEEB8000
|
heap
|
page read and write
|
||
246257DD000
|
heap
|
page read and write
|
||
184D0200000
|
heap
|
page read and write
|
||
2328DE29000
|
heap
|
page read and write
|
||
21960A28000
|
heap
|
page read and write
|
||
8F6F000
|
unkown
|
page read and write
|
||
B170000
|
unkown
|
page read and write
|
||
AE1B000
|
unkown
|
page read and write
|
||
8160377000
|
stack
|
page read and write
|
||
4EB0000
|
unkown
|
page readonly
|
||
ED30000
|
unkown
|
page read and write
|
||
A9F1000
|
unkown
|
page read and write
|
||
BDE0000
|
unkown
|
page read and write
|
||
BDF0000
|
unkown
|
page read and write
|
||
B100000
|
unkown
|
page read and write
|
||
B310000
|
unkown
|
page read and write
|
||
4DC0000
|
unkown
|
page execute read
|
||
4E50000
|
unkown
|
page read and write
|
||
1DE9E8FC000
|
heap
|
page read and write
|
||
4E40000
|
unkown
|
page read and write
|
||
AC2A000
|
unkown
|
page read and write
|
||
18EAFE00000
|
heap
|
page read and write
|
||
4E40000
|
unkown
|
page read and write
|
||
B300000
|
unkown
|
page read and write
|
||
CDC0000
|
unkown
|
page read and write
|
||
BD60000
|
unkown
|
page read and write
|
||
A3B7000
|
unkown
|
page read and write
|
||
2328E75F000
|
heap
|
page read and write
|
||
18EAEE4D000
|
heap
|
page read and write
|
||
A890000
|
unkown
|
page read and write
|
||
1A1D9102000
|
heap
|
page read and write
|
||
ED59000
|
unkown
|
page read and write
|
||
A360000
|
unkown
|
page read and write
|
||
2328DEC7000
|
heap
|
page read and write
|
||
D2C0000
|
unkown
|
page read and write
|
||
D260000
|
unkown
|
page read and write
|
||
246257ED000
|
heap
|
page read and write
|
||
ED3F000
|
unkown
|
page read and write
|
||
ADC1FFD000
|
stack
|
page read and write
|
||
2328E75B000
|
heap
|
page read and write
|
||
2328DEE1000
|
heap
|
page read and write
|
||
1A1D9027000
|
heap
|
page read and write
|
||
ECDF000
|
unkown
|
page readonly
|
||
B320000
|
unkown
|
page read and write
|
||
B3BF000
|
unkown
|
page read and write
|
||
BC60000
|
unkown
|
page read and write
|
||
B330000
|
unkown
|
page read and write
|
||
BE90000
|
unkown
|
page read and write
|
||
E7A277B000
|
stack
|
page read and write
|
||
B1D0000
|
unkown
|
page read and write
|
||
5370000
|
unkown
|
page readonly
|
||
BD30000
|
unkown
|
page read and write
|
||
22F47F32000
|
heap
|
page read and write
|
||
A290000
|
unkown
|
page read and write
|
||
A4D0000
|
unkown
|
page read and write
|
||
4FE0000
|
unkown
|
page readonly
|
||
26568610000
|
heap
|
page read and write
|
||
1DE9E8FA000
|
heap
|
page read and write
|
||
B220000
|
unkown
|
page read and write
|
||
2328E710000
|
heap
|
page read and write
|
||
BD10000
|
unkown
|
page read and write
|
||
B160000
|
unkown
|
page read and write
|
||
9FD5AFE000
|
stack
|
page read and write
|
||
1331FFE000
|
stack
|
page read and write
|
||
15559EA0000
|
remote allocation
|
page read and write
|
||
224B9000000
|
heap
|
page read and write
|
||
322567C000
|
stack
|
page read and write
|
||
1DE9E675000
|
trusted library allocation
|
page read and write
|
||
CF5E000
|
unkown
|
page read and write
|
||
4C80000
|
unkown
|
page read and write
|
||
AA0F000
|
unkown
|
page read and write
|
||
ADC20FF000
|
stack
|
page read and write
|
||
ED46000
|
unkown
|
page read and write
|
||
8F40000
|
unkown
|
page readonly
|
||
2B6ADFF000
|
stack
|
page read and write
|
||
224B9113000
|
heap
|
page read and write
|
||
4CE0000
|
unkown
|
page read and write
|
||
D280000
|
unkown
|
page read and write
|
||
B1C0000
|
unkown
|
page read and write
|
||
CD20000
|
unkown
|
page read and write
|
||
1DE9E8A5000
|
heap
|
page read and write
|
||
B9FD000
|
unkown
|
page read and write
|
||
D45F000
|
unkown
|
page read and write
|
||
ECEA000
|
unkown
|
page readonly
|
||
B320000
|
unkown
|
page read and write
|
||
2333C486000
|
heap
|
page read and write
|
||
184D022A000
|
heap
|
page read and write
|
||
B190000
|
unkown
|
page read and write
|
||
C0BB7FE000
|
stack
|
page read and write
|
||
B1C0000
|
unkown
|
page read and write
|
||
BDD0000
|
unkown
|
page read and write
|
||
1DE99271000
|
heap
|
page read and write
|
||
4BF0000
|
unkown
|
page read and write
|
||
2328EC02000
|
heap
|
page read and write
|
||
BD30000
|
unkown
|
page read and write
|
||
21960A79000
|
heap
|
page read and write
|
||
ECEA000
|
unkown
|
page readonly
|
||
A92A000
|
unkown
|
page read and write
|
||
22F47F87000
|
heap
|
page read and write
|
||
4E40000
|
unkown
|
page read and write
|
||
B3ED000
|
unkown
|
page read and write
|
||
D2E0000
|
unkown
|
page read and write
|
||
1A1D9100000
|
heap
|
page read and write
|
||
B180000
|
unkown
|
page read and write
|
||
A9E3000
|
unkown
|
page read and write
|
||
7CCAFE000
|
stack
|
page read and write
|
||
2333C47C000
|
heap
|
page read and write
|
||
815FD8E000
|
stack
|
page read and write
|
||
1DE9EAE0000
|
trusted library allocation
|
page read and write
|
||
1908C849000
|
heap
|
page read and write
|
||
D700000
|
unkown
|
page read and write
|
||
8F50000
|
unkown
|
page read and write
|
||
2328E700000
|
heap
|
page read and write
|
||
22F48040000
|
remote allocation
|
page read and write
|
||
12B0000
|
heap
|
page read and write
|
||
AA52000
|
unkown
|
page read and write
|
||
224B9057000
|
heap
|
page read and write
|
||
A7CD000
|
unkown
|
page read and write
|
||
1DE9A070000
|
trusted library allocation
|
page read and write
|
||
CD40000
|
unkown
|
page read and write
|
||
A554000
|
unkown
|
page read and write
|
||
BB20000
|
unkown
|
page read and write
|
||
BB20000
|
unkown
|
page read and write
|
||
184D02CB000
|
heap
|
page read and write
|
||
C180000
|
unkown
|
page readonly
|
||
B2E0000
|
unkown
|
page read and write
|
||
A596000
|
unkown
|
page read and write
|
||
B270000
|
unkown
|
page read and write
|
||
E7CF000
|
unkown
|
page read and write
|
||
2333C513000
|
heap
|
page read and write
|
||
224B9100000
|
heap
|
page read and write
|
||
16978FE000
|
stack
|
page read and write
|
||
6ED0000
|
unkown
|
page read and write
|
||
18EAEE8B000
|
heap
|
page read and write
|
||
17E7D1F9000
|
heap
|
page read and write
|
||
2328E75A000
|
heap
|
page read and write
|
||
2328E480000
|
trusted library allocation
|
page read and write
|
||
BE80000
|
unkown
|
page read and write
|
||
B3C7000
|
unkown
|
page read and write
|
||
17E7D120000
|
heap
|
page read and write
|
||
1EC24840000
|
heap
|
page read and write
|
||
1A1D9057000
|
heap
|
page read and write
|
||
A290000
|
unkown
|
page read and write
|
||
1DE9E670000
|
trusted library allocation
|
page read and write
|
||
2328DEB4000
|
heap
|
page read and write
|
||
B2F0000
|
unkown
|
page read and write
|
||
1DE9A160000
|
trusted library section
|
page readonly
|
||
76E0000
|
unkown
|
page read and write
|
||
1DE99B01000
|
trusted library allocation
|
page read and write
|
||
246257B6000
|
heap
|
page read and write
|
||
4FE0000
|
unkown
|
page readonly
|
||
20D35B10000
|
heap
|
page readonly
|
||
18EAEE45000
|
heap
|
page read and write
|
||
184D0130000
|
heap
|
page read and write
|
||
BDA0000
|
unkown
|
page read and write
|
||
8EA877E000
|
stack
|
page read and write
|
||
4ED0000
|
unkown
|
page readonly
|
||
B051000
|
unkown
|
page read and write
|
||
12A0000
|
trusted library allocation
|
page read and write
|
||
1331DFE000
|
stack
|
page read and write
|
||
2333C413000
|
heap
|
page read and write
|
||
5440000
|
unkown
|
page readonly
|
||
B160000
|
unkown
|
page read and write
|
||
4EA0000
|
unkown
|
page read and write
|
||
2328E78B000
|
heap
|
page read and write
|
||
B330000
|
unkown
|
page read and write
|
||
BEB0000
|
unkown
|
page read and write
|
||
184D0213000
|
heap
|
page read and write
|
||
BE10000
|
unkown
|
page read and write
|
||
CD80000
|
unkown
|
page read and write
|
||
BDA0000
|
unkown
|
page read and write
|
||
1DE992BC000
|
heap
|
page read and write
|
||
D2B0000
|
unkown
|
page read and write
|
||
21960910000
|
heap
|
page read and write
|
||
4B353F8000
|
stack
|
page read and write
|
||
B210000
|
unkown
|
page read and write
|
||
BE00000
|
unkown
|
page read and write
|
||
A9D8000
|
unkown
|
page read and write
|
||
A42C000
|
unkown
|
page read and write
|
||
1DE9E8F6000
|
heap
|
page read and write
|
||
224B9052000
|
heap
|
page read and write
|
||
AB53000
|
unkown
|
page read and write
|
||
2328E78B000
|
heap
|
page read and write
|
||
8F50000
|
unkown
|
page read and write
|
||
ACEC000
|
unkown
|
page read and write
|
||
6E10000
|
unkown
|
page readonly
|
||
2328E7A3000
|
heap
|
page read and write
|
||
AC2A000
|
unkown
|
page read and write
|
||
224B9083000
|
heap
|
page read and write
|
||
246257E9000
|
heap
|
page read and write
|
||
CCD0000
|
unkown
|
page read and write
|
||
C203000
|
unkown
|
page read and write
|
||
CCF0000
|
unkown
|
page read and write
|
||
A3AF000
|
unkown
|
page read and write
|
||
18EAEE5F000
|
heap
|
page read and write
|
||
8A74000
|
unkown
|
page read and write
|
||
A8D7000
|
unkown
|
page read and write
|
||
1908C846000
|
heap
|
page read and write
|
||
CDA0000
|
unkown
|
page read and write
|
||
20D35DBC000
|
heap
|
page read and write
|
||
AB72000
|
unkown
|
page read and write
|
||
22F47FEE000
|
heap
|
page read and write
|
||
2328EC02000
|
heap
|
page read and write
|
||
2333C44C000
|
heap
|
page read and write
|
||
BD70000
|
unkown
|
page read and write
|
||
BD90000
|
unkown
|
page read and write
|
||
800000
|
unkown
|
page readonly
|
||
2333C400000
|
heap
|
page read and write
|
||
22F48105000
|
heap
|
page read and write
|
||
2328E7B5000
|
heap
|
page read and write
|
||
103C000
|
stack
|
page read and write
|
||
B350000
|
unkown
|
page read and write
|
||
1A1D904A000
|
heap
|
page read and write
|
||
CDC0000
|
unkown
|
page read and write
|
||
1DE9E8DD000
|
heap
|
page read and write
|
||
4E90000
|
unkown
|
page read and write
|
||
4DD0000
|
unkown
|
page execute read
|
||
1908C84E000
|
heap
|
page read and write
|
||
B150000
|
unkown
|
page read and write
|
||
B0B0000
|
unkown
|
page read and write
|
||
B3F9000
|
unkown
|
page read and write
|
||
2328EC02000
|
heap
|
page read and write
|
||
4E90000
|
unkown
|
page read and write
|
||
BDB0000
|
unkown
|
page read and write
|
||
4BDC000
|
stack
|
page read and write
|
||
2333C502000
|
heap
|
page read and write
|
||
1DE99902000
|
heap
|
page read and write
|
||
21960A64000
|
heap
|
page read and write
|
||
2328EC20000
|
heap
|
page read and write
|
||
B1A0000
|
unkown
|
page read and write
|
||
1A1D9013000
|
heap
|
page read and write
|
||
CDB0000
|
unkown
|
page read and write
|
||
B280000
|
unkown
|
page read and write
|
||
D2E0000
|
unkown
|
page read and write
|
||
D210000
|
unkown
|
page read and write
|
||
A9DD000
|
unkown
|
page read and write
|
||
BEA0000
|
unkown
|
page read and write
|
||
22F47FF1000
|
heap
|
page read and write
|
||
1331BFB000
|
stack
|
page read and write
|
||
4CE0000
|
unkown
|
page read and write
|
||
18EAFE30000
|
heap
|
page read and write
|
||
8B50000
|
unkown
|
page readonly
|
||
BB40000
|
unkown
|
page read and write
|
||
22F47F65000
|
heap
|
page read and write
|
||
1EC24902000
|
heap
|
page read and write
|
||
1DE9E82F000
|
heap
|
page read and write
|
||
13319FE000
|
stack
|
page read and write
|
||
C0BB3BE000
|
stack
|
page read and write
|
||
AF84000
|
unkown
|
page read and write
|
||
ED35000
|
unkown
|
page read and write
|
||
D270000
|
unkown
|
page read and write
|
||
22F47F2D000
|
heap
|
page read and write
|
||
A8E3000
|
unkown
|
page read and write
|
||
A6E0000
|
unkown
|
page read and write
|
||
246257B6000
|
heap
|
page read and write
|
||
22F47F34000
|
heap
|
page read and write
|
||
CCD0000
|
unkown
|
page read and write
|
||
17E7E010000
|
heap
|
page readonly
|
||
B130000
|
unkown
|
page read and write
|
||
A953000
|
unkown
|
page read and write
|
||
BDB0000
|
unkown
|
page read and write
|
||
1908C83D000
|
heap
|
page read and write
|
||
246257E9000
|
heap
|
page read and write
|
||
B120000
|
unkown
|
page read and write
|
||
184D0B00000
|
heap
|
page read and write
|
||
4E70000
|
unkown
|
page read and write
|
||
1908C84B000
|
heap
|
page read and write
|
||
CE00000
|
unkown
|
page read and write
|
||
B2A0000
|
unkown
|
page read and write
|
||
BE30000
|
unkown
|
page read and write
|
||
8A30000
|
unkown
|
page read and write
|
||
3225C7F000
|
stack
|
page read and write
|
||
24625B10000
|
heap
|
page read and write
|
||
A512000
|
unkown
|
page read and write
|
||
A7CD000
|
unkown
|
page read and write
|
||
2656861B000
|
heap
|
page read and write
|
||
D200000
|
unkown
|
page read and write
|
||
ACCC000
|
unkown
|
page read and write
|
||
246257DD000
|
heap
|
page read and write
|
||
D2F0000
|
unkown
|
page read and write
|
||
A373000
|
unkown
|
page read and write
|
||
1DE99959000
|
heap
|
page read and write
|
||
ADC23FF000
|
stack
|
page read and write
|
||
18EAEE29000
|
heap
|
page read and write
|
||
BE30000
|
unkown
|
page read and write
|
||
4CE5000
|
unkown
|
page read and write
|
||
38AA67C000
|
stack
|
page read and write
|
||
4DE5000
|
unkown
|
page read and write
|
||
ECF0000
|
unkown
|
page readonly
|
||
BDB0000
|
unkown
|
page read and write
|
||
8EA8C7D000
|
stack
|
page read and write
|
||
4E50000
|
unkown
|
page read and write
|
||
7CC879000
|
stack
|
page read and write
|
||
A61A000
|
unkown
|
page read and write
|
||
6ED0000
|
unkown
|
page read and write
|
||
20D35D91000
|
heap
|
page read and write
|
||
2328DE50000
|
heap
|
page read and write
|
||
ADC1BFA000
|
stack
|
page read and write
|
||
18EAF7C6000
|
heap
|
page read and write
|
||
BB30000
|
unkown
|
page read and write
|
||
18EAF7D9000
|
heap
|
page read and write
|
||
D220000
|
unkown
|
page read and write
|
||
18EAFF02000
|
heap
|
page read and write
|
||
C0BBC7E000
|
unkown
|
page read and write
|
||
ED55000
|
unkown
|
page read and write
|
||
D230000
|
unkown
|
page read and write
|
||
17E7DD40000
|
trusted library allocation
|
page read and write
|
||
B090000
|
unkown
|
page read and write
|
||
B0E0000
|
unkown
|
page read and write
|
||
1908C853000
|
heap
|
page read and write
|
||
1A1D8E60000
|
heap
|
page read and write
|
||
B330000
|
unkown
|
page read and write
|
||
18EAF7FF000
|
heap
|
page read and write
|
||
9FD5BFB000
|
stack
|
page read and write
|
||
1DE99F80000
|
trusted library allocation
|
page read and write
|
||
4E90000
|
unkown
|
page read and write
|
||
76D0000
|
unkown
|
page readonly
|
||
B1C0000
|
unkown
|
page read and write
|
||
CF9D000
|
unkown
|
page read and write
|
||
8F50000
|
unkown
|
page read and write
|
||
ACCF000
|
unkown
|
page read and write
|
||
1DE99E00000
|
trusted library allocation
|
page read and write
|
||
15559865000
|
heap
|
page read and write
|
||
8BBE000
|
unkown
|
page read and write
|
||
1DE9E7D0000
|
trusted library allocation
|
page read and write
|
||
1DE9E8EE000
|
heap
|
page read and write
|
||
BD70000
|
unkown
|
page read and write
|
||
9FD57DA000
|
stack
|
page read and write
|
||
CD00000
|
unkown
|
page read and write
|
||
AB72000
|
unkown
|
page read and write
|
||
A596000
|
unkown
|
page read and write
|
||
4C70000
|
unkown
|
page read and write
|
||
246257E9000
|
heap
|
page read and write
|
||
D88B000
|
unkown
|
page read and write
|
||
2328E797000
|
heap
|
page read and write
|
||
A9DD000
|
unkown
|
page read and write
|
||
2328E75C000
|
heap
|
page read and write
|
||
D09D000
|
unkown
|
page read and write
|
||
A8D5000
|
unkown
|
page read and write
|
||
24625700000
|
heap
|
page read and write
|
||
815FD0D000
|
stack
|
page read and write
|
||
B120000
|
unkown
|
page read and write
|
||
4CE5000
|
unkown
|
page read and write
|
||
169739F000
|
stack
|
page read and write
|
||
CCC0000
|
unkown
|
page read and write
|
||
17E7D175000
|
heap
|
page read and write
|
||
A8D9000
|
unkown
|
page read and write
|
||
18EAEFB7000
|
heap
|
page read and write
|
||
14EE000
|
stack
|
page read and write
|
||
18EAEE7A000
|
heap
|
page read and write
|
||
40000
|
unkown
|
page readonly
|
||
BD50000
|
unkown
|
page read and write
|
||
CE10000
|
unkown
|
page read and write
|
||
C0BBBF8000
|
stack
|
page read and write
|
||
B180000
|
unkown
|
page read and write
|
||
BCF0000
|
unkown
|
page read and write
|
||
1A1D9070000
|
heap
|
page read and write
|
||
18EAEE68000
|
heap
|
page read and write
|
||
15559802000
|
heap
|
page read and write
|
||
2333C360000
|
heap
|
page read and write
|
||
B140000
|
unkown
|
page read and write
|
||
ECD0000
|
unkown
|
page readonly
|
||
1A1D9054000
|
heap
|
page read and write
|
||
B180000
|
unkown
|
page read and write
|
||
C0BB9F7000
|
stack
|
page read and write
|
||
AC40000
|
unkown
|
page read and write
|
||
15559EA0000
|
remote allocation
|
page read and write
|
||
4BD8000
|
stack
|
page read and write
|
||
CDF0000
|
unkown
|
page read and write
|
||
7CCC7F000
|
stack
|
page read and write
|
||
1DE9E790000
|
trusted library allocation
|
page read and write
|
||
1DE9E902000
|
heap
|
page read and write
|
||
1EC24813000
|
heap
|
page read and write
|
||
1908C780000
|
heap
|
page read and write
|
||
1DE99293000
|
heap
|
page read and write
|
||
20D35DAE000
|
heap
|
page read and write
|
||
22F47FF5000
|
heap
|
page read and write
|
||
B2B0000
|
unkown
|
page read and write
|
||
1A1D903C000
|
heap
|
page read and write
|
||
2333C44E000
|
heap
|
page read and write
|
||
22F47FA9000
|
heap
|
page read and write
|
||
AA52000
|
unkown
|
page read and write
|
||
7CC37E000
|
stack
|
page read and write
|
||
1EC24913000
|
heap
|
page read and write
|
||
BAFF000
|
unkown
|
page read and write
|
||
1DE9EB50000
|
trusted library allocation
|
page read and write
|
||
BD30000
|
unkown
|
page read and write
|
||
D89B000
|
unkown
|
page read and write
|
||
A8E9000
|
unkown
|
page read and write
|
||
20D35DAC000
|
heap
|
page read and write
|
||
4DC0000
|
unkown
|
page execute read
|
||
4EC0000
|
unkown
|
page readonly
|
||
A890000
|
unkown
|
page read and write
|
||
800000
|
unkown
|
page readonly
|
||
1908C862000
|
heap
|
page read and write
|
||
22F47F98000
|
heap
|
page read and write
|
||
B1E0000
|
unkown
|
page read and write
|
||
8EA897B000
|
stack
|
page read and write
|
||
4F2B000
|
unkown
|
page read and write
|
||
D846000
|
unkown
|
page read and write
|
||
C96F000
|
unkown
|
page read and write
|
||
1C60000
|
heap
|
page read and write
|
||
790000
|
unkown
|
page read and write
|
||
246257C5000
|
heap
|
page read and write
|
||
20D35D84000
|
heap
|
page read and write
|
||
8A74000
|
unkown
|
page read and write
|
||
26568637000
|
heap
|
page read and write
|
||
6ED0000
|
unkown
|
page read and write
|
||
ADAB000
|
unkown
|
page read and write
|
||
17E7D140000
|
heap
|
page read and write
|
||
2328E783000
|
heap
|
page read and write
|
||
22F48040000
|
remote allocation
|
page read and write
|
||
8BBE000
|
unkown
|
page read and write
|
||
A8F1000
|
unkown
|
page read and write
|
||
1EC24670000
|
heap
|
page read and write
|
||
A8D5000
|
unkown
|
page read and write
|
||
2333C462000
|
heap
|
page read and write
|
||
B2E0000
|
unkown
|
page read and write
|
||
1908C873000
|
heap
|
page read and write
|
||
BE90000
|
unkown
|
page read and write
|
||
15559840000
|
heap
|
page read and write
|
||
A722000
|
unkown
|
page read and write
|
||
9020000
|
unkown
|
page read and write
|
||
793000
|
unkown
|
page read and write
|
||
18EAFE51000
|
heap
|
page read and write
|
||
4EC0000
|
unkown
|
page readonly
|
||
1DE9E550000
|
trusted library allocation
|
page read and write
|
||
ED64000
|
unkown
|
page read and write
|
||
224B8ED0000
|
heap
|
page read and write
|
||
B9BF000
|
unkown
|
page read and write
|
||
1908C857000
|
heap
|
page read and write
|
||
4E60000
|
unkown
|
page readonly
|
||
B090000
|
unkown
|
page read and write
|
||
1908C841000
|
heap
|
page read and write
|
||
4E50000
|
unkown
|
page read and write
|
||
1A1D9113000
|
heap
|
page read and write
|
||
4E34000
|
unkown
|
page read and write
|
||
4BF0000
|
unkown
|
page read and write
|
||
15EE000
|
stack
|
page read and write
|
||
C0BB67E000
|
stack
|
page read and write
|
||
2B6AB7E000
|
stack
|
page read and write
|
||
246257AD000
|
heap
|
page read and write
|
||
2C64CF9000
|
stack
|
page read and write
|
||
1A1D9055000
|
heap
|
page read and write
|
||
265683C0000
|
heap
|
page read and write
|
||
1A1D9108000
|
heap
|
page read and write
|
||
1DE9923E000
|
heap
|
page read and write
|
||
22F47FF7000
|
heap
|
page read and write
|
||
4C70000
|
unkown
|
page read and write
|
||
BEB0000
|
unkown
|
page read and write
|
||
B100000
|
unkown
|
page read and write
|
||
B3B0000
|
unkown
|
page read and write
|
||
1908C87E000
|
heap
|
page read and write
|
||
B370000
|
unkown
|
page read and write
|
||
1908C867000
|
heap
|
page read and write
|
||
BE10000
|
unkown
|
page read and write
|
||
B120000
|
unkown
|
page read and write
|
||
1331B7D000
|
stack
|
page read and write
|
||
A789000
|
unkown
|
page read and write
|
||
38AA8FF000
|
stack
|
page read and write
|
||
D310000
|
unkown
|
page execute read
|
||
2333C43C000
|
heap
|
page read and write
|
||
4FE0000
|
unkown
|
page readonly
|
||
AE27000
|
unkown
|
page read and write
|
||
A86F000
|
unkown
|
page read and write
|
||
B2E0000
|
unkown
|
page read and write
|
||
17E7D1DD000
|
heap
|
page read and write
|
||
1908C864000
|
heap
|
page read and write
|
||
1A1D9043000
|
heap
|
page read and write
|
||
727F0FC000
|
stack
|
page read and write
|
||
1DE9A4F0000
|
trusted library allocation
|
page read and write
|
||
18EAEE3C000
|
heap
|
page read and write
|
||
2328DE8A000
|
heap
|
page read and write
|
||
1BC0000
|
heap
|
page read and write
|
||
7CCEFF000
|
stack
|
page read and write
|
||
1DE99F60000
|
trusted library allocation
|
page read and write
|
||
4CA0000
|
unkown
|
page execute read
|
||
C0BB77B000
|
stack
|
page read and write
|
||
5370000
|
unkown
|
page readonly
|
||
246257EE000
|
heap
|
page read and write
|
||
D2A0000
|
unkown
|
page read and write
|
||
20D35D7B000
|
heap
|
page read and write
|
||
D7D2000
|
unkown
|
page read and write
|
||
22F47F65000
|
heap
|
page read and write
|
||
A774000
|
unkown
|
page read and write
|
||
20D35D91000
|
heap
|
page read and write
|
||
790000
|
unkown
|
page read and write
|
||
ECFF000
|
unkown
|
page readonly
|
||
8AC4000
|
unkown
|
page read and write
|
||
BB40000
|
unkown
|
page read and write
|
||
87ED000
|
unkown
|
page read and write
|
||
B260000
|
unkown
|
page read and write
|
||
1137000
|
stack
|
page read and write
|
||
BD80000
|
unkown
|
page read and write
|
||
18EAEE13000
|
heap
|
page read and write
|
||
1DE99802000
|
heap
|
page read and write
|
||
18EAF729000
|
heap
|
page read and write
|
||
4CE5000
|
unkown
|
page read and write
|
||
16976FE000
|
stack
|
page read and write
|
||
BDD0000
|
unkown
|
page read and write
|
||
2328E7A3000
|
heap
|
page read and write
|
||
CE20000
|
unkown
|
page read and write
|
||
B1E0000
|
unkown
|
page read and write
|
||
2328E785000
|
heap
|
page read and write
|
||
1DE9E7C0000
|
trusted library allocation
|
page read and write
|
||
BCF0000
|
unkown
|
page read and write
|
||
1DE99918000
|
heap
|
page read and write
|
||
1908C84D000
|
heap
|
page read and write
|
||
D5BF000
|
unkown
|
page read and write
|
||
172F000
|
stack
|
page read and write
|
||
ECFF000
|
unkown
|
page readonly
|
||
18EAF700000
|
heap
|
page read and write
|
||
A2A2000
|
unkown
|
page read and write
|
||
4C90000
|
unkown
|
page execute read
|
||
796000
|
unkown
|
page read and write
|
||
1DE9A150000
|
trusted library section
|
page readonly
|
||
CDA0000
|
unkown
|
page read and write
|
||
184D01D0000
|
trusted library allocation
|
page read and write
|
||
A8E3000
|
unkown
|
page read and write
|
||
1DE9E904000
|
heap
|
page read and write
|
||
ACE6000
|
unkown
|
page read and write
|
||
C1DD000
|
unkown
|
page read and write
|
||
D220000
|
unkown
|
page read and write
|
||
2328E7AE000
|
heap
|
page read and write
|
||
1908C839000
|
heap
|
page read and write
|
||
B429000
|
unkown
|
page read and write
|
||
B3BF000
|
unkown
|
page read and write
|
||
BE80000
|
unkown
|
page read and write
|
||
ED68000
|
unkown
|
page read and write
|
||
2328E785000
|
heap
|
page read and write
|
||
4EB0000
|
unkown
|
page readonly
|
||
1DE9E7B0000
|
trusted library allocation
|
page read and write
|
||
B210000
|
unkown
|
page read and write
|
||
184D02C8000
|
heap
|
page read and write
|
||
1DE9E7A0000
|
trusted library allocation
|
page read and write
|
||
4CB0000
|
unkown
|
page execute read
|
||
B3F9000
|
unkown
|
page read and write
|
||
40000
|
unkown
|
page readonly
|
||
1908C872000
|
heap
|
page read and write
|
||
1DE99959000
|
heap
|
page read and write
|
||
2328DEAA000
|
heap
|
page read and write
|
||
6D90000
|
unkown
|
page read and write
|
||
1DE9929E000
|
heap
|
page read and write
|
||
1DE9E7C0000
|
trusted library allocation
|
page read and write
|
||
810000
|
unkown
|
page readonly
|
||
A86F000
|
unkown
|
page read and write
|
||
2328DEAA000
|
heap
|
page read and write
|
||
4B3537E000
|
stack
|
page read and write
|
||
B1F0000
|
unkown
|
page read and write
|
||
AF84000
|
unkown
|
page read and write
|
||
D2C0000
|
unkown
|
page read and write
|
||
A4D0000
|
unkown
|
page read and write
|
||
BE70000
|
unkown
|
page read and write
|
||
BE20000
|
unkown
|
page read and write
|
||
8A4D000
|
unkown
|
page read and write
|
||
2328E79F000
|
heap
|
page read and write
|
||
1DE9E510000
|
trusted library allocation
|
page read and write
|
||
2328E602000
|
heap
|
page read and write
|
||
17E7E000000
|
trusted library allocation
|
page read and write
|
||
AE06000
|
unkown
|
page read and write
|
||
4EE0000
|
unkown
|
page read and write
|
||
2328E783000
|
heap
|
page read and write
|
||
8BBE000
|
unkown
|
page read and write
|
||
820000
|
unkown
|
page read and write
|
||
BDC0000
|
unkown
|
page read and write
|
||
9FD5C7C000
|
stack
|
page read and write
|
||
A61A000
|
unkown
|
page read and write
|
||
1DE9E6A0000
|
trusted library allocation
|
page read and write
|
||
D2D0000
|
unkown
|
page read and write
|
||
2328E786000
|
heap
|
page read and write
|
||
4F0E000
|
unkown
|
page read and write
|
||
CC8B000
|
unkown
|
page read and write
|
||
E7A2BFF000
|
stack
|
page read and write
|
||
AA2D000
|
unkown
|
page read and write
|
||
A8DD000
|
unkown
|
page read and write
|
||
CC90000
|
unkown
|
page readonly
|
||
1DE9E7D0000
|
remote allocation
|
page read and write
|
||
26568545000
|
heap
|
page read and write
|
||
4C80000
|
unkown
|
page read and write
|
||
1EC24858000
|
heap
|
page read and write
|
||
A373000
|
unkown
|
page read and write
|
||
B090000
|
unkown
|
page read and write
|
||
6D90000
|
unkown
|
page read and write
|
||
2328E797000
|
heap
|
page read and write
|
||
D35D000
|
unkown
|
page read and write
|
||
BCD0000
|
unkown
|
page read and write
|
||
1DE9E7D0000
|
remote allocation
|
page read and write
|
||
1908C720000
|
heap
|
page read and write
|
||
ED4C000
|
unkown
|
page read and write
|
||
B140000
|
unkown
|
page read and write
|
||
1908C710000
|
heap
|
page read and write
|
||
D7D2000
|
unkown
|
page read and write
|
||
ECD5000
|
unkown
|
page readonly
|
||
2328E75B000
|
heap
|
page read and write
|
||
20D35D79000
|
heap
|
page read and write
|
||
A8DB000
|
unkown
|
page read and write
|
||
4CA0000
|
unkown
|
page execute read
|
||
B110000
|
unkown
|
page read and write
|
||
ED50000
|
unkown
|
page read and write
|
||
727EFFE000
|
stack
|
page read and write
|
||
D19E000
|
unkown
|
page read and write
|
||
41000
|
unkown
|
page execute read
|
||
246257D2000
|
heap
|
page read and write
|
||
224B903C000
|
heap
|
page read and write
|
||
1DE9E690000
|
trusted library allocation
|
page read and write
|
||
8DFC000
|
unkown
|
page read and write
|
||
793000
|
unkown
|
page read and write
|
||
2328E540000
|
remote allocation
|
page read and write
|
||
7CC97B000
|
stack
|
page read and write
|
||
A6E0000
|
unkown
|
page read and write
|
||
2C64DFB000
|
stack
|
page read and write
|
||
C180000
|
unkown
|
page readonly
|
||
1DE9A180000
|
trusted library section
|
page readonly
|
||
A998000
|
unkown
|
page read and write
|
||
ACCF000
|
unkown
|
page read and write
|
||
4CA0000
|
unkown
|
page execute read
|
||
ED5F000
|
unkown
|
page read and write
|
||
A69E000
|
unkown
|
page read and write
|
||
21960A7E000
|
heap
|
page read and write
|
||
4ED0000
|
unkown
|
page readonly
|
||
B0F0000
|
unkown
|
page read and write
|
||
820000
|
unkown
|
page read and write
|
||
B3AD000
|
unkown
|
page read and write
|
||
B3AD000
|
unkown
|
page read and write
|
||
8F6F000
|
unkown
|
page read and write
|
||
A8DB000
|
unkown
|
page read and write
|
||
2333C3D0000
|
heap
|
page read and write
|
||
246257D2000
|
heap
|
page read and write
|
||
2328DE4B000
|
heap
|
page read and write
|
||
8CBE000
|
unkown
|
page read and write
|
||
ACEC000
|
unkown
|
page read and write
|
||
22F47FF5000
|
heap
|
page read and write
|
||
ACE6000
|
unkown
|
page read and write
|
||
246257F1000
|
heap
|
page read and write
|
||
BD90000
|
unkown
|
page read and write
|
||
2C6488B000
|
stack
|
page read and write
|
||
1908C7B0000
|
trusted library allocation
|
page read and write
|
||
4DC0000
|
unkown
|
page execute read
|
||
2333C44D000
|
heap
|
page read and write
|
||
1DE991F0000
|
trusted library section
|
page read and write
|
||
2333C464000
|
heap
|
page read and write
|
||
A9F1000
|
unkown
|
page read and write
|
||
2C64D7E000
|
stack
|
page read and write
|
||
133134B000
|
stack
|
page read and write
|
||
2B6ACFF000
|
stack
|
page read and write
|
||
C0BB8F8000
|
stack
|
page read and write
|
||
4EB0000
|
unkown
|
page readonly
|
||
ECDF000
|
unkown
|
page readonly
|
||
9FD5CFD000
|
stack
|
page read and write
|
||
E7A267E000
|
stack
|
page read and write
|
||
4BDF000
|
stack
|
page read and write
|
||
D260000
|
unkown
|
page read and write
|
||
8EA8B7F000
|
stack
|
page read and write
|
||
B140000
|
unkown
|
page read and write
|
||
2328E78B000
|
heap
|
page read and write
|
||
1555985C000
|
heap
|
page read and write
|
||
D5BF000
|
unkown
|
page read and write
|
||
2333C450000
|
heap
|
page read and write
|
||
2328E74E000
|
heap
|
page read and write
|
||
4E20000
|
unkown
|
page readonly
|
||
20D35D91000
|
heap
|
page read and write
|
||
1555A002000
|
trusted library allocation
|
page read and write
|
||
2328DE4D000
|
heap
|
page read and write
|
||
1DE9E677000
|
trusted library allocation
|
page read and write
|
||
816067F000
|
stack
|
page read and write
|
||
21960B00000
|
heap
|
page read and write
|
||
ACCC000
|
unkown
|
page read and write
|
||
1EC247D0000
|
trusted library allocation
|
page read and write
|
||
22F47FEE000
|
heap
|
page read and write
|
||
184D0245000
|
heap
|
page read and write
|
||
B170000
|
unkown
|
page read and write
|
||
A8D9000
|
unkown
|
page read and write
|
||
773D000
|
unkown
|
page read and write
|
||
AE27000
|
unkown
|
page read and write
|
||
7CC57A000
|
stack
|
page read and write
|
||
1EC24800000
|
heap
|
page read and write
|
||
BE00000
|
unkown
|
page read and write
|
||
C0BBAFF000
|
stack
|
page read and write
|
||
20D35FB0000
|
heap
|
page read and write
|
||
ACD7000
|
unkown
|
page read and write
|
||
3225B7F000
|
stack
|
page read and write
|
||
D310000
|
unkown
|
page execute read
|
||
1EC2487D000
|
heap
|
page read and write
|
||
B2F0000
|
unkown
|
page read and write
|
||
2328E797000
|
heap
|
page read and write
|
||
B1A0000
|
unkown
|
page read and write
|
||
A360000
|
unkown
|
page read and write
|
||
22F47F41000
|
heap
|
page read and write
|
||
B290000
|
unkown
|
page read and write
|
||
4E34000
|
unkown
|
page read and write
|
||
AF56000
|
unkown
|
page read and write
|
||
BE60000
|
unkown
|
page read and write
|
||
4B352FF000
|
stack
|
page read and write
|
||
D4BE000
|
unkown
|
page read and write
|
||
76D0000
|
unkown
|
page readonly
|
||
2328E7B5000
|
heap
|
page read and write
|
||
B350000
|
unkown
|
page read and write
|
||
B240000
|
unkown
|
page read and write
|
||
8EA8D7F000
|
stack
|
page read and write
|
||
AE06000
|
unkown
|
page read and write
|
||
2328E7A1000
|
heap
|
page read and write
|
||
51E0000
|
unkown
|
page readonly
|
||
2328E785000
|
heap
|
page read and write
|
||
CD50000
|
unkown
|
page read and write
|
||
B0C0000
|
unkown
|
page read and write
|
||
B190000
|
unkown
|
page read and write
|
||
B9FD000
|
unkown
|
page read and write
|
||
2328E75A000
|
heap
|
page read and write
|
||
1DE9E821000
|
heap
|
page read and write
|
||
8A4D000
|
unkown
|
page read and write
|
||
246257B1000
|
heap
|
page read and write
|
||
5370000
|
unkown
|
page readonly
|
||
1DE99918000
|
heap
|
page read and write
|
||
BB10000
|
unkown
|
page read and write
|
||
18EAEEDF000
|
heap
|
page read and write
|
||
1A1D9056000
|
heap
|
page read and write
|
||
22F48040000
|
remote allocation
|
page read and write
|
||
BC60000
|
unkown
|
page read and write
|
||
15559813000
|
heap
|
page read and write
|
||
22F47FA9000
|
heap
|
page read and write
|
||
15559E70000
|
trusted library allocation
|
page read and write
|
||
B2D0000
|
unkown
|
page read and write
|
||
2328E75A000
|
heap
|
page read and write
|
||
4E30000
|
unkown
|
page read and write
|
||
1DE9E691000
|
trusted library allocation
|
page read and write
|
||
4E80000
|
unkown
|
page read and write
|
||
ED55000
|
unkown
|
page read and write
|
||
B0F0000
|
unkown
|
page read and write
|
||
18EAFF00000
|
heap
|
page read and write
|
||
BE50000
|
unkown
|
page read and write
|
||
22F47F3F000
|
heap
|
page read and write
|
||
4B34FEA000
|
stack
|
page read and write
|
||
ED4A000
|
unkown
|
page read and write
|
||
1331EFD000
|
stack
|
page read and write
|
||
18EAEEA7000
|
heap
|
page read and write
|
||
1DE9E7D0000
|
remote allocation
|
page read and write
|
||
8A2F000
|
unkown
|
page read and write
|
||
224B9076000
|
heap
|
page read and write
|
||
1908C851000
|
heap
|
page read and write
|
||
A774000
|
unkown
|
page read and write
|
||
1908C874000
|
heap
|
page read and write
|
||
18EAEFE0000
|
heap
|
page read and write
|
||
1EC25002000
|
trusted library allocation
|
page read and write
|
||
AD0F000
|
unkown
|
page read and write
|
||
7CCCFF000
|
stack
|
page read and write
|
||
2328E7A4000
|
heap
|
page read and write
|
||
BDE0000
|
unkown
|
page read and write
|
||
18EAEF13000
|
heap
|
page read and write
|
||
B210000
|
unkown
|
page read and write
|
||
B370000
|
unkown
|
page read and write
|
||
17E7D1DD000
|
heap
|
page read and write
|
||
AE1B000
|
unkown
|
page read and write
|
||
CC90000
|
unkown
|
page readonly
|
||
1DE99F70000
|
trusted library allocation
|
page read and write
|
||
D6FE000
|
unkown
|
page read and write
|
||
2328E785000
|
heap
|
page read and write
|
||
2328E797000
|
heap
|
page read and write
|
||
BD80000
|
unkown
|
page read and write
|
||
D240000
|
unkown
|
page read and write
|
||
162E000
|
stack
|
page read and write
|
||
ACC8000
|
unkown
|
page read and write
|
||
B240000
|
unkown
|
page read and write
|
||
87ED000
|
unkown
|
page read and write
|
||
18EAEE4B000
|
heap
|
page read and write
|
||
18EAF7BE000
|
heap
|
page read and write
|
||
A789000
|
unkown
|
page read and write
|
||
B300000
|
unkown
|
page read and write
|
||
2328E797000
|
heap
|
page read and write
|
||
22F487E1000
|
heap
|
page read and write
|
||
783F000
|
unkown
|
page read and write
|
||
22F47F68000
|
heap
|
page read and write
|
||
D5FD000
|
unkown
|
page read and write
|
||
6D90000
|
unkown
|
page read and write
|
||
4C70000
|
unkown
|
page read and write
|
||
BD00000
|
unkown
|
page read and write
|
||
22F48100000
|
heap
|
page read and write
|
||
B150000
|
unkown
|
page read and write
|
||
8EA867B000
|
stack
|
page read and write
|
||
246257C7000
|
heap
|
page read and write
|
||
4BDF000
|
stack
|
page read and write
|
||
B9FD000
|
unkown
|
page read and write
|
||
1A1D9091000
|
heap
|
page read and write
|
||
ECFB000
|
unkown
|
page readonly
|
||
816047F000
|
stack
|
page read and write
|
||
B270000
|
unkown
|
page read and write
|
||
ED77000
|
unkown
|
page read and write
|
||
A61A000
|
unkown
|
page read and write
|
||
A65C000
|
unkown
|
page read and write
|
||
AD0F000
|
unkown
|
page read and write
|
||
CC8B000
|
unkown
|
page read and write
|
||
7B7000
|
unkown
|
page read and write
|
||
CE40000
|
unkown
|
page read and write
|
||
7CC77F000
|
stack
|
page read and write
|
||
ACEC000
|
unkown
|
page read and write
|
||
18EAEED7000
|
heap
|
page read and write
|
||
D7F4000
|
unkown
|
page read and write
|
||
1908C813000
|
heap
|
page read and write
|
||
79C000
|
unkown
|
page read and write
|
||
AEA0000
|
unkown
|
page read and write
|
||
1DE9E678000
|
trusted library allocation
|
page read and write
|
||
246257DD000
|
heap
|
page read and write
|
||
CCE0000
|
unkown
|
page read and write
|
||
B9BF000
|
unkown
|
page read and write
|
||
AEA0000
|
unkown
|
page read and write
|
||
D290000
|
unkown
|
page read and write
|
||
13318FF000
|
stack
|
page read and write
|
||
B1F0000
|
unkown
|
page read and write
|
||
21960A56000
|
heap
|
page read and write
|
||
C190000
|
unkown
|
page execute read
|
||
1DE997E1000
|
trusted library allocation
|
page read and write
|
||
2328E78B000
|
heap
|
page read and write
|
||
CD40000
|
unkown
|
page read and write
|
||
4BF0000
|
unkown
|
page read and write
|
||
1908C84F000
|
heap
|
page read and write
|
||
20D35D50000
|
heap
|
page read and write
|
||
184D0B39000
|
heap
|
page read and write
|
||
810000
|
unkown
|
page readonly
|
||
1DE9E7E0000
|
trusted library allocation
|
page read and write
|
||
2328E79B000
|
heap
|
page read and write
|
||
1DE9E6B4000
|
trusted library allocation
|
page read and write
|
||
184D0271000
|
heap
|
page read and write
|
||
20D35C40000
|
heap
|
page read and write
|
||
79C000
|
unkown
|
page read and write
|
||
783F000
|
unkown
|
page read and write
|
||
21960A77000
|
heap
|
page read and write
|
||
B2C0000
|
unkown
|
page read and write
|
||
BDC0000
|
unkown
|
page read and write
|
||
ED04000
|
unkown
|
page readonly
|
||
ED46000
|
unkown
|
page read and write
|
||
2328DE82000
|
heap
|
page read and write
|
||
20D35D83000
|
heap
|
page read and write
|
||
1DE9EAF0000
|
trusted library allocation
|
page read and write
|
||
2328DE3C000
|
heap
|
page read and write
|
||
5EF000
|
stack
|
page read and write
|
||
155596B0000
|
heap
|
page read and write
|
||
1697DFF000
|
stack
|
page read and write
|
||
1A1D8E50000
|
heap
|
page read and write
|
||
24625B15000
|
heap
|
page read and write
|
||
A373000
|
unkown
|
page read and write
|
||
1A1D9802000
|
trusted library allocation
|
page read and write
|
||
8F40000
|
unkown
|
page readonly
|
||
D300000
|
unkown
|
page read and write
|
||
B280000
|
unkown
|
page read and write
|
||
A69E000
|
unkown
|
page read and write
|
||
796000
|
unkown
|
page read and write
|
||
8DFC000
|
unkown
|
page read and write
|
||
A722000
|
unkown
|
page read and write
|
||
B260000
|
unkown
|
page read and write
|
||
BD60000
|
unkown
|
page read and write
|
||
ADC22FF000
|
stack
|
page read and write
|
||
1DE9928C000
|
heap
|
page read and write
|
||
CDE0000
|
unkown
|
page read and write
|
||
B340000
|
unkown
|
page read and write
|
||
2328E785000
|
heap
|
page read and write
|
||
B1F0000
|
unkown
|
page read and write
|
||
AB72000
|
unkown
|
page read and write
|
||
5360000
|
unkown
|
page readonly
|
||
ECF5000
|
unkown
|
page readonly
|
||
2328DED9000
|
heap
|
page read and write
|
||
D230000
|
unkown
|
page read and write
|
||
ECF5000
|
unkown
|
page readonly
|
||
7CC27B000
|
stack
|
page read and write
|
||
A490000
|
unkown
|
page read and write
|
||
B3C7000
|
unkown
|
page read and write
|
||
78000
|
unkown
|
page write copy
|
||
15559710000
|
heap
|
page read and write
|
||
18EAEE87000
|
heap
|
page read and write
|
||
1185000
|
heap
|
page read and write
|
||
AD3B000
|
unkown
|
page read and write
|
||
D4BE000
|
unkown
|
page read and write
|
||
B110000
|
unkown
|
page read and write
|
||
15559800000
|
heap
|
page read and write
|
||
2333C370000
|
heap
|
page read and write
|
||
A9EB000
|
unkown
|
page read and write
|
||
CD30000
|
unkown
|
page read and write
|
||
ECEC000
|
unkown
|
page readonly
|
||
1DE9E902000
|
heap
|
page read and write
|
||
224B8F40000
|
heap
|
page read and write
|
||
ADC1CFF000
|
stack
|
page read and write
|
||
D45F000
|
unkown
|
page read and write
|
||
1DE99918000
|
heap
|
page read and write
|
||
1C65000
|
heap
|
page read and write
|
||
4CD0000
|
unkown
|
page execute read
|
||
4E70000
|
unkown
|
page read and write
|
||
ED22000
|
unkown
|
page readonly
|
||
1697BFF000
|
stack
|
page read and write
|
||
1A1D908D000
|
heap
|
page read and write
|
||
7CCBFF000
|
stack
|
page read and write
|
||
ADE7000
|
unkown
|
page read and write
|
||
4C80000
|
unkown
|
page read and write
|
||
A774000
|
unkown
|
page read and write
|
||
1908C842000
|
heap
|
page read and write
|
||
4E60000
|
unkown
|
page readonly
|
||
ED17000
|
unkown
|
page readonly
|
||
8CBE000
|
unkown
|
page read and write
|
||
AEA0000
|
unkown
|
page read and write
|
||
CD20000
|
unkown
|
page read and write
|
||
18EAFE02000
|
heap
|
page read and write
|
||
CF5E000
|
unkown
|
page read and write
|
||
BDF0000
|
unkown
|
page read and write
|
||
6850000
|
unkown
|
page read and write
|
||
A789000
|
unkown
|
page read and write
|
There are 1723 hidden memdumps, click here to show them.
DOM / HTML
URL
|
Malicious
|
|
---|---|---|
https://webmail.serendahsteel.com/?locale=en
|
||
https://webmail.serendahsteel.com/?locale=bg
|
||
https://webmail.serendahsteel.com/?locale=cs
|
||
https://webmail.serendahsteel.com/?locale=da
|
||
https://webmail.serendahsteel.com/?locale=de
|
||
https://webmail.serendahsteel.com/?locale=el
|
||
https://webmail.serendahsteel.com/?locale=es
|
||
https://webmail.serendahsteel.com/?locale=es_419
|
||
https://arthurperush.com/css/cPanel.SharePoint_documentOnline/login.html
|
||
https://webmail.serendahsteel.com/?locale=ar
|