Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
KbqArOlW06.exe
|
PE32+ executable (GUI) x86-64 Mono/.Net assembly, for MS Windows
|
initial sample
|
 |
|
|
C:\Users\user\AppData\Local\Microsoft\CLR_v4.0\UsageLogs\KbqArOlW06.exe.log
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\2.0.0-beta2.cps.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\A1Photo-&-Art-Enhancer_Search&Patch_Activation.exe
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\is-K5196.tmp\A1Photo-&-Art-Enhancer_Search&Patch_Activation.tmp
|
PE32 executable (GUI) Intel 80386, for MS Windows
|
dropped
|
|
|
|
C:\Users\user\AppData\LocalLow\Zdpo36n9Wt80
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\freebl3.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\mozglue.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\msvcp140.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\nss3.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\softokn3.dll
|
PE32 executable (DLL) (GUI) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\sqlite3.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\LocalLow\vcruntime140.dll
|
PE32 executable (DLL) (console) Intel 80386, for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\is-Q7MJ8.tmp\_isetup\_setup64.tmp
|
PE32+ executable (console) x86-64, for MS Windows
|
dropped
|
There are 4 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Users\user\Desktop\KbqArOlW06.exe
|
"C:\Users\user\Desktop\KbqArOlW06.exe"
|
|
|
|
C:\Users\user\AppData\Local\Temp\2.0.0-beta2.cps.exe
|
"C:\Users\user\AppData\Local\Temp\2.0.0-beta2.cps.exe"
|
|
|
|
C:\Users\user\AppData\Local\Temp\A1Photo-&-Art-Enhancer_Search&Patch_Activation.exe
|
"C:\Users\user\AppData\Local\Temp\A1Photo-&-Art-Enhancer_Search&Patch_Activation.exe"
|
|
|
|
C:\Users\user\AppData\Local\Temp\is-K5196.tmp\A1Photo-&-Art-Enhancer_Search&Patch_Activation.tmp
|
"C:\Users\user\AppData\Local\Temp\is-K5196.tmp\A1Photo-&-Art-Enhancer_Search&Patch_Activation.tmp" /SL5="$303B2,111616,111616,C:\Users\user\AppData\Local\Temp\A1Photo-&-Art-Enhancer_Search&Patch_Activation.exe"
|
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
http://51.195.166.178/
|
51.195.166.178
|
|
|
|
http://51.195.166.178/b6425a6ca38e36b1a195f6f3019a4b0a
|
51.195.166.178
|
|
|
|
http://www.innosetup.com/
|
unknown
|
||
|
https://www.mediachance.com/2
|
unknown
|
||
|
http://www.mozilla.com/en-US/blocklist/
|
unknown
|
||
|
http://www.palkornel.hu/innosetup
|
unknown
|
||
|
http://www.remobjects.com/psU
|
unknown
|
||
|
http://www.jrsoftware.org/ishelp/index.php?topic=setupcmdlineSetupU
|
unknown
|
||
|
https://www.mediachance.com/
|
unknown
|
||
|
https://www.mediachance.com/.
|
unknown
|
||
|
http://www.jrsoftware.org/ishelp/index.php?topic=setupcmdline
|
unknown
|
||
|
http://www.palkornel.hu/innosetup%1
|
unknown
|
||
|
http://www.remobjects.com/ps
|
unknown
|
||
|
https://www.mediachance.com/&
|
unknown
|
||
|
https://mozilla.org0
|
unknown
|
||
|
http://www.sqlite.org/copyright.html.
|
unknown
|
There are 6 hidden URLs, click here to show them.
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
51.195.166.178
|
unknown
|
France
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000
|
Owner
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000
|
SessionHash
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000
|
Sequence
|
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
18DE6000
|
trusted library allocation
|
page read and write
|
|
|
|
1DAA2000
|
trusted library allocation
|
page read and write
|
|
|
|
1250000
|
heap
|
page read and write
|
|
|
|
122A000
|
heap
|
page read and write
|
|
|
|
124A000
|
heap
|
page read and write
|
|
|
|
26172000
|
trusted library allocation
|
page read and write
|
|
|
|
1251000
|
heap
|
page read and write
|
|
|
|
166BD000
|
trusted library allocation
|
page read and write
|
|
|
|
36F02000
|
trusted library allocation
|
page read and write
|
|
|
|
1675D000
|
trusted library allocation
|
page read and write
|
|
|
|
16B1D000
|
trusted library allocation
|
page read and write
|
|
|
|
1253000
|
heap
|
page read and write
|
|
|
|
124A000
|
heap
|
page read and write
|
|
|
|
1666D000
|
trusted library allocation
|
page read and write
|
|
|
|
1689D000
|
trusted library allocation
|
page read and write
|
|
|
|
1251000
|
heap
|
page read and write
|
|
|
|
179E6000
|
trusted library allocation
|
page read and write
|
|
|
|
1259000
|
heap
|
page read and write
|
|
|
|
1662F000
|
trusted library allocation
|
page read and write
|
|
|
|
4EF02000
|
trusted library allocation
|
page read and write
|
|
|
|
974000
|
heap
|
page read and write
|
||
|
B35E17B000
|
stack
|
page read and write
|
||
|
14249190000
|
heap
|
page read and write
|
||
|
23F9000
|
heap
|
page read and write
|
||
|
2394000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1F7A47E0000
|
trusted library allocation
|
page read and write
|
||
|
720000
|
unkown
|
page readonly
|
||
|
1B925C34000
|
trusted library allocation
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
19E25464000
|
heap
|
page read and write
|
||
|
1F516240000
|
heap
|
page read and write
|
||
|
1DAA1000
|
trusted library allocation
|
page read and write
|
||
|
19E25431000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
460000
|
heap
|
page read and write
|
||
|
19C000
|
stack
|
page read and write
|
||
|
22D4F002000
|
heap
|
page read and write
|
||
|
3267000
|
direct allocation
|
page read and write
|
||
|
1D00000
|
trusted library allocation
|
page read and write
|
||
|
205F767D000
|
heap
|
page read and write
|
||
|
1B925EF7000
|
heap
|
page read and write
|
||
|
61EB5000
|
unkown
|
page readonly
|
||
|
12C8000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
2390000
|
heap
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
6DA34000
|
unkown
|
page readonly
|
||
|
2961D002000
|
heap
|
page read and write
|
||
|
1B925D50000
|
trusted library allocation
|
page read and write
|
||
|
1B925F04000
|
heap
|
page read and write
|
||
|
648000
|
heap
|
page read and write
|
||
|
19E2547F000
|
heap
|
page read and write
|
||
|
3F0E07B000
|
stack
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
19E25502000
|
heap
|
page read and write
|
||
|
1B925C11000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1CD0000
|
trusted library allocation
|
page read and write
|
||
|
E3C8AFB000
|
stack
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
19E2543B000
|
heap
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
21BE2202000
|
trusted library allocation
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
74F227E000
|
stack
|
page read and write
|
||
|
E3C8C7E000
|
stack
|
page read and write
|
||
|
3F0E17F000
|
stack
|
page read and write
|
||
|
1F5161B0000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
61EB2000
|
unkown
|
page read and write
|
||
|
2961D022000
|
heap
|
page read and write
|
||
|
CAE3F7F000
|
stack
|
page read and write
|
||
|
1F516202000
|
heap
|
page read and write
|
||
|
24F0000
|
direct allocation
|
page read and write
|
||
|
14249202000
|
heap
|
page read and write
|
||
|
36F01000
|
trusted library allocation
|
page read and write
|
||
|
1F7A482A000
|
heap
|
page read and write
|
||
|
9A0000
|
unkown
|
page readonly
|
||
|
1BBF000
|
heap
|
page read and write
|
||
|
1F516276000
|
heap
|
page read and write
|
||
|
E3C907D000
|
stack
|
page read and write
|
||
|
E3C937E000
|
stack
|
page read and write
|
||
|
1B925CC0000
|
trusted library allocation
|
page read and write
|
||
|
1CA0000
|
trusted library allocation
|
page read and write
|
||
|
94E000
|
stack
|
page read and write
|
||
|
205F7600000
|
heap
|
page read and write
|
||
|
19E25445000
|
heap
|
page read and write
|
||
|
31EB67B000
|
stack
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1251000
|
heap
|
page read and write
|
||
|
39BC000
|
trusted library allocation
|
page read and write
|
||
|
4C057CE000
|
stack
|
page read and write
|
||
|
1B925EFB000
|
heap
|
page read and write
|
||
|
21BE1870000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
3F24C7D000
|
stack
|
page read and write
|
||
|
CAE43FC000
|
stack
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
6D9EF000
|
unkown
|
page readonly
|
||
|
1253000
|
heap
|
page read and write
|
||
|
3F0DA7A000
|
stack
|
page read and write
|
||
|
6D833000
|
unkown
|
page readonly
|
||
|
1B920677000
|
heap
|
page read and write
|
||
|
1F572C24000
|
unkown
|
page read and write
|
||
|
6D7B0000
|
unkown
|
page readonly
|
||
|
1CB0000
|
trusted library allocation
|
page read and write
|
||
|
31EBB7E000
|
stack
|
page read and write
|
||
|
205F7E02000
|
trusted library allocation
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
9DA000
|
unkown
|
page execute read
|
||
|
974000
|
heap
|
page read and write
|
||
|
9DA000
|
unkown
|
page execute read
|
||
|
1B9205F0000
|
trusted library allocation
|
page read and write
|
||
|
3AF0000
|
trusted library allocation
|
page read and write
|
||
|
990000
|
heap
|
page read and write
|
||
|
2D3E000
|
stack
|
page read and write
|
||
|
1F7A487C000
|
heap
|
page read and write
|
||
|
205F73B0000
|
heap
|
page read and write
|
||
|
14249300000
|
heap
|
page read and write
|
||
|
1D00000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
3F0E57F000
|
stack
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
DF967FE000
|
stack
|
page read and write
|
||
|
1B9205C1000
|
trusted library allocation
|
page read and write
|
||
|
1237000
|
heap
|
page read and write
|
||
|
1C80000
|
trusted library allocation
|
page read and write
|
||
|
4CC000
|
stack
|
page read and write
|
||
|
1CD0000
|
trusted library allocation
|
page read and write
|
||
|
1B70000
|
trusted library allocation
|
page read and write
|
||
|
1C84000
|
trusted library allocation
|
page read and write
|
||
|
1BE9000
|
heap
|
page read and write
|
||
|
1B925F02000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
12B7000
|
heap
|
page read and write
|
||
|
205F7700000
|
heap
|
page read and write
|
||
|
1C240000
|
trusted library allocation
|
page read and write
|
||
|
9DA000
|
unkown
|
page execute read
|
||
|
974000
|
heap
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
1F7A4918000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
40C000
|
unkown
|
page write copy
|
||
|
182BDC2E000
|
heap
|
page read and write
|
||
|
40E000
|
stack
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
2FCE000
|
stack
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
182BDA00000
|
heap
|
page read and write
|
||
|
19E2543E000
|
heap
|
page read and write
|
||
|
5E0000
|
heap
|
page read and write
|
||
|
1F516313000
|
heap
|
page read and write
|
||
|
182BDC52000
|
heap
|
page read and write
|
||
|
1F572D02000
|
unkown
|
page read and write
|
||
|
4C056CC000
|
stack
|
page read and write
|
||
|
2961CF90000
|
trusted library allocation
|
page read and write
|
||
|
412000
|
unkown
|
page readonly
|
||
|
1D30000
|
heap
|
page read and write
|
||
|
1B925C14000
|
trusted library allocation
|
page read and write
|
||
|
BC51B7F000
|
unkown
|
page read and write
|
||
|
19E25462000
|
heap
|
page read and write
|
||
|
3F2487F000
|
stack
|
page read and write
|
||
|
4C05D7E000
|
stack
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
22D4E6BA000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
43BA000
|
trusted library allocation
|
page read and write
|
||
|
8AF000
|
stack
|
page read and write
|
||
|
412000
|
unkown
|
page readonly
|
||
|
3440000
|
unkown
|
page read and write
|
||
|
1424928C000
|
heap
|
page read and write
|
||
|
1B920693000
|
heap
|
page read and write
|
||
|
22D4E702000
|
heap
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
B35E27B000
|
stack
|
page read and write
|
||
|
31EBC7D000
|
stack
|
page read and write
|
||
|
31EB97B000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
14249313000
|
heap
|
page read and write
|
||
|
1B925EEC000
|
heap
|
page read and write
|
||
|
1F7A491B000
|
heap
|
page read and write
|
||
|
19E2544C000
|
heap
|
page read and write
|
||
|
639000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1B92069F000
|
heap
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
19E25413000
|
heap
|
page read and write
|
||
|
1B920E00000
|
heap
|
page read and write
|
||
|
1F516302000
|
heap
|
page read and write
|
||
|
205F7702000
|
heap
|
page read and write
|
||
|
1F7A6440000
|
trusted library allocation
|
page read and write
|
||
|
BC51977000
|
unkown
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1CA0000
|
trusted library allocation
|
page read and write
|
||
|
1B10000
|
heap
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
1F516200000
|
heap
|
page read and write
|
||
|
128D000
|
heap
|
page read and write
|
||
|
182BDC00000
|
heap
|
page read and write
|
||
|
19E2546D000
|
heap
|
page read and write
|
||
|
1B9205E3000
|
trusted library allocation
|
page read and write
|
||
|
39B0000
|
trusted library allocation
|
page readonly
|
||
|
205F7649000
|
heap
|
page read and write
|
||
|
4B27000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1CA0000
|
trusted library allocation
|
page read and write
|
||
|
1F573190000
|
unkown
|
page readonly
|
||
|
40E000
|
unkown
|
page write copy
|
||
|
2D00000
|
trusted library allocation
|
page read and write
|
||
|
9D5000
|
unkown
|
page write copy
|
||
|
205F7651000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
9D7000
|
unkown
|
page read and write
|
||
|
6D847000
|
unkown
|
page readonly
|
||
|
7FF000
|
stack
|
page read and write
|
||
|
182BDC3C000
|
heap
|
page read and write
|
||
|
9EF000
|
stack
|
page read and write
|
||
|
12C8000
|
heap
|
page read and write
|
||
|
205F7624000
|
heap
|
page read and write
|
||
|
CAE3A7B000
|
stack
|
page read and write
|
||
|
639000
|
heap
|
page read and write
|
||
|
BC513AE000
|
unkown
|
page read and write
|
||
|
22D4E66C000
|
heap
|
page read and write
|
||
|
44BE000
|
trusted library allocation
|
page read and write
|
||
|
1F7A485C000
|
heap
|
page read and write
|
||
|
4C0574E000
|
stack
|
page read and write
|
||
|
61E01000
|
unkown
|
page execute read
|
||
|
205F764E000
|
heap
|
page read and write
|
||
|
DA8000
|
unkown
|
page execute read
|
||
|
974000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1F572D13000
|
unkown
|
page read and write
|
||
|
74F21FE000
|
stack
|
page read and write
|
||
|
74F20FE000
|
stack
|
page read and write
|
||
|
205F764C000
|
heap
|
page read and write
|
||
|
12B7000
|
heap
|
page read and write
|
||
|
1B925AD0000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1B925E4A000
|
heap
|
page read and write
|
||
|
19E25390000
|
heap
|
page read and write
|
||
|
31EB87B000
|
stack
|
page read and write
|
||
|
6FE000
|
stack
|
page read and write
|
||
|
E3C947F000
|
stack
|
page read and write
|
||
|
182BDC02000
|
heap
|
page read and write
|
||
|
1CCE000
|
trusted library allocation
|
page read and write
|
||
|
1F516213000
|
heap
|
page read and write
|
||
|
74F25FD000
|
stack
|
page read and write
|
||
|
1B92068D000
|
heap
|
page read and write
|
||
|
2E00000
|
heap
|
page read and write
|
||
|
1F7A61D0000
|
remote allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
21C0000
|
direct allocation
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
12D7000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
3F0D56B000
|
stack
|
page read and write
|
||
|
5F0000
|
remote allocation
|
page read and write
|
||
|
1CF0000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
2961D040000
|
heap
|
page read and write
|
||
|
10F1000
|
unkown
|
page readonly
|
||
|
3F0DC7E000
|
stack
|
page read and write
|
||
|
8EE000
|
stack
|
page read and write
|
||
|
1F572C3C000
|
unkown
|
page read and write
|
||
|
9AF000
|
unkown
|
page execute read
|
||
|
635000
|
heap
|
page read and write
|
||
|
1D10000
|
heap
|
page execute and read and write
|
||
|
639000
|
heap
|
page read and write
|
||
|
1F516050000
|
heap
|
page read and write
|
||
|
677000
|
heap
|
page read and write
|
||
|
2880000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1C250000
|
trusted library allocation
|
page read and write
|
||
|
124E000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
21D0000
|
direct allocation
|
page read and write
|
||
|
23A0000
|
trusted library allocation
|
page read and write
|
||
|
61A000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
1F7A4680000
|
heap
|
page read and write
|
||
|
182BDA60000
|
heap
|
page read and write
|
||
|
1CB0000
|
trusted library allocation
|
page read and write
|
||
|
1CE0000
|
trusted library allocation
|
page read and write
|
||
|
17A1D000
|
trusted library allocation
|
page read and write
|
||
|
1B920450000
|
heap
|
page read and write
|
||
|
3F0DF7E000
|
stack
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
128D000
|
heap
|
page read and write
|
||
|
2DBD000
|
stack
|
page read and write
|
||
|
3F0DE7F000
|
stack
|
page read and write
|
||
|
1C47000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1F7A4670000
|
heap
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
21BE1810000
|
heap
|
page read and write
|
||
|
9A0000
|
unkown
|
page readonly
|
||
|
5F0000
|
remote allocation
|
page read and write
|
||
|
65F000
|
stack
|
page read and write
|
||
|
19E2542F000
|
heap
|
page read and write
|
||
|
1B925F04000
|
heap
|
page read and write
|
||
|
6D7B1000
|
unkown
|
page execute read
|
||
|
1CA0000
|
trusted library allocation
|
page read and write
|
||
|
14249120000
|
heap
|
page read and write
|
||
|
2FE0000
|
trusted library section
|
page readonly
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
1B920613000
|
heap
|
page read and write
|
||
|
374E000
|
stack
|
page read and write
|
||
|
22D4E6C2000
|
heap
|
page read and write
|
||
|
1F572AE0000
|
unkown
|
page readonly
|
||
|
4A3A000
|
trusted library allocation
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1B925AE0000
|
trusted library allocation
|
page read and write
|
||
|
5C8000
|
heap
|
page read and write
|
||
|
BC5177C000
|
unkown
|
page read and write
|
||
|
1B925BF0000
|
trusted library allocation
|
page read and write
|
||
|
31EBD7F000
|
stack
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
2C00000
|
heap
|
page read and write
|
||
|
22D4E6E1000
|
heap
|
page read and write
|
||
|
2257000
|
direct allocation
|
page read and write
|
||
|
384F000
|
stack
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
CAE3BFF000
|
stack
|
page read and write
|
||
|
3F0DEFF000
|
stack
|
page read and write
|
||
|
1D50000
|
heap
|
page read and write
|
||
|
1F7A61D0000
|
remote allocation
|
page read and write
|
||
|
30000
|
heap
|
page read and write
|
||
|
9AF000
|
unkown
|
page execute read
|
||
|
DA8000
|
unkown
|
page execute read
|
||
|
43B0000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1F5729A0000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1CC0000
|
trusted library allocation
|
page read and write
|
||
|
1CB7000
|
trusted library allocation
|
page read and write
|
||
|
1F7A4900000
|
heap
|
page read and write
|
||
|
66D000
|
heap
|
page read and write
|
||
|
28A0000
|
heap
|
page read and write
|
||
|
1F516040000
|
heap
|
page read and write
|
||
|
19E2547B000
|
heap
|
page read and write
|
||
|
1B925E86000
|
heap
|
page read and write
|
||
|
19E25330000
|
heap
|
page read and write
|
||
|
182BDB60000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1B920F18000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
22D4E623000
|
heap
|
page read and write
|
||
|
1CC5000
|
trusted library allocation
|
page read and write
|
||
|
36F37000
|
trusted library allocation
|
page read and write
|
||
|
23F0000
|
heap
|
page read and write
|
||
|
421E000
|
stack
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1CA0000
|
trusted library allocation
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
19E253C0000
|
trusted library allocation
|
page read and write
|
||
|
22D4E600000
|
heap
|
page read and write
|
||
|
12D7000
|
heap
|
page read and write
|
||
|
124B000
|
heap
|
page read and write
|
||
|
2961DA02000
|
trusted library allocation
|
page read and write
|
||
|
9A1000
|
unkown
|
page execute read
|
||
|
364F000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
30000
|
heap
|
page read and write
|
||
|
19F4000
|
stack
|
page read and write
|
||
|
1B925EA4000
|
heap
|
page read and write
|
||
|
1B92068F000
|
heap
|
page read and write
|
||
|
3008000
|
heap
|
page read and write
|
||
|
412000
|
unkown
|
page readonly
|
||
|
1C220000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1B925D30000
|
trusted library allocation
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
1122000
|
unkown
|
page readonly
|
||
|
974000
|
heap
|
page read and write
|
||
|
40E000
|
unkown
|
page write copy
|
||
|
71362FF000
|
stack
|
page read and write
|
||
|
49E000
|
unkown
|
page read and write
|
||
|
B35E2FE000
|
stack
|
page read and write
|
||
|
40C000
|
unkown
|
page read and write
|
||
|
3F2467F000
|
stack
|
page read and write
|
||
|
7AE000
|
stack
|
page read and write
|
||
|
182BDC13000
|
heap
|
page read and write
|
||
|
26171000
|
trusted library allocation
|
page read and write
|
||
|
9AB000
|
unkown
|
page readonly
|
||
|
BC5187B000
|
unkown
|
page read and write
|
||
|
3B7C000
|
trusted library allocation
|
page read and write
|
||
|
23F0000
|
direct allocation
|
page read and write
|
||
|
9AF000
|
unkown
|
page execute read
|
||
|
205F7622000
|
heap
|
page read and write
|
||
|
19E25320000
|
heap
|
page read and write
|
||
|
3F0DB7B000
|
stack
|
page read and write
|
||
|
1B920702000
|
heap
|
page read and write
|
||
|
3F0E27E000
|
stack
|
page read and write
|
||
|
22D4E713000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1B925EE4000
|
heap
|
page read and write
|
||
|
19E2542A000
|
heap
|
page read and write
|
||
|
1F572B00000
|
unkown
|
page read and write
|
||
|
1F7A61D0000
|
remote allocation
|
page read and write
|
||
|
1D55000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
31E0000
|
direct allocation
|
page read and write
|
||
|
E3C957E000
|
stack
|
page read and write
|
||
|
31EBA77000
|
stack
|
page read and write
|
||
|
1B925D50000
|
remote allocation
|
page read and write
|
||
|
2800000
|
trusted library allocation
|
page read and write
|
||
|
22D4E590000
|
heap
|
page read and write
|
||
|
1CB0000
|
trusted library allocation
|
page read and write
|
||
|
21BE19A0000
|
remote allocation
|
page read and write
|
||
|
49D000
|
unkown
|
page write copy
|
||
|
1B9B000
|
heap
|
page read and write
|
||
|
19E25E02000
|
trusted library allocation
|
page read and write
|
||
|
22D4F100000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1F572C13000
|
unkown
|
page read and write
|
||
|
4C05B7E000
|
stack
|
page read and write
|
||
|
61ED1000
|
unkown
|
page write copy
|
||
|
722000
|
unkown
|
page readonly
|
||
|
61A000
|
heap
|
page read and write
|
||
|
19E25450000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
19E25443000
|
heap
|
page read and write
|
||
|
2F0E000
|
stack
|
page read and write
|
||
|
22D4E629000
|
heap
|
page read and write
|
||
|
1B920E15000
|
heap
|
page read and write
|
||
|
1F5160B0000
|
heap
|
page read and write
|
||
|
2250000
|
direct allocation
|
page read and write
|
||
|
128D000
|
heap
|
page read and write
|
||
|
74F24FE000
|
stack
|
page read and write
|
||
|
CAE40FB000
|
stack
|
page read and write
|
||
|
1B920E02000
|
heap
|
page read and write
|
||
|
1B925BF8000
|
trusted library allocation
|
page read and write
|
||
|
14249200000
|
heap
|
page read and write
|
||
|
1B925BF0000
|
trusted library allocation
|
page read and write
|
||
|
61E00000
|
unkown
|
page readonly
|
||
|
9A1000
|
unkown
|
page execute read
|
||
|
1B925E1D000
|
heap
|
page read and write
|
||
|
1B925BFE000
|
trusted library allocation
|
page read and write
|
||
|
CAE41FD000
|
stack
|
page read and write
|
||
|
2258000
|
direct allocation
|
page read and write
|
||
|
60F000
|
heap
|
page read and write
|
||
|
19E2543A000
|
heap
|
page read and write
|
||
|
1B9206FD000
|
heap
|
page read and write
|
||
|
1CE0000
|
heap
|
page execute and read and write
|
||
|
128D000
|
heap
|
page read and write
|
||
|
14249130000
|
heap
|
page read and write
|
||
|
9A1000
|
unkown
|
page execute read
|
||
|
22D4E689000
|
heap
|
page read and write
|
||
|
2961CEF0000
|
heap
|
page read and write
|
||
|
21BE19A0000
|
remote allocation
|
page read and write
|
||
|
1F7A61A0000
|
trusted library allocation
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
1220000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1424923C000
|
heap
|
page read and write
|
||
|
1CAA000
|
trusted library allocation
|
page read and write
|
||
|
205F7613000
|
heap
|
page read and write
|
||
|
E3C8F7E000
|
stack
|
page read and write
|
||
|
2961D080000
|
heap
|
page read and write
|
||
|
128D000
|
heap
|
page read and write
|
||
|
720000
|
unkown
|
page readonly
|
||
|
652000
|
heap
|
page read and write
|
||
|
14249267000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
19E25442000
|
heap
|
page read and write
|
||
|
49C000
|
unkown
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
974000
|
heap
|
page read and write
|
||
|
225C000
|
direct allocation
|
page read and write
|
||
|
1F7A6400000
|
trusted library allocation
|
page read and write
|
||
|
182BDA10000
|
heap
|
page read and write
|
||
|
DF966FE000
|
stack
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
9A1000
|
unkown
|
page execute read
|
||
|
1390000
|
heap
|
page read and write
|
||
|
1CA0000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
9DA000
|
unkown
|
page execute read
|
||
|
14249252000
|
heap
|
page read and write
|
||
|
1B9216E0000
|
trusted library section
|
page readonly
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
1CA0000
|
trusted library allocation
|
page read and write
|
||
|
1B925D40000
|
trusted library allocation
|
page read and write
|
||
|
1424925D000
|
heap
|
page read and write
|
||
|
1B925D50000
|
remote allocation
|
page read and write
|
||
|
182BDD02000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
1B925E0C000
|
heap
|
page read and write
|
||
|
22D4E5F0000
|
heap
|
page read and write
|
||
|
14249263000
|
heap
|
page read and write
|
||
|
205F7653000
|
heap
|
page read and write
|
||
|
7135BAB000
|
stack
|
page read and write
|
||
|
CAE44FF000
|
stack
|
page read and write
|
||
|
1B920F13000
|
heap
|
page read and write
|
||
|
9D4000
|
unkown
|
page read and write
|
||
|
DA7000
|
unkown
|
page read and write
|
||
|
11FF000
|
stack
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
1F7A4800000
|
heap
|
page read and write
|
||
|
DA7000
|
unkown
|
page write copy
|
||
|
31B0000
|
direct allocation
|
page read and write
|
||
|
1D35000
|
heap
|
page read and write
|
||
|
427D000
|
trusted library allocation
|
page read and write
|
||
|
722000
|
unkown
|
page readonly
|
||
|
412000
|
unkown
|
page readonly
|
||
|
12CB000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1D20000
|
trusted library allocation
|
page read and write
|
||
|
1B920F00000
|
heap
|
page read and write
|
||
|
1B92063D000
|
heap
|
page read and write
|
||
|
61ECE000
|
unkown
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1CA0000
|
trusted library allocation
|
page read and write
|
||
|
1F7A484B000
|
heap
|
page read and write
|
||
|
1BEC000
|
heap
|
page read and write
|
||
|
1F51622A000
|
heap
|
page read and write
|
||
|
74F247E000
|
stack
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1701D000
|
trusted library allocation
|
page read and write
|
||
|
124F000
|
heap
|
page read and write
|
||
|
9DA000
|
unkown
|
page execute read
|
||
|
1B925C20000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
21C4000
|
direct allocation
|
page read and write
|
||
|
14249282000
|
heap
|
page read and write
|
||
|
61ECB000
|
unkown
|
page readonly
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
1B925EC2000
|
heap
|
page read and write
|
||
|
1CE0000
|
trusted library allocation
|
page read and write
|
||
|
21BE1A00000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
124E000
|
heap
|
page read and write
|
||
|
2C10000
|
heap
|
page read and write
|
||
|
10F1000
|
unkown
|
page readonly
|
||
|
974000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
1CCD0000
|
trusted library allocation
|
page read and write
|
||
|
398F000
|
stack
|
page read and write
|
||
|
3F0E379000
|
stack
|
page read and write
|
||
|
1C0000
|
remote allocation
|
page read and write
|
||
|
655000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
6D851000
|
unkown
|
page execute read
|
||
|
1B50000
|
trusted library allocation
|
page read and write
|
||
|
1B9216F0000
|
trusted library section
|
page readonly
|
||
|
1B920679000
|
heap
|
page read and write
|
||
|
205F764F000
|
heap
|
page read and write
|
||
|
1AD0000
|
heap
|
page read and write
|
||
|
2961D075000
|
heap
|
page read and write
|
||
|
4C05E7E000
|
stack
|
page read and write
|
||
|
3370000
|
trusted library allocation
|
page read and write
|
||
|
46E000
|
stack
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
5B0000
|
trusted library allocation
|
page read and write
|
||
|
12AE000
|
heap
|
page read and write
|
||
|
205F7670000
|
heap
|
page read and write
|
||
|
CAE42FE000
|
stack
|
page read and write
|
||
|
1B920F02000
|
heap
|
page read and write
|
||
|
2961CF00000
|
heap
|
page read and write
|
||
|
1B925F00000
|
heap
|
page read and write
|
||
|
E3C869C000
|
stack
|
page read and write
|
||
|
DF964FB000
|
stack
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1F7A484C000
|
heap
|
page read and write
|
||
|
1E9B000
|
heap
|
page read and write
|
||
|
14249C02000
|
trusted library allocation
|
page read and write
|
||
|
31EB6FE000
|
stack
|
page read and write
|
||
|
1CC0000
|
trusted library allocation
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
1F572C52000
|
unkown
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
5CA000
|
stack
|
page read and write
|
||
|
3000000
|
heap
|
page read and write
|
||
|
613000
|
heap
|
page read and write
|
||
|
49C000
|
unkown
|
page write copy
|
||
|
974000
|
heap
|
page read and write
|
||
|
1F7A4888000
|
heap
|
page read and write
|
||
|
1B8D000
|
heap
|
page read and write
|
||
|
1D20000
|
trusted library allocation
|
page read and write
|
||
|
21BE1A29000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1B927000000
|
heap
|
page read and write
|
||
|
E3C927F000
|
stack
|
page read and write
|
||
|
5A0000
|
heap
|
page read and write
|
||
|
4A0000
|
unkown
|
page write copy
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
3ACC000
|
trusted library allocation
|
page read and write
|
||
|
71360F9000
|
stack
|
page read and write
|
||
|
1B9203E0000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1B920713000
|
heap
|
page read and write
|
||
|
9AB000
|
unkown
|
page readonly
|
||
|
974000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
1CA0000
|
trusted library allocation
|
page read and write
|
||
|
2D7D000
|
stack
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
4AE000
|
unkown
|
page readonly
|
||
|
205F764A000
|
heap
|
page read and write
|
||
|
E3C8D7C000
|
stack
|
page read and write
|
||
|
19E2544A000
|
heap
|
page read and write
|
||
|
14249302000
|
heap
|
page read and write
|
||
|
B35E4F7000
|
stack
|
page read and write
|
||
|
10F1000
|
unkown
|
page readonly
|
||
|
1257000
|
heap
|
page read and write
|
||
|
1B920550000
|
trusted library allocation
|
page read and write
|
||
|
2961D028000
|
heap
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
1F7A483E000
|
heap
|
page read and write
|
||
|
1BF1000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1CE0000
|
trusted library allocation
|
page read and write
|
||
|
19E25484000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
A7F000
|
stack
|
page read and write
|
||
|
3F240BB000
|
stack
|
page read and write
|
||
|
2190000
|
heap
|
page read and write
|
||
|
12D7000
|
heap
|
page read and write
|
||
|
1D40000
|
trusted library allocation
|
page read and write
|
||
|
19E25465000
|
heap
|
page read and write
|
||
|
6DA30000
|
unkown
|
page read and write
|
||
|
1B925EC0000
|
heap
|
page read and write
|
||
|
1B925C10000
|
trusted library allocation
|
page read and write
|
||
|
400000
|
unkown
|
page readonly
|
||
|
19E25448000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
1AF0000
|
heap
|
page read and write
|
||
|
1F7A4813000
|
heap
|
page read and write
|
||
|
1B9216D0000
|
trusted library section
|
page readonly
|
||
|
635000
|
heap
|
page read and write
|
||
|
3F24B7F000
|
stack
|
page read and write
|
||
|
74F1D4B000
|
stack
|
page read and write
|
||
|
2360000
|
direct allocation
|
page execute and read and write
|
||
|
21BE1A02000
|
heap
|
page read and write
|
||
|
1B925C20000
|
trusted library allocation
|
page read and write
|
||
|
21BE1A13000
|
heap
|
page read and write
|
||
|
182BDC2A000
|
heap
|
page read and write
|
||
|
3F2497C000
|
stack
|
page read and write
|
||
|
1C230000
|
trusted library allocation
|
page read and write
|
||
|
B35E3FD000
|
stack
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
2F8E000
|
stack
|
page read and write
|
||
|
23F5000
|
heap
|
page read and write
|
||
|
19E2544F000
|
heap
|
page read and write
|
||
|
182BDC41000
|
heap
|
page read and write
|
||
|
1B925E63000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
10F1000
|
unkown
|
page readonly
|
||
|
21BE1A40000
|
heap
|
page read and write
|
||
|
40E000
|
unkown
|
page write copy
|
||
|
19E25466000
|
heap
|
page read and write
|
||
|
182BE402000
|
trusted library allocation
|
page read and write
|
||
|
3264000
|
direct allocation
|
page read and write
|
||
|
182BDC3A000
|
heap
|
page read and write
|
||
|
205F7520000
|
trusted library allocation
|
page read and write
|
||
|
1F7A4867000
|
heap
|
page read and write
|
||
|
128D000
|
heap
|
page read and write
|
||
|
DF965FB000
|
stack
|
page read and write
|
||
|
1F572990000
|
heap
|
page read and write
|
||
|
1B925A60000
|
trusted library allocation
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
7135FFE000
|
stack
|
page read and write
|
||
|
1B921710000
|
trusted library section
|
page readonly
|
||
|
601000
|
heap
|
page read and write
|
||
|
1B925EEA000
|
heap
|
page read and write
|
||
|
CAE407D000
|
stack
|
page read and write
|
||
|
31EB77E000
|
stack
|
page read and write
|
||
|
354E000
|
stack
|
page read and write
|
||
|
182BDC44000
|
heap
|
page read and write
|
||
|
165F000
|
stack
|
page read and write
|
||
|
3F0DD7B000
|
stack
|
page read and write
|
||
|
19E25449000
|
heap
|
page read and write
|
||
|
1DAD7000
|
trusted library allocation
|
page read and write
|
||
|
205F73C0000
|
heap
|
page read and write
|
||
|
23F0000
|
direct allocation
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
1122000
|
unkown
|
page readonly
|
||
|
182BDC4A000
|
heap
|
page read and write
|
||
|
9AB000
|
unkown
|
page readonly
|
||
|
E3C8E7E000
|
stack
|
page read and write
|
||
|
9A1000
|
unkown
|
page execute read
|
||
|
1F572E00000
|
unkown
|
page readonly
|
||
|
1BC1000
|
heap
|
page read and write
|
||
|
9AD000
|
unkown
|
page read and write
|
||
|
1B920675000
|
heap
|
page read and write
|
||
|
4B24000
|
trusted library allocation
|
page read and write
|
||
|
1B925D10000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1F572C9C000
|
unkown
|
page read and write
|
||
|
722000
|
unkown
|
page readonly
|
||
|
1CB0000
|
trusted library allocation
|
page read and write
|
||
|
B35DD3B000
|
stack
|
page read and write
|
||
|
2DE0000
|
heap
|
page read and write
|
||
|
3F2477F000
|
stack
|
page read and write
|
||
|
261A7000
|
trusted library allocation
|
page read and write
|
||
|
1C0000
|
remote allocation
|
page read and write
|
||
|
23B0000
|
trusted library allocation
|
page read and write
|
||
|
2961D100000
|
heap
|
page read and write
|
||
|
205F763C000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
22D4E63D000
|
heap
|
page read and write
|
||
|
19B000
|
stack
|
page read and write
|
||
|
9AF000
|
unkown
|
page execute read
|
||
|
974000
|
heap
|
page read and write
|
||
|
1B925D50000
|
remote allocation
|
page read and write
|
||
|
412000
|
unkown
|
page readonly
|
||
|
3F0D978000
|
stack
|
page read and write
|
||
|
24B0000
|
direct allocation
|
page read and write
|
||
|
1B9206A1000
|
heap
|
page read and write
|
||
|
130B000
|
heap
|
page read and write
|
||
|
4EF37000
|
trusted library allocation
|
page read and write
|
||
|
205F7713000
|
heap
|
page read and write
|
||
|
19E25441000
|
heap
|
page read and write
|
||
|
21BE19A0000
|
remote allocation
|
page read and write
|
||
|
635000
|
heap
|
page read and write
|
||
|
93000
|
stack
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
DA7000
|
unkown
|
page write copy
|
||
|
83E000
|
stack
|
page read and write
|
||
|
1B920629000
|
heap
|
page read and write
|
||
|
9AB000
|
unkown
|
page readonly
|
||
|
400000
|
unkown
|
page readonly
|
||
|
18E1D000
|
trusted library allocation
|
page read and write
|
||
|
19E25469000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
2F4E000
|
stack
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1E97000
|
heap
|
page read and write
|
||
|
205F7708000
|
heap
|
page read and write
|
||
|
12AE000
|
heap
|
page read and write
|
||
|
80170000
|
trusted library allocation
|
page read and write
|
||
|
21BE1B02000
|
heap
|
page read and write
|
||
|
205F7652000
|
heap
|
page read and write
|
||
|
344C000
|
stack
|
page read and write
|
||
|
4C05C7E000
|
stack
|
page read and write
|
||
|
3F24A7C000
|
stack
|
page read and write
|
||
|
CAE3C7C000
|
stack
|
page read and write
|
||
|
1B925C30000
|
trusted library allocation
|
page read and write
|
||
|
2310000
|
direct allocation
|
page read and write
|
||
|
21BE1A5C000
|
heap
|
page read and write
|
||
|
BC51A7E000
|
unkown
|
page read and write
|
||
|
2961D079000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1C0000
|
remote allocation
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
1B921700000
|
trusted library section
|
page readonly
|
||
|
1B9215E0000
|
trusted library allocation
|
page read and write
|
||
|
1F516A02000
|
trusted library allocation
|
page read and write
|
||
|
142491C0000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
DA7000
|
unkown
|
page write copy
|
||
|
974000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
470000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1F51625B000
|
heap
|
page read and write
|
||
|
1CC0000
|
trusted library allocation
|
page read and write
|
||
|
CAE3E7C000
|
stack
|
page read and write
|
||
|
1F7A46E0000
|
heap
|
page read and write
|
||
|
14249229000
|
heap
|
page read and write
|
||
|
4249000
|
trusted library allocation
|
page read and write
|
||
|
1F7A484A000
|
heap
|
page read and write
|
||
|
1B920656000
|
heap
|
page read and write
|
||
|
1CD0000
|
trusted library allocation
|
page read and write
|
||
|
B35DDBE000
|
stack
|
page read and write
|
||
|
22D4E6CB000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
DA8000
|
unkown
|
page execute read
|
||
|
1B9205E0000
|
trusted library allocation
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
388E000
|
stack
|
page read and write
|
||
|
128D000
|
heap
|
page read and write
|
||
|
205F7687000
|
heap
|
page read and write
|
||
|
1CB0000
|
trusted library allocation
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
1B920F18000
|
heap
|
page read and write
|
||
|
205F764D000
|
heap
|
page read and write
|
||
|
4AE000
|
unkown
|
page readonly
|
||
|
612000
|
heap
|
page read and write
|
||
|
1E90000
|
heap
|
page read and write
|
||
|
1F573402000
|
unkown
|
page read and write
|
||
|
74F26FD000
|
stack
|
page read and write
|
||
|
648000
|
heap
|
page read and write
|
||
|
BC5167E000
|
unkown
|
page read and write
|
||
|
9AF000
|
unkown
|
page execute read
|
||
|
1B80000
|
heap
|
page read and write
|
||
|
1F7A6202000
|
trusted library allocation
|
page read and write
|
||
|
5C0000
|
heap
|
page read and write
|
||
|
4B00000
|
trusted library allocation
|
page read and write
|
||
|
1B920626000
|
heap
|
page read and write
|
||
|
19E25400000
|
heap
|
page read and write
|
||
|
1F7A4885000
|
heap
|
page read and write
|
||
|
2961D013000
|
heap
|
page read and write
|
||
|
B35E07E000
|
stack
|
page read and write
|
||
|
14249213000
|
heap
|
page read and write
|
||
|
1B925E00000
|
heap
|
page read and write
|
||
|
DA8000
|
unkown
|
page execute read
|
||
|
1F7A485B000
|
heap
|
page read and write
|
||
|
2310000
|
direct allocation
|
page read and write
|
||
|
23E0000
|
direct allocation
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
19E2542E000
|
heap
|
page read and write
|
||
|
BC5132C000
|
stack
|
page read and write
|
||
|
22D4E613000
|
heap
|
page read and write
|
||
|
40C000
|
unkown
|
page write copy
|
||
|
61ECA000
|
unkown
|
page read and write
|
||
|
3F0DDFF000
|
stack
|
page read and write
|
||
|
10F1000
|
unkown
|
page readonly
|
||
|
14249262000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
1B925EAB000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
4221000
|
trusted library allocation
|
page read and write
|
||
|
1F572A00000
|
heap
|
page read and write
|
||
|
6DA2F000
|
unkown
|
page write copy
|
||
|
74F237E000
|
stack
|
page read and write
|
||
|
B35E5FF000
|
stack
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
19E25446000
|
heap
|
page read and write
|
||
|
19E25447000
|
heap
|
page read and write
|
||
|
2961D000000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
61A000
|
heap
|
page read and write
|
||
|
6DA2E000
|
unkown
|
page read and write
|
||
|
61ED2000
|
unkown
|
page readonly
|
||
|
1F7A4913000
|
heap
|
page read and write
|
||
|
155D000
|
stack
|
page read and write
|
||
|
1B925D00000
|
trusted library allocation
|
page read and write
|
||
|
1B920726000
|
heap
|
page read and write
|
||
|
1B92066F000
|
heap
|
page read and write
|
||
|
2961D058000
|
heap
|
page read and write
|
||
|
900000
|
trusted library allocation
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
128D000
|
heap
|
page read and write
|
||
|
1B9203F0000
|
heap
|
page read and write
|
||
|
40C000
|
unkown
|
page write copy
|
||
|
5F0000
|
remote allocation
|
page read and write
|
||
|
1CB0000
|
trusted library allocation
|
page read and write
|
||
|
6D850000
|
unkown
|
page readonly
|
||
|
1B925E3D000
|
heap
|
page read and write
|
||
|
2961D113000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1B925E2A000
|
heap
|
page read and write
|
||
|
1F7A4902000
|
heap
|
page read and write
|
||
|
19E2547C000
|
heap
|
page read and write
|
||
|
4A00000
|
trusted library allocation
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
1CA0000
|
trusted library allocation
|
page read and write
|
||
|
44CA000
|
trusted library allocation
|
page read and write
|
||
|
12B6000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1F7A485A000
|
heap
|
page read and write
|
||
|
12AE000
|
heap
|
page read and write
|
||
|
40E000
|
unkown
|
page write copy
|
||
|
14249308000
|
heap
|
page read and write
|
||
|
1F572C00000
|
unkown
|
page read and write
|
||
|
1CD0000
|
trusted library allocation
|
page read and write
|
||
|
DA7000
|
unkown
|
page write copy
|
||
|
205F7648000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
19E25463000
|
heap
|
page read and write
|
||
|
22D4EE90000
|
trusted library allocation
|
page read and write
|
||
|
97E000
|
stack
|
page read and write
|
||
|
22D4E580000
|
heap
|
page read and write
|
||
|
401000
|
unkown
|
page execute read
|
||
|
71361FC000
|
stack
|
page read and write
|
||
|
12C8000
|
heap
|
page read and write
|
||
|
DF95FBB000
|
stack
|
page read and write
|
||
|
3F244FE000
|
stack
|
page read and write
|
||
|
12C8000
|
heap
|
page read and write
|
||
|
1B920600000
|
heap
|
page read and write
|
||
|
3E10000
|
heap
|
page read and write
|
||
|
670000
|
heap
|
page read and write
|
||
|
480000
|
heap
|
page read and write
|
||
|
21BE1970000
|
trusted library allocation
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
||
|
19E25478000
|
heap
|
page read and write
|
||
|
9AB000
|
unkown
|
page readonly
|
||
|
974000
|
heap
|
page read and write
|
||
|
1B925D20000
|
trusted library allocation
|
page read and write
|
||
|
1CF0000
|
trusted library allocation
|
page read and write
|
||
|
12AF000
|
heap
|
page read and write
|
||
|
1B921A60000
|
trusted library allocation
|
page read and write
|
||
|
970000
|
heap
|
page read and write
|
||
|
9A0000
|
unkown
|
page readonly
|
||
|
974000
|
heap
|
page read and write
|
||
|
1B9216C0000
|
trusted library section
|
page readonly
|
||
|
E3C917F000
|
stack
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
1D40000
|
trusted library allocation
|
page read and write
|
||
|
1C90000
|
trusted library allocation
|
page read and write
|
||
|
3430000
|
unkown
|
page read and write
|
||
|
2961D06B000
|
heap
|
page read and write
|
||
|
1CCE0000
|
trusted library allocation
|
page read and write
|
||
|
4243000
|
trusted library allocation
|
page read and write
|
||
|
2961CF60000
|
heap
|
page read and write
|
||
|
93F000
|
stack
|
page read and write
|
||
|
1B920560000
|
trusted library section
|
page read and write
|
||
|
205F7420000
|
heap
|
page read and write
|
||
|
9A0000
|
unkown
|
page readonly
|
||
|
40C000
|
unkown
|
page write copy
|
||
|
974000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
974000
|
heap
|
page read and write
|
||
|
9A0000
|
unkown
|
page readonly
|
||
|
DA8000
|
unkown
|
page execute read
|
||
|
3F0E0FE000
|
stack
|
page read and write
|
||
|
21BE1800000
|
heap
|
page read and write
|
||
|
2961D102000
|
heap
|
page read and write
|
||
|
1CC0000
|
trusted library allocation
|
page read and write
|
||
|
9C000
|
stack
|
page read and write
|
||
|
6D843000
|
unkown
|
page read and write
|
||
|
2C01000
|
heap
|
page read and write
|
There are 927 hidden memdumps, click here to show them.