IOCReport

loading gif

Files

File Path
Type
Category
Malicious
https://bms.kaseya.com/Common/GetFile.ashx?enc=iAIF3krAhFnrzr2%2fdZEndh%2foMj7qNe0PshuhX7KBbHtbR9vpsvc9XqhjBxH0y6QoOe1BdU1OcYCSw%2fCxijoaHl0%2faUv%2fJAurw9NEQN2A5zE%3d
URL
initial url
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\05349744be1ad4ad_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0786087c3c360803_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0998db3a32ab3f41_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0ace9ee3d914a5c0_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\0f25049d69125b1e_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\230e5fe3e6f82b2c_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\2798067b152b83c7_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\2a426f11fd8ebe18_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\3a4ae3940784292a_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\4a0e94571d979b3c_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\560e9c8bff5008d8_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\56c4cd218555ae2b_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\6fb6d030c4ebbc21_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\7120c35b509b0fae_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\71febec55d5c75cd_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\86b8040b7132b608_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\8c159cc5880890bc_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\8c84d92a9dbce3e0_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\8e417e79df3bf0e9_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\91cec06bb2836fa5_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\927a1596c37ebe5e_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\92c56fa2a6c4d5ba_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\946896ee27df7947_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\983b7a3da8f39a46_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\aba6710fde0876af_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\b6d5deb4812ac6e9_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\bba29d2e6197e2f4_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\bf0ac66ae1eb4a7f_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\cf3e34002cde7e9c_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\d449e58cb15daaf1_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\d88192ac53852604_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\de789e80edd740d6_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\f0cf6dfa8a1afa3d_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\f4a0d4ca2f3b95da_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\f941376b2efdd6e6_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\f971b7eda7fa05c3_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\fd17b2d8331c91e8_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\fdd733564de6fbcb_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\febb41df4ea2b63a_0
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Code Cache\js\index-dir\temp-index
Maple help database
modified
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\LOG
ASCII text
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\AcroCef\DC\Acrobat\Cache\Visited Links
data
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ConnectorIcons\icon-210628213639Z-225.bmp
PC bitmap, Windows 3.x format, 117 x -152 x 32
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages
SQLite 3.x database, last written using SQLite version 3024000
dropped
 clean
C:\Users\user\AppData\LocalLow\Adobe\Acrobat\DC\ReaderMessages-journal
data
dropped
 clean
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\AdobeFnt16.lst.4244
PostScript document text
dropped
 clean
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\Cache\AdobeFnt16.lst.4244
PostScript document text
dropped
 clean
C:\Users\user\AppData\Local\Adobe\Acrobat\DC\UserCache.bin
data
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\RecoveryStore.{3B83DA5F-D84F-11EB-90EB-ECF4BBEA1588}.dat
Microsoft Word Document
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Internet Explorer\Recovery\High\Active\{3B83DA61-D84F-11EB-90EB-ECF4BBEA1588}.dat
Microsoft Word Document
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\2WF3MMUU\GetFile[1].htm
HTML document, ASCII text
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\dffa983a-7248-493b-8e1c-28fd79d790ab.pdf.mqkffie.partial
PDF document, version 1.4
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\dffa983a-7248-493b-8e1c-28fd79d790ab.pdf.mqkffie.partial:Zone.Identifier
ASCII text, with CRLF line terminators
dropped
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\dffa983a-7248-493b-8e1c-28fd79d790ab.pdf:Zone.Identifier
very short file (no magic)
modified
 clean
C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\OR0WKIO1\dffa983a-7248-493b-8e1c-28fd79d790ab[1].pdf
PDF document, version 1.4
dropped
 clean
C:\Users\user\AppData\Local\Temp\JavaDeployReg.log
ASCII text, with CRLF line terminators
modified
 clean
C:\Users\user\AppData\Local\Temp\~DF50DFDE34EA9244B9.TMP
data
dropped
 clean
C:\Users\user\AppData\Local\Temp\~DF87D44F45FD4D4F92.TMP
data
dropped
 clean
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\JSCache\GlobSettings
ASCII text
modified
 clean
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\ES_session_store
data
dropped
 clean
C:\Users\user\AppData\Roaming\Adobe\Acrobat\DC\Security\ES_session_storei
MS Windows COFF PA-RISC object file
dropped
 clean
There are 52 hidden files, click here to show them.

Processes

Path
Cmdline
Malicious
C:\Program Files\internet explorer\iexplore.exe
'C:\Program Files\Internet Explorer\iexplore.exe' -Embedding
 clean
C:\Program Files (x86)\Internet Explorer\iexplore.exe
'C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE' SCODEF:6776 CREDAT:17410 /prefetch:2
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe' 'C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\dffa983a-7248-493b-8e1c-28fd79d790ab.pdf'
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe' --type=renderer /prefetch:1 'C:\Users\user\AppData\Local\Microsoft\Windows\INetCache\IE\9026IKNJ\dffa983a-7248-493b-8e1c-28fd79d790ab.pdf'
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe' --backgroundcolor=16514043
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe' --type=renderer --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --touch-events=enabled --field-trial-handle=1676,13757733991334525867,7786359997496625938,131072 --disable-features=VizDisplayCompositor --disable-gpu-compositing --service-pipe-token=5642234162136683367 --lang=en-US --disable-pack-loading --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --log-severity=disable --product-version='ReaderServices/19.12.20035 Chrome/80.0.0.0' --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=5642234162136683367 --renderer-client-id=2 --mojo-platform-channel-handle=1728 --allow-no-sandbox-job /prefetch:1
clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe' --type=gpu-process --field-trial-handle=1676,13757733991334525867,7786359997496625938,131072 --disable-features=VizDisplayCompositor --disable-pack-loading --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --log-severity=disable --product-version='ReaderServices/19.12.20035 Chrome/80.0.0.0' --lang=en-US --gpu-preferences=KAAAAAAAAACAAwABAQAAAAAAAAAAAGAAAAAAAAEAAAAIAAAAAAAAACgAAAAEAAAAIAAAAAAAAAAoAAAAAAAAADAAAAAAAAAAOAAAAAAAAAAQAAAAAAAAAAAAAAAFAAAAEAAAAAAAAAAAAAAABgAAABAAAAAAAAAAAQAAAAUAAAAQAAAAAAAAAAEAAAAGAAAA --use-gl=swiftshader-webgl --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --service-request-channel-token=6949978120898280864 --mojo-platform-channel-handle=1748 --allow-no-sandbox-job --ignored=' --type=renderer ' /prefetch:2
clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe' --type=renderer --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --touch-events=enabled --field-trial-handle=1676,13757733991334525867,7786359997496625938,131072 --disable-features=VizDisplayCompositor --disable-gpu-compositing --service-pipe-token=348665043263964070 --lang=en-US --disable-pack-loading --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --log-severity=disable --product-version='ReaderServices/19.12.20035 Chrome/80.0.0.0' --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=348665043263964070 --renderer-client-id=4 --mojo-platform-channel-handle=1832 --allow-no-sandbox-job /prefetch:1
clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe
'C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\RdrCEF.exe' --type=renderer --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --touch-events=enabled --field-trial-handle=1676,13757733991334525867,7786359997496625938,131072 --disable-features=VizDisplayCompositor --disable-gpu-compositing --service-pipe-token=12973235889727847520 --lang=en-US --disable-pack-loading --log-file='C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroCEF\debug.log' --log-severity=disable --product-version='ReaderServices/19.12.20035 Chrome/80.0.0.0' --device-scale-factor=1 --num-raster-threads=2 --enable-main-frame-before-activation --service-request-channel-token=12973235889727847520 --renderer-client-id=5 --mojo-platform-channel-handle=1744 --allow-no-sandbox-job /prefetch:1
clean

URLs

Name
IP
Malicious
https://bms.kaseya.com/media/GetFile.ashx?enc=iAIF3krAhFnrzr2%2fdZEndh%2foMj7qNe0PshuhX7KBbHtbR9vpsv
unknown
 clean
0
clean

Domains

Name
IP
Malicious
origin-bms.kaseya.com
52.144.52.222
 clean
bms.kaseya.com
unknown
 clean

IPs

IP
Domain
Country
Malicious
192.168.2.1
unknown
unknown
clean
52.144.52.222
origin-bms.kaseya.com
United States
clean

Registry

Path
Value
Malicious
C:\Program Files\internet explorer\iexplore.exe
{3B83DA5F-D84F-11EB-90EB-ECF4BBEA1588}
 clean
C:\Program Files\internet explorer\iexplore.exe
LangID
 clean
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe.FriendlyAppName
 clean
C:\Program Files\internet explorer\iexplore.exe
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe.ApplicationCompany
 clean
C:\Program Files\internet explorer\iexplore.exe
Count
 clean
C:\Program Files\internet explorer\iexplore.exe
Time
 clean
C:\Program Files\internet explorer\iexplore.exe
Blocked
 clean
C:\Program Files\internet explorer\iexplore.exe
Count
 clean
C:\Program Files\internet explorer\iexplore.exe
Time
 clean
C:\Program Files\internet explorer\iexplore.exe
Count
 clean
C:\Program Files\internet explorer\iexplore.exe
Time
 clean
C:\Program Files\internet explorer\iexplore.exe
LoadTimeArray
 clean
C:\Program Files\internet explorer\iexplore.exe
LoadTimeArray
 clean
C:\Program Files\internet explorer\iexplore.exe
{7P5N40RS-N0SO-4OSP-874N-P0S2R0O9SN8R}\Nqbor\Npebong Ernqre QP\Ernqre\NpebEq32.rkr
 clean
C:\Program Files\internet explorer\iexplore.exe
HRZR_PGYFRFFVBA
 clean
C:\Program Files\internet explorer\iexplore.exe
Implementing
 clean
C:\Program Files\internet explorer\iexplore.exe
DownloadWindowPlacement
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
sDI
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
tDIText
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
aFS
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
tfilename
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
iTabCount
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
iWinCount
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
aDefaultRHPViewModeL
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
bExpandRHPInViewer
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
bLastExitNormal
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
bJSCache_GlobSettings
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
bNormalExit
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
uLastAppLaunchTimeStamp
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
iNumReaderLaunches
 clean
C:\Program Files (x86)\Adobe\Acrobat Reader DC\Reader\AcroRd32.exe
bJSCache_GlobSettings
 clean
There are 21 hidden registries, click here to show them.

Memdumps

Base Address
Regiontype
Protect
Malicious
D1743CB000
unkown
page read and write
 clean
211C78F0000
unkown
page readonly
 clean
7DBB1FF000
unkown
page read and write
 clean
7FF4FC98B000
unkown
page readonly
 clean
7FF530ACB000
unkown
page readonly
 clean
7FF530B5F000
unkown
page readonly
 clean
7FF4F4E79000
unkown
page readonly
 clean
1536F935000
unkown
page read and write
 clean
7858C9B000
unkown
page read and write
 clean
2769B046000
unkown
page read and write
 clean
226B7340000
unkown
page readonly
 clean
7FF4F579F000
unkown
page readonly
 clean
7FF5322E8000
unkown
page readonly
 clean
1536F059000
unkown
page read and write
 clean
27C18A29000
unkown
page read and write
 clean
1536FD70000
unkown
page readonly
 clean
F6434FF000
unkown
page read and write
 clean
19DEED99000
unkown
page read and write
 clean
7FF531F7A000
unkown
page readonly
 clean
1536F0EA000
unkown
page read and write
 clean
7FF531F6C000
unkown
page readonly
 clean
1536F975000
unkown
page read and write
 clean
19DECEF3000
unkown
page read and write
 clean
226B6F50000
unkown
page read and write
 clean
7FF5B4CE7000
unkown
page readonly
 clean
7FF4F57BA000
unkown
page readonly
 clean
2550EC29000
unkown
page read and write
 clean
7FF4F5775000
unkown
page readonly
 clean
7DBAEFB000
unkown
page read and write
 clean
1536F050000
unkown
page read and write
 clean
7FF4F5861000
unkown
page readonly
 clean
1536F049000
unkown
page read and write
 clean
78595FB000
unkown
page read and write
 clean
2769B113000
unkown
page read and write
 clean
19DEF053000
unkown
page read and write
 clean
7FF54E8A8000
unkown
page readonly
 clean
1536F965000
unkown
page read and write
 clean
7FF531F7F000
unkown
page readonly
 clean
2550ED00000
unkown
page read and write
 clean
1536F9D3000
unkown
page read and write
 clean
7FF54E7E2000
unkown
page readonly
 clean
19DEEE20000
unkown
page read and write
 clean
19DEF142000
unkown
page read and write
 clean
7FF4F57DE000
unkown
page readonly
 clean
7FF503DC4000
unkown
page readonly
 clean
226B6F80000
unkown
page readonly
 clean
7FF530B68000
unkown
page readonly
 clean
7FF532394000
unkown
page readonly
 clean
7FF54E803000
unkown
page readonly
 clean
1536F048000
unkown
page read and write
 clean
19DEF102000
unkown
page read and write
 clean
7FF54E845000
unkown
page readonly
 clean
7FF5306C6000
unkown
page readonly
 clean
7FF54E8B6000
unkown
page readonly
 clean
19DECE13000
unkown
page read and write
 clean
D0807E000
unkown
page read and write
 clean
1536FE02000
unkown
page read and write
 clean
7FF4FC2D3000
unkown
page readonly
 clean
7FF530AD4000
unkown
page readonly
 clean
1536F083000
unkown
page read and write
 clean
7FF4F575C000
unkown
page readonly
 clean
78594FB000
unkown
page read and write
 clean
7FF4F5787000
unkown
page readonly
 clean
19DECE6E000
unkown
page read and write
 clean
1536F9A7000
unkown
page read and write
 clean
27C18C00000
unkown
page write copy
 clean
7FF532329000
unkown
page readonly
 clean
7FF5323A1000
unkown
page readonly
 clean
7FF530AEA000
unkown
page readonly
 clean
7FF531B0D000
unkown
page readonly
 clean
7FF5B5015000
unkown
page readonly
 clean
785957B000
unkown
page read and write
 clean
19DEEDE1000
unkown
page read and write
 clean
7FF4FC9E8000
unkown
page readonly
 clean
1536FF02000
unkown
page read and write
 clean
2769B050000
unkown
page read and write
 clean
1536FF00000
unkown
page read and write
 clean
7FF503D5D000
unkown
page readonly
 clean
7FF4F5336000
unkown
page readonly
 clean
19DEF302000
unkown
page read and write
 clean
1536F9D8000
unkown
page read and write
 clean
7FF4F57E9000
unkown
page readonly
 clean
7FF4F5854000
unkown
page readonly
 clean
19DECE00000
unkown
page read and write
 clean
1536F954000
unkown
page read and write
 clean
27C188A0000
heap private
page read and write
 clean
7FF54E743000
unkown
page readonly
 clean
7FF5308BB000
unkown
page readonly
 clean
19DECE6C000
unkown
page read and write
 clean
7FF5321AB000
unkown
page readonly
 clean
7FF530B44000
unkown
page readonly
 clean
19DECEB2000
unkown
page read and write
 clean
7FF4F566E000
unkown
page readonly
 clean
7FF5B5000000
unkown
page readonly
 clean
1536F035000
unkown
page read and write
 clean
7FF530715000
unkown
page readonly
 clean
7FF5322DC000
unkown
page readonly
 clean
78596FA000
unkown
page read and write
 clean
7FF4F5651000
unkown
page readonly
 clean
7FF5B5477000
unkown
page readonly
 clean
1536F102000
unkown
page read and write
 clean
2550EC65000
unkown
page read and write
 clean
19DEED6D000
unkown
page read and write
 clean
1536F0B3000
unkown
page read and write
 clean
7FF5306D5000
unkown
page readonly
 clean
226B6FCE000
unkown
page read and write
 clean
D07DAE000
unkown
page read and write
 clean
19DF0310000
unkown
page read and write
 clean
7FF5309FE000
unkown
page readonly
 clean
7FF532076000
unkown
page readonly
 clean
2769B089000
unkown
page read and write
 clean
1536F98D000
unkown
page read and write
 clean
7FF5322C7000
unkown
page readonly
 clean
19DF0310000
unkown
page read and write
 clean
7FF4F576E000
unkown
page readonly
 clean
7FF4F579C000
unkown
page readonly
 clean
F64357F000
unkown
page read and write
 clean
7FF54E7E0000
unkown
page readonly
 clean
7FF5321B8000
unkown
page readonly
 clean
7FF53230E000
unkown
page readonly
 clean
7FF54E606000
unkown
page readonly
 clean
D083F7000
unkown
page read and write
 clean
7FF530951000
unkown
page readonly
 clean
19DF0010000
unkown
page read and write
 clean
7FF5322AA000
unkown
page readonly
 clean
7FF5B5494000
unkown
page readonly
 clean
226B7330000
heap private
page read and write
 clean
7FF503D0C000
unkown
page readonly
 clean
7FF4FC65A000
unkown
page readonly
 clean
7FF5321B3000
unkown
page readonly
 clean
1536F0A2000
unkown
page read and write
 clean
2550EB00000
heap private
page read and write
 clean
7FF503A57000
unkown
page readonly
 clean
7FF530209000
unkown
page readonly
 clean
7FF5B53AC000
unkown
page readonly
 clean
7FF4F5330000
unkown
page readonly
 clean
7FF530B4A000
unkown
page readonly
 clean
7FF4F55C1000
unkown
page readonly
 clean
785907A000
unkown
page read and write
 clean
2550F600000
unkown
page readonly
 clean
211C7B08000
unkown
page read and write
 clean
19DEEDB2000
unkown
page read and write
 clean
7FF5322AE000
unkown
page readonly
 clean
1536F935000
unkown
page read and write
 clean
D1748FB000
unkown
page read and write
 clean
7FF530662000
unkown
page readonly
 clean
7FF53239A000
unkown
page readonly
 clean
1536F9EC000
unkown
page read and write
 clean
27C18A02000
unkown
page read and write
 clean
1536FE26000
unkown
page read and write
 clean
1536F04D000
unkown
page read and write
 clean
1536F058000
unkown
page read and write
 clean
1536F055000
unkown
page read and write
 clean
7FF530936000
unkown
page readonly
 clean
7FF54E83E000
unkown
page readonly
 clean
1536F966000
unkown
page read and write
 clean
1536F200000
unkown
page readonly
 clean
2769B200000
unkown
page readonly
 clean
F0FDCFD000
unkown
page read and write
 clean
7FF54E4FC000
unkown
page readonly
 clean
785927A000
unkown
page read and write
 clean
7FF54E924000
unkown
page readonly
 clean
7FF54E699000
unkown
page readonly
 clean
226B6F30000
unkown
page read and write
 clean
7FF5033E9000
unkown
page readonly
 clean
7FF530B76000
unkown
page readonly
 clean
7FF503BDE000
unkown
page readonly
 clean
7FF54E884000
unkown
page readonly
 clean
2550EC02000
unkown
page read and write
 clean
7FF5B538D000
unkown
page readonly
 clean
1536F966000
unkown
page read and write
 clean
7FF5038A6000
unkown
page readonly
 clean
2769B029000
unkown
page read and write
 clean
27C18A13000
unkown
page read and write
 clean
2769B000000
unkown
page read and write
 clean
1536FE61000
unkown
page read and write
 clean
7FF54E82A000
unkown
page readonly
 clean
226B6FB6000
heap default
page read and write
 clean
D085FF000
unkown
page read and write
 clean
1536F0A9000
unkown
page read and write
 clean
1536F941000
unkown
page read and write
 clean
7FF53232D000
unkown
page readonly
 clean
7FF4FC9D4000
unkown
page readonly
 clean
211C8002000
unkown
page read and write
 clean
1536F7A0000
unkown
page write copy
 clean
27C18910000
unkown
page readonly
 clean
7FF530934000
unkown
page readonly
 clean
1536F913000
unkown
page read and write
 clean
19DEEE30000
unkown
page read and write
 clean
2550EC60000
unkown
page read and write
 clean
7FF503DD1000
unkown
page readonly
 clean
FC7C47E000
unkown
page read and write
 clean
D08979000
unkown
page read and write
 clean
7FF54E8AE000
unkown
page readonly
 clean
7FF5B543E000
unkown
page readonly
 clean
7FF54E80B000
unkown
page readonly
 clean
211C7A13000
unkown
page read and write
 clean
19DECEC8000
unkown
page read and write
 clean
1536F7F0000
unkown
page readonly
 clean
7859AFD000
unkown
page read and write
 clean
19DECDD0000
unkown
page readonly
 clean
7FF503D56000
unkown
page readonly
 clean
7FF530B17000
unkown
page readonly
 clean
1536EFF0000
heap default
page read and write
 clean
2550EB90000
unkown
page read and write
 clean
7FF531B11000
unkown
page readonly
 clean
19DED000000
unkown
page readonly
 clean
78592FB000
unkown
page read and write
 clean
226B7300000
unkown
page read and write
 clean
D08A7B000
unkown
page read and write
 clean
7FF503B83000
unkown
page readonly
 clean
7FF503A60000
unkown
page readonly
 clean
19DECEBD000
unkown
page read and write
 clean
2769B052000
unkown
page read and write
 clean
7FF530AFA000
unkown
page readonly
 clean
1536F9EA000
unkown
page read and write
 clean
7FF54E7DC000
unkown
page readonly
 clean
226B6FC6000
unkown
page read and write
 clean
2550EC5A000
unkown
page read and write
 clean
1536F98C000
unkown
page read and write
 clean
1536FEA6000
unkown
page read and write
 clean
19DEEE20000
unkown
page read and write
 clean
7FF4F5862000
unkown
page readonly
 clean
7FF5306C0000
unkown
page readonly
 clean
1536F9DE000
unkown
page read and write
 clean
7FF54E92A000
unkown
page readonly
 clean
7FF5B549F000
unkown
page readonly
 clean
1536F97F000
unkown
page read and write
 clean
7FF530941000
unkown
page readonly
 clean
226B6F90000
unkown
page readonly
 clean
1536FE61000
unkown
page read and write
 clean
7FF4F576A000
unkown
page readonly
 clean
211C7B02000
unkown
page read and write
 clean
19DEF036000
unkown
page read and write
 clean
15370000000
unkown
page readonly
 clean
7FF54E84B000
unkown
page readonly
 clean
19DEF03A000
unkown
page read and write
 clean
1536FE02000
unkown
page read and write
 clean
2550EB70000
unkown
page readonly
 clean
7FF54E78D000
unkown
page readonly
 clean
7FF5B5484000
unkown
page readonly
 clean
78593FC000
unkown
page read and write
 clean
19DECEB0000
unkown
page read and write
 clean
1536F965000
unkown
page read and write
 clean
F64397E000
unkown
page read and write
 clean
7FF503CE5000
unkown
page readonly
 clean
7FF5323A2000
unkown
page readonly
 clean
7FF503D34000
unkown
page readonly
 clean
FC7C67E000
unkown
page read and write
 clean
785937B000
unkown
page read and write
 clean
7DBA9AE000
unkown
page read and write
 clean
2769AEA0000
heap default
page read and write
 clean
78590FA000
unkown
page read and write
 clean
7FF5B5445000
unkown
page readonly
 clean
19DEF100000
unkown
page read and write
 clean
7FF54E676000
unkown
page readonly
 clean
19DEEE90000
unkown
page readonly
 clean
F0FD78A000
unkown
page read and write
 clean
7FF54E81F000
unkown
page readonly
 clean
1536F991000
unkown
page read and write
 clean
7FF54E517000
unkown
page readonly
 clean
7FF5B542C000
unkown
page readonly
 clean
7FF4F56C3000
unkown
page readonly
 clean
1536F802000
unkown
page read and write
 clean
27C18A35000
unkown
page read and write
 clean
7FF5320D5000
unkown
page readonly
 clean
226B6FA0000
heap default
page read and write
 clean
19DECD30000
unkown
page write copy
 clean
2550F402000
unkown
page read and write
 clean
7FF54E141000
unkown
page readonly
 clean
1536F04A000
unkown
page read and write
 clean
1536F954000
unkown
page read and write
 clean
7FF5309E1000
unkown
page readonly
 clean
7FF54E857000
unkown
page readonly
 clean
1536F770000
unkown
page readonly
 clean
1536F053000
unkown
page read and write
 clean
785947B000
unkown
page read and write
 clean
7FF503D48000
unkown
page readonly
 clean
7FF503D59000
unkown
page readonly
 clean
7FF530401000
unkown
page readonly
 clean
7FF5305DE000
unkown
page readonly
 clean
7FF530A03000
unkown
page readonly
 clean
7FF5B54B9000
unkown
page readonly
 clean
1536F988000
unkown
page read and write
 clean
1536F4D0000
unkown
page readonly
 clean
7FF503DCA000
unkown
page readonly
 clean
2550EB60000
heap default
page read and write
 clean
7FF530880000
unkown
page readonly
 clean
1536F9D6000
unkown
page read and write
 clean
211C7810000
heap default
page read and write
 clean
7FF54E665000
unkown
page readonly
 clean
2769B108000
unkown
page read and write
 clean
19DF0110000
unkown
page read and write
 clean
211C7C00000
unkown
page readonly
 clean
19DEF342000
unkown
page read and write
 clean
19DECF1B000
unkown
page read and write
 clean
1536F0DA000
unkown
page read and write
 clean
7FF5B53A4000
unkown
page readonly
 clean
7FF503CE0000
unkown
page readonly
 clean
7DBAC7E000
unkown
page read and write
 clean
D174B7F000
unkown
page read and write
 clean
7FF530B6E000
unkown
page readonly
 clean
7FF503C2D000
unkown
page readonly
 clean
7FF530BF2000
unkown
page readonly
 clean
7FF5322DF000
unkown
page readonly
 clean
226B6FC5000
unkown
page read and write
 clean
19DEED00000
unkown
page read and write
 clean
FC7C4FE000
unkown
page read and write
 clean
1536F070000
unkown
page read and write
 clean
7FF530BEA000
unkown
page readonly
 clean
7FF532191000
unkown
page readonly
 clean
211C8200000
unkown
page readonly
 clean
7FF5B552A000
unkown
page readonly
 clean
1536F991000
unkown
page read and write
 clean
7FF4F57A7000
unkown
page readonly
 clean
1536F051000
unkown
page read and write
 clean
1536F98C000
unkown
page read and write
 clean
785987D000
unkown
page read and write
 clean
7FF530A6C000
unkown
page readonly
 clean
211C7A6F000
unkown
page read and write
 clean
19DEE7A0000
unkown
page read and write
 clean
19DEEC02000
unkown
page read and write
 clean
19DECEAE000
unkown
page read and write
 clean
7FF503BDB000
unkown
page readonly
 clean
1536F9EA000
unkown
page read and write
 clean
7FF503D4E000
unkown
page readonly
 clean
FC7C18B000
unkown
page read and write
 clean
27C18900000
heap default
page read and write
 clean
785997C000
unkown
page read and write
 clean
78591FB000
unkown
page read and write
 clean
7FF5308C6000
unkown
page readonly
 clean
F0FDC7F000
unkown
page read and write
 clean
7FF5B542A000
unkown
page readonly
 clean
2769B070000
unkown
page read and write
 clean
2550EC3C000
unkown
page read and write
 clean
1536F98C000
unkown
page read and write
 clean
7FF503CF7000
unkown
page readonly
 clean
226B6FDF000
unkown
page read and write
 clean
1536FD40000
unkown
page readonly
 clean
7FF532326000
unkown
page readonly
 clean
7FF5038B5000
unkown
page readonly
 clean
2550EED0000
unkown
page readonly
 clean
785917F000
unkown
page read and write
 clean
1536FE54000
unkown
page read and write
 clean
211C77B0000
heap private
page read and write
 clean
7FF4FCA72000
unkown
page readonly
 clean
19DEEE40000
unkown
page read and write
 clean
2769B057000
unkown
page read and write
 clean
7FF53231E000
unkown
page readonly
 clean
19DEED16000
unkown
page read and write
 clean
1536F0E2000
unkown
page read and write
 clean
1536F9E6000
unkown
page read and write
 clean
1536FE02000
unkown
page read and write
 clean
1536EF90000
heap private
page read and write
 clean
19DEF300000
unkown
page read and write
 clean
7FF4F5770000
unkown
page readonly
 clean
19DF0110000
unkown
page read and write
 clean
19DECE9A000
unkown
page read and write
 clean
2769B05A000
unkown
page read and write
 clean
7FF530BF1000
unkown
page readonly
 clean
785977B000
unkown
page read and write
 clean
7FF503CDA000
unkown
page readonly
 clean
1536F047000
unkown
page read and write
 clean
D082FA000
unkown
page read and write
 clean
1536F04B000
unkown
page read and write
 clean
7FF503CEB000
unkown
page readonly
 clean
19DECE29000
unkown
page read and write
 clean
19DF0210000
unkown
page read and write
 clean
78598FC000
unkown
page read and write
 clean
785967B000
unkown
page read and write
 clean
1536F034000
unkown
page read and write
 clean
2769B100000
unkown
page read and write
 clean
7FF54E5FB000
unkown
page readonly
 clean
7FF54E8B1000
unkown
page readonly
 clean
1536FE54000
unkown
page read and write
 clean
211C7B13000
unkown
page read and write
 clean
1536F9D3000
unkown
page read and write
 clean
19DEE8A0000
unkown
page readonly
 clean
7FF532304000
unkown
page readonly
 clean
1536F9D2000
unkown
page read and write
 clean
1536F98C000
unkown
page read and write
 clean
1536F013000
unkown
page read and write
 clean
7FF54E661000
unkown
page readonly
 clean
7FF54E691000
unkown
page readonly
 clean
D0877E000
unkown
page read and write
 clean
7FF532273000
unkown
page readonly
 clean
7FF4F57C4000
unkown
page readonly
 clean
1536F98C000
unkown
page read and write
 clean
1536F2D0000
unkown
page readonly
 clean
211C79E0000
unkown
page read and write
 clean
7FF4FC9EE000
unkown
page readonly
 clean
7FF532109000
unkown
page readonly
 clean
7FF4FC9DE000
unkown
page readonly
 clean
19DEEDDC000
unkown
page read and write
 clean
7DBB0FF000
unkown
page read and write
 clean
7FF532252000
unkown
page readonly
 clean
7FF5B5006000
unkown
page readonly
 clean
2550ED08000
unkown
page read and write
 clean
226B6FDE000
unkown
page read and write
 clean
7FF503D2A000
unkown
page readonly
 clean
7FF503BC1000
unkown
page readonly
 clean
19DECD80000
unkown
page readonly
 clean
19DECE55000
unkown
page read and write
 clean
D081FF000
unkown
page read and write
 clean
7FF5B5440000
unkown
page readonly
 clean
7FF54E73B000
unkown
page readonly
 clean
19DEF200000
unkown
page read and write
 clean
1536F966000
unkown
page read and write
 clean
1536F954000
unkown
page read and write
 clean
19DEF012000
unkown
page read and write
 clean
1536F04E000
unkown
page read and write
 clean
F643877000
unkown
page read and write
 clean
7FF54E894000
unkown
page readonly
 clean
19DECF1D000
unkown
page read and write
 clean
19DECDC0000
unkown
page read and write
 clean
7FF530B00000
unkown
page readonly
 clean
19DEEDC7000
unkown
page read and write
 clean
7FF530B2C000
unkown
page readonly
 clean
7859B7E000
unkown
page read and write
 clean
226B7335000
heap private
page read and write
 clean
1536FE02000
unkown
page read and write
 clean
7FF5309A3000
unkown
page readonly
 clean
7FF4F56BD000
unkown
page readonly
 clean
1536F0EB000
unkown
page read and write
 clean
19DEF142000
unkown
page read and write
 clean
19DECF5D000
unkown
page read and write
 clean
1536F98C000
unkown
page read and write
 clean
7FF54E83A000
unkown
page readonly
 clean
7FF4FCA64000
unkown
page readonly
 clean
1536F113000
unkown
page read and write
 clean
7DBA92C000
unkown
page read and write
 clean
7FF54E50F000
unkown
page readonly
 clean
7FF4FC9FD000
unkown
page readonly
 clean
7FF5B543A000
unkown
page readonly
 clean
7FF503C44000
unkown
page readonly
 clean
19DEF282000
unkown
page read and write
 clean
7FF5322B0000
unkown
page readonly
 clean
7FF5B5321000
unkown
page readonly
 clean
7FF4FC9AF000
unkown
page readonly
 clean
19DEEDDB000
unkown
page read and write
 clean
F0FDBFA000
unkown
page read and write
 clean
1536F991000
unkown
page read and write
 clean
211C7A53000
unkown
page read and write
 clean
2769AF90000
unkown
page readonly
 clean
211C7A7A000
unkown
page read and write
 clean
7FF530AFE000
unkown
page readonly
 clean
7FF4F57B4000
unkown
page readonly
 clean
7FF4FCA71000
unkown
page readonly
 clean
7FF4FCA6A000
unkown
page readonly
 clean
78599FB000
unkown
page read and write
 clean
1536F750000
unkown
page read and write
 clean
7FF54E86C000
unkown
page readonly
 clean
7DBADFE000
unkown
page read and write
 clean
19DF0310000
unkown
page read and write
 clean
2550F940000
unkown
page readonly
 clean
7FF530877000
unkown
page readonly
 clean
7FF530453000
unkown
page readonly
 clean
19DF0510000
unkown
page read and write
 clean
211C7A3C000
unkown
page read and write
 clean
7FF530B0B000
unkown
page readonly
 clean
7FF5322FA000
unkown
page readonly
 clean
1536F03C000
unkown
page read and write
 clean
D174A77000
unkown
page read and write
 clean
7FF54E86F000
unkown
page readonly
 clean
1536FD50000
unkown
page read and write
 clean
19DF0000000
unkown
page read and write
 clean
19DECC50000
heap default
page read and write
 clean
19DEF202000
unkown
page read and write
 clean
7FF5B5291000
unkown
page readonly
 clean
7FF54E3A2000
unkown
page readonly
 clean
7FF54E931000
unkown
page readonly
 clean
7FF503D0F000
unkown
page readonly
 clean
2769B04C000
unkown
page read and write
 clean
7FF530B79000
unkown
page readonly
 clean
1536F9E1000
unkown
page read and write
 clean
7FF54E09D000
unkown
page readonly
 clean
D086F7000
unkown
page read and write
 clean
1536FE02000
unkown
page read and write
 clean
7FF530A08000
unkown
page readonly
 clean
1536F935000
unkown
page read and write
 clean
D174C7F000
unkown
page read and write
 clean
1536F9DB000
unkown
page read and write
 clean
7FF4F57E6000
unkown
page readonly
 clean
2769B04D000
unkown
page read and write
 clean
7FF4F5613000
unkown
page readonly
 clean
19DECC60000
unkown
page readonly
 clean
7FF503CDE000
unkown
page readonly
 clean
D07D2B000
unkown
page read and write
 clean
7FF530ADF000
unkown
page readonly
 clean
7FF5B548A000
unkown
page readonly
 clean
D1747F5000
unkown
page read and write
 clean
1536F956000
unkown
page read and write
 clean
2550EE00000
unkown
page readonly
 clean
D17467E000
unkown
page read and write
 clean
7FF5B546F000
unkown
page readonly
 clean
2769B047000
unkown
page read and write
 clean
1536F740000
unkown
page readonly
 clean
78597FB000
unkown
page read and write
 clean
1536F954000
unkown
page read and write
 clean
19DECF13000
unkown
page read and write
 clean
7FF53206B000
unkown
page readonly
 clean
7FF54E88A000
unkown
page readonly
 clean
7FF54E814000
unkown
page readonly
 clean
19DF0210000
unkown
page read and write
 clean
27C189E0000
unkown
page readonly
 clean
1536F975000
unkown
page read and write
 clean
D08175000
unkown
page read and write
 clean
7FF5B544B000
unkown
page readonly
 clean
7FF531F87000
unkown
page readonly
 clean
211C8540000
unkown
page readonly
 clean
7DBAD75000
unkown
page read and write
 clean
1536F9DF000
unkown
page read and write
 clean
7FF4FC9AC000
unkown
page readonly
 clean
7FF5307DA000
unkown
page readonly
 clean
7FF503D17000
unkown
page readonly
 clean
211C7A4D000
unkown
page read and write
 clean
19DECE87000
unkown
page read and write
 clean
211C7A87000
unkown
page read and write
 clean
2769B802000
unkown
page read and write
 clean
1536F98C000
unkown
page read and write
 clean
19DEF242000
unkown
page read and write
 clean
27C18A40000
unkown
page read and write
 clean
19DECE42000
unkown
page read and write
 clean
D084FC000
unkown
page read and write
 clean
19DEEDBA000
unkown
page read and write
 clean
1536F9D6000
unkown
page read and write
 clean
1536F98C000
unkown
page read and write
 clean
7FF54E89E000
unkown
page readonly
 clean
1536FD50000
unkown
page readonly
 clean
19DEF000000
unkown
page read and write
 clean
19DEEE50000
unkown
page read and write
 clean
7FF4FC985000
unkown
page readonly
 clean
7FF503DD2000
unkown
page readonly
 clean
7FF54E80F000
unkown
page readonly
 clean
7FF530A53000
unkown
page readonly
 clean
7FF4F54E7000
unkown
page readonly
 clean
7FF5B5531000
unkown
page readonly
 clean
211C7820000
unkown
page readonly
 clean
7FF54E877000
unkown
page readonly
 clean
FC7C5F9000
unkown
page read and write
 clean
7FF54E82C000
unkown
page readonly
 clean
1536FD50000
unkown
page read and write
 clean
7FF530717000
unkown
page readonly
 clean
D08878000
unkown
page read and write
 clean
7FF4F56DC000
unkown
page readonly
 clean
19DEEE80000
unkown
page readonly
 clean
7FF530900000
unkown
page readonly
 clean
F643675000
unkown
page read and write
 clean
7FF532318000
unkown
page readonly
 clean
7FF4F575A000
unkown
page readonly
 clean
7FF5B54A8000
unkown
page readonly
 clean
27C18B02000
unkown
page read and write
 clean
1536FD50000
unkown
page read and write
 clean
7FF54E840000
unkown
page readonly
 clean
7FF503B31000
unkown
page readonly
 clean
7FF54E0A1000
unkown
page readonly
 clean
19DEEE20000
unkown
page read and write
 clean
2769BA00000
unkown
page readonly
 clean
19DEEDC0000
unkown
page read and write
 clean
7FF5B533B000
unkown
page readonly
 clean
2550ED13000
unkown
page read and write
 clean
1536F988000
unkown
page read and write
 clean
F64347B000
unkown
page read and write
 clean
2769B013000
unkown
page read and write
 clean
2769B055000
unkown
page read and write
 clean
211C7A2A000
unkown
page read and write
 clean
19DECF3D000
unkown
page read and write
 clean
7FF5B546C000
unkown
page readonly
 clean
7FF54E721000
unkown
page readonly
 clean
27C18A00000
unkown
page read and write
 clean
7FF4FC9CA000
unkown
page readonly
 clean
7FF54E681000
unkown
page readonly
 clean
7FF503D24000
unkown
page readonly
 clean
27C18C50000
unkown
page readonly
 clean
2769AF80000
unkown
page readonly
 clean
1536F965000
unkown
page read and write
 clean
7FF5B51B7000
unkown
page readonly
 clean
1536F108000
unkown
page read and write
 clean
19DEEDA3000
unkown
page read and write
 clean
7FF5320D1000
unkown
page readonly
 clean
7DBAFF7000
unkown
page read and write
 clean
19DEEE60000
unkown
page readonly
 clean
19DEED13000
unkown
page read and write
 clean
7FF54E618000
unkown
page readonly
 clean
2769B067000
unkown
page read and write
 clean
D17497E000
unkown
page read and write
 clean
F643A7F000
unkown
page read and write
 clean
2550EC13000
unkown
page read and write
 clean
1536F9D6000
unkown
page read and write
 clean
FC7C57A000
unkown
page read and write
 clean
7858D9E000
unkown
page read and write
 clean
1536F98C000
unkown
page read and write
 clean
1536F975000
unkown
page read and write
 clean
27C18A54000
unkown
page read and write
 clean
7FF4F577B000
unkown
page readonly
 clean
7FF4F54F0000
unkown
page readonly
 clean
1536F965000
unkown
page read and write
 clean
19DECF2C000
unkown
page read and write
 clean
7FF4F57D8000
unkown
page readonly
 clean
7FF530AEC000
unkown
page readonly
 clean
1536F9E0000
unkown
page read and write
 clean
7FF54E7D2000
unkown
page readonly
 clean
7FF5322BB000
unkown
page readonly
 clean
2769B059000
unkown
page read and write
 clean
7FF530457000
unkown
page readonly
 clean
7FF503D3F000
unkown
page readonly
 clean
2550EB80000
unkown
page readonly
 clean
1536F000000
unkown
page read and write
 clean
7FF5038A0000
unkown
page readonly
 clean
7FF5B5457000
unkown
page readonly
 clean
7FF503CCC000
unkown
page readonly
 clean
2769B04F000
unkown
page read and write
 clean
7859BFE000
unkown
page read and write
 clean
7FF4F56D4000
unkown
page readonly
 clean
7FF530A64000
unkown
page readonly
 clean
7FF54E748000
unkown
page readonly
 clean
2769B04B000
unkown
page read and write
 clean
226B6FB1000
unkown
page read and write
 clean
19DEEE20000
unkown
page read and write
 clean
7FF54E61F000
unkown
page readonly
 clean
7859A79000
unkown
page read and write
 clean
7FF5322B5000
unkown
page readonly
 clean
19DECF1C000
unkown
page read and write
 clean
7FF4F585A000
unkown
page readonly
 clean
7FF530AA2000
unkown
page readonly
 clean
7FF4FC9C4000
unkown
page readonly
 clean
1536F0AD000
unkown
page read and write
 clean
2550ED02000
unkown
page read and write
 clean
1536F088000
unkown
page read and write
 clean
2550EC5D000
unkown
page read and write
 clean
7FF530B37000
unkown
page readonly
 clean
7FF530B54000
unkown
page readonly
 clean
7FF5B5524000
unkown
page readonly
 clean
19DEF084000
unkown
page read and write
 clean
7FF5B54B6000
unkown
page readonly
 clean
27C1A4F0000
unkown
page readonly
 clean
226B70A0000
unkown
page readonly
 clean
7FF5B533E000
unkown
page readonly
 clean
211C7B00000
unkown
page read and write
 clean
1536F900000
unkown
page read and write
 clean
7FF503CCA000
unkown
page readonly
 clean
7FF5322F4000
unkown
page readonly
 clean
2550EC80000
unkown
page read and write
 clean
7FF530672000
unkown
page readonly
 clean
7858D1E000
unkown
page read and write
 clean
1536F90F000
unkown
page read and write
 clean
19DF0410000
unkown
page read and write
 clean
7FF54E8B9000
unkown
page readonly
 clean
19DEEDE0000
unkown
page read and write
 clean
7FF4FC980000
unkown
page readonly
 clean
7FF4FC9F9000
unkown
page readonly
 clean
7FF54E50A000
unkown
page readonly
 clean
2769AFA0000
unkown
page read and write
 clean
2769B660000
unkown
page readonly
 clean
7FF5B54AE000
unkown
page readonly
 clean
7FF532250000
unkown
page readonly
 clean
7FF5309FB000
unkown
page readonly
 clean
19DEED88000
unkown
page read and write
 clean
2769AE40000
heap private
page read and write
 clean
7FF530BE4000
unkown
page readonly
 clean
7FF5B52E3000
unkown
page readonly
 clean
7FF4F566B000
unkown
page readonly
 clean
7FF530ACF000
unkown
page readonly
 clean
7FF5B54BD000
unkown
page readonly
 clean
D1746FE000
unkown
page read and write
 clean
7FF532321000
unkown
page readonly
 clean
7FF4FC2D7000
unkown
page readonly
 clean
1536F0F5000
unkown
page read and write
 clean
7FF530AA0000
unkown
page readonly
 clean
F0FDA7F000
unkown
page read and write
 clean
7FF530B2F000
unkown
page readonly
 clean
19DF0510000
unkown
page read and write
 clean
1536FA00000
unkown
page readonly
 clean
1536F056000
unkown
page read and write
 clean
7FF54E419000
unkown
page readonly
 clean
7FF530A4D000
unkown
page readonly
 clean
1536F98C000
unkown
page read and write
 clean
211C79D0000
unkown
page readonly
 clean
1536F98C000
unkown
page read and write
 clean
1536F98C000
unkown
page read and write
 clean
19DEED3D000
unkown
page read and write
 clean
2769B03C000
unkown
page read and write
 clean
7FF503C33000
unkown
page readonly
 clean
7FF4F57ED000
unkown
page readonly
 clean
2769B067000
unkown
page read and write
 clean
7FF4FC9B8000
unkown
page readonly
 clean
19DECBF0000
heap private
page read and write
 clean
F0FDAFF000
unkown
page read and write
 clean
2550EC00000
unkown
page read and write
 clean
211C7A00000
unkown
page read and write
 clean
7FF54E674000
unkown
page readonly
 clean
F0FDB79000
unkown
page read and write
 clean
1536F9EB000
unkown
page read and write
 clean
1536FE00000
unkown
page read and write
 clean
1536F92C000
unkown
page read and write
 clean
1536F9EA000
unkown
page read and write
 clean
F64377B000
unkown
page read and write
 clean
19DECDE0000
heap private
page read and write
 clean
7FF5B5532000
unkown
page readonly
 clean
19DEED27000
unkown
page read and write
 clean
7FF54E786000
unkown
page readonly
 clean
7FF54E932000
unkown
page readonly
 clean
7FF5309AA000
unkown
page readonly
 clean
1536F0C6000
unkown
page read and write
 clean
1536F029000
unkown
page read and write
 clean
19DECF02000
unkown
page read and write
 clean
226B6FCE000
unkown
page read and write
 clean
7FF5B5393000
unkown
page readonly
 clean
1536F0BF000
unkown
page read and write
 clean
7FF530B05000
unkown
page readonly
 clean
7FF4F57CF000
unkown
page readonly
 clean
7FF53066E000
unkown
page readonly
 clean
19DEED70000
unkown
page read and write
 clean
19DEEE10000
unkown
page readonly
 clean
2769AEB0000
unkown
page readonly
 clean
7FF4F5345000
unkown
page readonly
 clean
1536FE02000
unkown
page read and write
 clean
7FF503C4C000
unkown
page readonly
 clean
226B6FCE000
unkown
page read and write
 clean
2769B102000
unkown
page read and write
 clean
27C1A3F0000
unkown
page read and write
 clean
There are 711 hidden memdumps, click here to show them.

DOM / HTML

URL
Malicious
0
 clean