Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\Downloads\Unconfirmed 344584.crdownload (copy)
|
PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows
|
dropped
|
 |
|
|
C:\Users\user\Downloads\eb9dcbe6-d8c5-48de-b6cf-5b6d0eed2417.tmp
|
PE32 executable (console) Intel 80386 Mono/.Net assembly, for MS Windows
|
dropped
|
|
|
|
C:\Program Files\Google\Chrome\Application\Dictionaries\en-US-9-0.bdic
|
data
|
dropped
|
 |
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\28d685b2-ef9c-4ec5-813e-7f234768512c.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\28db56cd-fa2a-4425-968c-77634426176d.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\31c019e8-eb59-41a1-afc6-257012d5d08d.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\582784cd-b14a-4a33-993b-dfa225629935.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\675fb27e-dc66-45d2-a440-c8548a61e3d1.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\81dc2a28-1460-424a-afd9-203a2f6c6868.tmp
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\8accbbf9-62ad-4431-abe9-769782d7695c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Crashpad\settings.dat
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\000001.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\000002.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\010a7038-fc91-4238-892b-c1532db919e0.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\1c997ebe-cdc5-4288-96d2-d8f02903e9e9.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\23eccef7-8f68-4bdf-ad5a-8335987f4762.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3d8454e7-d0f3-4c93-bd92-50abe094396b.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\3e7f8b12-0174-4eb4-8e56-145ad5dfb689.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\4c1b407c-834c-489e-a2c2-6b6944ad5fec.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\62a181cd-0c6f-46a2-868e-6987eb8e30b1.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\6533d92a-3113-4532-85dc-3cd0f48885b0.tmp
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\AutofillStrikeDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\BudgetDatabase\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\CURRENT (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\CURRENT*/ (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_0
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_2
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cache\data_3
|
dBase III DBT, next free block index 3238316739, block length 1024
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Cookies
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Session
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Current Tabs
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension Rules\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extension State\LOG.oldX (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda\1.0.0.6_0\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Extensions\pkedcjkdefgpdelpbcmbmeomcjbeemfm\8520.615.0.5_1\_metadata\computed_hashes.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\AvailabilityDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Feature Engagement Tracker\EventDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GCM Store\Encryption\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\History-journal
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last Session (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Last TabsOC (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Local Storage\leveldb\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\MANIFEST-000001
|
PGP\011Secret Key -
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\MANIFEST-000002
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Network Persistent State6b (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Platform Notifications\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesG (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\PreferencesX (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Reporting and NEL
|
SQLite 3.x database, last written using SQLite version 3032001
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferences>X (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferencesjs (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Secure Preferenceswe (copy)
|
UTF-8 Unicode text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Session Storage\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Site Characteristics Database\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Network Persistent
State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\Session Storage\LOG.old_y
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\gfdkimpbcpahaombhbimeihdjnejgicl\def\c07fcd50-3311-4414-8cd1-5390bd6c32d9.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\653a2b3f-faea-45a1-9a3b-10b4480240b6.tmp
|
ASCII text, with very long lines, with no line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Local Storage\leveldb\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Network Persistent
StateMP (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Platform Notifications\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Storage\ext\nmmhkkegccagdldgiimedpiccmgmieda\def\Session Storage\LOG.old
(copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\000003.log
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Data\LevelDB\LOG.old (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\Sync Extension Settings\pkedcjkdefgpdelpbcmbmeomcjbeemfm\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\000004.dbtmp
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\CURRENT (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\LOG.old7b (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\data_reduction_proxy_leveldb\MANIFEST-000004
|
MPEG-4 LOAS
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\eb2da4a2-8209-4e49-a8de-af94ba8c398c.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Default\shared_proto_db\metadata\LOG.old. (copy)
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Browser
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Last Version
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local State (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local Stateca (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Local States (copy)
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cache (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cachei (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\Module Info Cachejs (copy)
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\ShaderCache\GPUCache\data_1
|
data
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\adf1e2c1-e1ee-45d0-b94a-5e6da8f6ab2a.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\b33f2b6c-dbc7-4766-869b-c0d2a2f8cfac.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Google\Chrome\User Data\e6f4f0e6-093a-41b4-9801-8c6bef301bf8.tmp
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6824_648308789\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6824_648308789\_platform_specific\x86_64\pnacl_public_pnacl_json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6824_648308789\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_for_eh_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6824_648308789\_platform_specific\x86_64\pnacl_public_x86_64_crtbegin_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6824_648308789\_platform_specific\x86_64\pnacl_public_x86_64_crtend_o
|
ELF 64-bit LSB relocatable, x86-64, version 1 (SYSV), not stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6824_648308789\_platform_specific\x86_64\pnacl_public_x86_64_ld_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=7511538a3a6a0b862c772eace49075ed1bbe2377,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6824_648308789\_platform_specific\x86_64\pnacl_public_x86_64_libcrt_platform_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6824_648308789\_platform_specific\x86_64\pnacl_public_x86_64_libgcc_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6824_648308789\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6824_648308789\_platform_specific\x86_64\pnacl_public_x86_64_libpnacl_irt_shim_dummy_a
|
current ar archive
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6824_648308789\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_llc_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=309d6d3d463e6b1b0690f39eb226b1e4c469b2ce,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6824_648308789\_platform_specific\x86_64\pnacl_public_x86_64_pnacl_sz_nexe
|
ELF 64-bit LSB executable, x86-64, version 1 (SYSV), statically linked, BuildID[sha1]=4b15de4ab227d5e46213978b8518d53c53ce1db9,
stripped
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6824_648308789\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\6824_648308789\manifest.json
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\92bd5720-f7ae-44f6-8378-163cd253da6e.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\browser-sslkeys.log
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\e733e8cc-2bc6-4b9e-a19d-ba80a1da9665.tmp
|
very short file (no magic)
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\ee8c2b33-001d-4f2f-b121-8e8ced5138d4.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\ffcaaa26-6965-4510-abb0-0e8f8f42d4c6.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\am\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\ar\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\bn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\en\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\fa\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\fil\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\gu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
modified
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\id\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\iw\messages.json
|
HTML document, ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\kn\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\ml\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\mr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\ms\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\nl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\pt\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\sw\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\ta\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\te\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\zh\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\angular.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\background_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\cast_sender.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\feedback.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\feedback.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\feedback_script.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\manifest.json
|
ASCII text, with very long lines, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\material_css_min.css
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\mirroring_cast_streaming.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\mirroring_common.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\mirroring_hangouts.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\CRX_INSTALL\mirroring_webrtc.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_1262074747\ffcaaa26-6965-4510-abb0-0e8f8f42d4c6.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\bg\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\ca\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\cs\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\da\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\de\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\el\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\en\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\en_GB\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\es\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\es_419\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\et\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\fi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\fil\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\fr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\hi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\hr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\hu\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\id\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\it\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\ja\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\ko\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\lt\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\lv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\nb\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\nl\messages.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\pl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\pt_BR\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\pt_PT\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\ro\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\ru\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\sk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\sl\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\sr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\sv\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\th\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\tr\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\uk\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\vi\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\zh_CN\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_locales\zh_TW\messages.json
|
UTF-8 Unicode text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\_metadata\verified_contents.json
|
ASCII text, with very long lines, with no line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\craw_background.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\craw_window.js
|
ASCII text, with very long lines
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\css\craw_window.css
|
ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\html\craw_window.html
|
HTML document, ASCII text
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\images\flapper.gif
|
GIF image data, version 89a, 30 x 30
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\images\icon_128.png
|
PNG image data, 128 x 128, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\images\icon_16.png
|
PNG image data, 16 x 16, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\images\topbar_floating_button.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\images\topbar_floating_button_close.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\images\topbar_floating_button_hover.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\images\topbar_floating_button_maximize.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\images\topbar_floating_button_pressed.png
|
PNG image data, 32 x 32, 8-bit/color RGBA, non-interlaced
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\CRX_INSTALL\manifest.json
|
ASCII text, with CRLF line terminators
|
dropped
|
|
|
|
C:\Users\user\AppData\Local\Temp\scoped_dir6824_540323696\ee8c2b33-001d-4f2f-b121-8e8ced5138d4.tmp
|
Google Chrome extension, version 3
|
dropped
|
|
|
|
C:\Users\user\Downloads\MSWorker.exe:Zone.Identifier
|
ASCII text, with CRLF line terminators
|
dropped
|
|
There are 251 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized --enable-automation "https://raw.githubusercontent.com/nerrorsec/SBT-SOC/main/MSWorker.exe
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --field-trial-handle=1564,5844628542480207788,520221142055813000,131072
--lang=en-US --service-sandbox-type=network --enable-audio-service-sandbox --mojo-platform-channel-handle=1924 /prefetch:8
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1564,5844628542480207788,520221142055813000,131072
--lang=en-US --service-sandbox-type=icon_reader --enable-audio-service-sandbox --mojo-platform-channel-handle=4920 /prefetch:8
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1564,5844628542480207788,520221142055813000,131072
--lang=en-US --service-sandbox-type=icon_reader --enable-audio-service-sandbox --mojo-platform-channel-handle=4936 /prefetch:8
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1564,5844628542480207788,520221142055813000,131072
--lang=en-US --service-sandbox-type=icon_reader --enable-audio-service-sandbox --mojo-platform-channel-handle=4948 /prefetch:8
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1564,5844628542480207788,520221142055813000,131072
--lang=en-US --service-sandbox-type=icon_reader --enable-audio-service-sandbox --mojo-platform-channel-handle=4960 /prefetch:8
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=quarantine.mojom.Quarantine --field-trial-handle=1564,5844628542480207788,520221142055813000,131072
--lang=en-US --service-sandbox-type=none --enable-audio-service-sandbox --mojo-platform-channel-handle=4016 /prefetch:8
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1564,5844628542480207788,520221142055813000,131072
--lang=en-US --service-sandbox-type=icon_reader --enable-audio-service-sandbox --mojo-platform-channel-handle=3772 /prefetch:8
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1564,5844628542480207788,520221142055813000,131072
--lang=en-US --service-sandbox-type=icon_reader --enable-audio-service-sandbox --mojo-platform-channel-handle=3444 /prefetch:8
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1564,5844628542480207788,520221142055813000,131072
--lang=en-US --service-sandbox-type=icon_reader --enable-audio-service-sandbox --mojo-platform-channel-handle=3712 /prefetch:8
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=chrome.mojom.UtilReadIcon --field-trial-handle=1564,5844628542480207788,520221142055813000,131072
--lang=en-US --service-sandbox-type=icon_reader --enable-audio-service-sandbox --mojo-platform-channel-handle=3980 /prefetch:8
|
|
There are 1 hidden processes, click here to show them.
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://raw.githubusercontent.com/nerrorsec/SBT-SOC/main/MSWorker.exe
|
|
||
|
https://apis.google.com/js/client.js
|
unknown
|
|
|
|
https://www.google.com/images/cleardot.gif
|
unknown
|
|
|
|
https://play.google.com
|
unknown
|
|
|
|
https://crash.corp.google.com/samples?reportid=&q=
|
unknown
|
|
|
|
https://www.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://sandbox.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions-01
|
unknown
|
|
|
|
https://accounts.google.com/MergeSession
|
unknown
|
|
|
|
https://preprod-hangouts-googleapis.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.googleusercontent.com/crx/blobs/Acy1k0bLIjHsvnKaKN_oRpVaYYvFs25d7GKYF1WXrT6yizCMksBO0c_ggE0B6tx6HPRHe6q1GOEe3_NcIbSiGG8kXeLMUY0sAKVvC6R89zvKM13s5VqoAMZSmuUgjQL5vlygJuArQghXXE_qTL7NlQ/extension_8520_615_0_5.crx
|
142.250.181.225
|
|
|
|
https://www.google.com
|
unknown
|
|
|
|
https://hangouts.clients6.google.com
|
unknown
|
|
|
|
https://meet.google.com
|
unknown
|
|
|
|
https://hangouts.google.com/hangouts/_/logpref
|
unknown
|
|
|
|
https://accounts.google.com
|
unknown
|
|
|
|
https://clients2.google.com/cr/report
|
unknown
|
|
|
|
http://angularjs.org
|
unknown
|
|
|
|
https://creativecommons.org/publicdomain/zero/1.0/.
|
unknown
|
|
|
|
https://github.com/angular/material
|
unknown
|
|
|
|
https://apis.google.com
|
unknown
|
|
|
|
https://www.google.com/accounts/OAuthLogin?issueuberauth=1
|
unknown
|
|
|
|
https://github.com/madler/zlib/blob/master/zlib.h
|
unknown
|
|
|
|
https://www-googleapis-staging.sandbox.google.com
|
unknown
|
|
|
|
https://clients2.google.com
|
unknown
|
|
|
|
https://www.google.com/tools/feedback
|
unknown
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
unknown
|
|
|
|
https://dns.google
|
unknown
|
|
|
|
https://github.com/google/closure-library/wiki/goog.module:-an-ES6-module-like-alternative-to-goog.p
|
unknown
|
|
|
|
https://www.google.com/intl/en-US/chrome/blank.html
|
unknown
|
|
|
|
https://ogs.google.com
|
unknown
|
|
|
|
https://support.google.com/chromecast/troubleshooter/2995236
|
unknown
|
|
|
|
http://www.ietf.org/id/draft-holmer-rmcat-transport-wide-cc-extensions
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx?os=win&arch=x64&os_arch=x86_64&nacl_arch=x86-64&prod=chromecrx&prodchannel=&prodversion=85.0.4183.121&lang=en-US&acceptformat=crx3&x=id%3Dnmmhkkegccagdldgiimedpiccmgmieda%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1&x=id%3Dpkedcjkdefgpdelpbcmbmeomcjbeemfm%26v%3D0.0.0.0%26installedby%3Dother%26uc%26ping%3Dr%253D-1%2526e%253D1
|
142.250.181.238
|
|
|
|
https://accounts.google.com/ListAccounts?gpsia=1&source=ChromiumBrowser&json=standard
|
172.217.18.109
|
|
|
|
https://payments.google.com/payments/v4/js/integrator.js
|
unknown
|
|
|
|
https://www.google.com;
|
unknown
|
|
|
|
https://chromium.googlesource.com/a/native_client/pnacl-llvm.git
|
unknown
|
|
|
|
https://hangouts.google.com/
|
unknown
|
|
|
|
https://www.google.com/images/x2.gif
|
unknown
|
|
|
|
http://llvm.org/):
|
unknown
|
|
|
|
https://www.google.com/images/dot2.gif
|
unknown
|
|
|
|
https://meetings.clients6.google.com
|
unknown
|
|
|
|
https://play.google.com/log?format=json&hasfast=true
|
unknown
|
|
|
|
https://code.google.com/p/nativeclient/issues/entry%s:
|
unknown
|
|
|
|
http://tools.ietf.org/html/rfc1950
|
unknown
|
|
|
|
https://code.google.com/p/nativeclient/issues/entry
|
unknown
|
|
|
|
https://support.google.com/chromecast/answer/2998456
|
unknown
|
|
|
|
https://clients2.googleusercontent.com
|
unknown
|
|
|
|
https://csp.withgoogle.com/csp/report-to/IdentityListAccountsHttp/external
|
unknown
|
|
|
|
https://raw.githubusercontent.com/nerrorsec/SBT-SOC/main/MSWorker.exe
|
185.199.110.133
|
|
|
|
https://docs.google.com
|
unknown
|
|
|
|
https://www.google.com/
|
unknown
|
|
|
|
https://feedback.googleusercontent.com
|
unknown
|
|
|
|
https://chromium.googlesource.com/a/native_client/pnacl-clang.git
|
unknown
|
|
|
|
https://clients2.google.com/service/update2/crx
|
unknown
|
|
|
|
https://clients6.google.com
|
unknown
|
|
There are 46 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
accounts.google.com
|
172.217.18.109
|
|
|
|
raw.githubusercontent.com
|
185.199.110.133
|
|
|
|
clients.l.google.com
|
142.250.181.238
|
|
|
|
googlehosted.l.googleusercontent.com
|
142.250.181.225
|
|
|
|
clients2.googleusercontent.com
|
unknown
|
|
|
|
clients2.google.com
|
unknown
|
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
192.168.2.1
|
unknown
|
unknown
|
|
|
|
142.250.181.238
|
clients.l.google.com
|
United States
|
|
|
|
142.250.181.225
|
googlehosted.l.googleusercontent.com
|
United States
|
|
|
|
239.255.255.250
|
unknown
|
Reserved
|
|
|
|
172.217.18.109
|
accounts.google.com
|
United States
|
|
|
|
185.199.110.133
|
raw.githubusercontent.com
|
Netherlands
|
|
|
|
127.0.0.1
|
unknown
|
unknown
|
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Google\Update\ClientStateMedium\{8A69D345-D564-463C-AFF1-A69D9E530F96}\LastWasDefault
|
S-1-5-21-3853321935-2125563209-4053062332-1002
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
ahfgeienlihckogmohjhadlkjgocpleb
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gdaefkejpgkiemlaofpalmlakkmbjdnl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
kmendfapggjehodndflmmgagdbamhnfd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mfehgcgbbipciphmccgaenjidiccnmng
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
mhjfbmdgcfjbbpaeojofohoefgiehjai
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
neajdppkdcdipfabeoofebfddakdcjhd
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nkeimhogjdpnpccoofpliimaahmaaome
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
gfdkimpbcpahaombhbimeihdjnejgicl
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
pkedcjkdefgpdelpbcmbmeomcjbeemfm
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default\extensions.settings
|
nmmhkkegccagdldgiimedpiccmgmieda
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\ThirdParty
|
StatusCodes
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\BLBeacon
|
state
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
dr
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.reporting
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
module_blacklist_cache_md5_digest
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
media.storage_id_salt
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.account_id
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_seed
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
default_search_provider_data.template_url_data
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
safebrowsing.incidents_sent
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
pinned_tabs
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
search_provider_overrides
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_default_search
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
prefs.preference_reset_time
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
google.services.last_username
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
session.restore_on_startup
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
software_reporter.prompt_version
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.last_triggered_for_startup_urls
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
settings_reset_prompt.prompt_wave
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
homepage_is_newtabpage
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\PreferenceMACs\Default
|
browser.show_home_button
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Chrome\StabilityMetrics
|
user_experience_metrics.stability.exited_cleanly
|
|
|
|
HKEY_CURRENT_USER\Software\Google\Update\ClientState\{8A69D345-D564-463c-AFF1-A69D9E530F96}
|
lastrun
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Shell Extensions\Cached
|
{2781761E-28E0-4109-99FE-B9D127C57AFE} {56FFCC30-D398-11D0-B2AE-00A0C908FA49} 0xFFFF
|
|
|
|
HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Discardable\PostSetup\Component Categories64\{56FFCC30-D398-11D0-B2AE-00A0C908FA49}\Enum
|
Implementing
|
|
There are 36 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
7FF584844000
|
unkown image
|
page readonly
|
|
|
|
7FF56F8F2000
|
unkown image
|
page readonly
|
|
|
|
1D400993000
|
unkown
|
page read and write
|
|
|
|
7FF587DCD000
|
unkown image
|
page readonly
|
|
|
|
7DF595E32000
|
unkown image
|
page readonly
|
|
|
|
7FF556124000
|
unkown image
|
page readonly
|
|
|
|
7FF5B89D1000
|
unkown image
|
page readonly
|
|
|
|
7FF5881AA000
|
unkown image
|
page readonly
|
|
|
|
19FA0F80000
|
unkown
|
page read and write
|
|
|
|
1F94FC5E000
|
unkown
|
page read and write
|
|
|
|
7FF53DA73000
|
unkown image
|
page readonly
|
|
|
|
7FF587FD2000
|
unkown image
|
page readonly
|
|
|
|
7FF584851000
|
unkown image
|
page readonly
|
|
|
|
7FF51B0F3000
|
unkown image
|
page readonly
|
|
|
|
32BBFFC000
|
stack
|
page read and write
|
|
|
|
536A8FF000
|
stack
|
page read and write
|
|
|
|
7FF556131000
|
unkown image
|
page readonly
|
|
|
|
7FF51BACA000
|
unkown image
|
page readonly
|
|
|
|
C449AFE000
|
stack
|
page read and write
|
|
|
|
7DF5C6642000
|
unkown image
|
page readonly
|
|
|
|
7FF5B17EB000
|
unkown image
|
page readonly
|
|
|
|
249B5C29000
|
unkown
|
page read and write
|
|
|
|
168B6070000
|
heap default
|
page read and write
|
|
|
|
36F6477000
|
stack
|
page read and write
|
|
|
|
9765379000
|
stack
|
page read and write
|
|
|
|
7FF51B15A000
|
unkown image
|
page readonly
|
|
|
|
7FF5B884C000
|
unkown image
|
page readonly
|
|
|
|
1D4000C1000
|
unkown
|
page read and write
|
|
|
|
294B6140000
|
unkown
|
page read and write
|
|
|
|
7FF5B178E000
|
unkown image
|
page readonly
|
|
|
|
1D400E03000
|
unkown
|
page read and write
|
|
|
|
7FF555FEF000
|
unkown image
|
page readonly
|
|
|
|
1D400059000
|
unkown
|
page read and write
|
|
|
|
7DF57E172000
|
unkown image
|
page readonly
|
|
|
|
1E8A4FF000
|
stack
|
page read and write
|
|
|
|
7FF55604D000
|
unkown image
|
page readonly
|
|
|
|
7DFEBCBBE000
|
unkown image
|
page readonly
|
|
|
|
1D400963000
|
unkown
|
page read and write
|
|
|
|
7FF5B18A0000
|
unkown image
|
page readonly
|
|
|
|
7FF51B637000
|
unkown image
|
page readonly
|
|
|
|
536A6FF000
|
stack
|
page read and write
|
|
|
|
7DF461C70000
|
unkown image
|
page readonly
|
|
|
|
7FF59AEF2000
|
unkown image
|
page readonly
|
|
|
|
7FF5B80AC000
|
unkown image
|
page readonly
|
|
|
|
1F94FC48000
|
unkown
|
page read and write
|
|
|
|
1F52AA02000
|
unkown
|
page read and write
|
|
|
|
7FF570413000
|
unkown image
|
page readonly
|
|
|
|
536A4FF000
|
stack
|
page read and write
|
|
|
|
7FF59AEF9000
|
unkown image
|
page readonly
|
|
|
|
7FF588041000
|
unkown image
|
page readonly
|
|
|
|
7FF51BACD000
|
unkown image
|
page readonly
|
|
|
|
1D4009C6000
|
unkown
|
page read and write
|
|
|
|
7DF5C6630000
|
unkown image
|
page readonly
|
|
|
|
82B4AFF000
|
stack
|
page read and write
|
|
|
|
7FF53DA57000
|
unkown image
|
page readonly
|
|
|
|
24DAAF60000
|
heap default
|
page read and write
|
|
|
|
7FF51B909000
|
unkown image
|
page readonly
|
|
|
|
1D4009A3000
|
unkown
|
page read and write
|
|
|
|
1D400993000
|
unkown
|
page read and write
|
|
|
|
294B5FD0000
|
unkown image
|
page read and write
|
|
|
|
1F52AA29000
|
unkown
|
page read and write
|
|
|
|
7FF53D8E6000
|
unkown image
|
page readonly
|
|
|
|
1D40095E000
|
unkown
|
page read and write
|
|
|
|
7FF51B91D000
|
unkown image
|
page readonly
|
|
|
|
7FF51BA33000
|
unkown image
|
page readonly
|
|
|
|
7FF53DAAB000
|
unkown image
|
page readonly
|
|
|
|
7DF493CF0000
|
unkown image
|
page readonly
|
|
|
|
7FF555CA9000
|
unkown image
|
page readonly
|
|
|
|
19FA1037000
|
unkown
|
page read and write
|
|
|
|
7FF59A318000
|
unkown image
|
page readonly
|
|
|
|
7FF53DA8E000
|
unkown image
|
page readonly
|
|
|
|
294B6040000
|
heap default
|
page read and write
|
|
|
|
7FF51B8A1000
|
unkown image
|
page readonly
|
|
|
|
2142E040000
|
unkown image
|
page readonly
|
|
|
|
2142E040000
|
unkown image
|
page readonly
|
|
|
|
7FF51BB4A000
|
unkown image
|
page readonly
|
|
|
|
7FF5B8194000
|
unkown image
|
page readonly
|
|
|
|
7FF5B8523000
|
unkown image
|
page readonly
|
|
|
|
24DAAF90000
|
unkown
|
page read and write
|
|
|
|
7FF556098000
|
unkown image
|
page readonly
|
|
|
|
7DF57E180000
|
unkown image
|
page readonly
|
|
|
|
1D400917000
|
unkown
|
page read and write
|
|
|
|
7FF51B107000
|
unkown image
|
page readonly
|
|
|
|
19FA1031000
|
unkown
|
page read and write
|
|
|
|
1D40099B000
|
unkown
|
page read and write
|
|
|
|
7FF5B88BB000
|
unkown image
|
page readonly
|
|
|
|
7FF51B727000
|
unkown image
|
page readonly
|
|
|
|
7DF528E60000
|
unkown image
|
page readonly
|
|
|
|
2142E600000
|
unkown image
|
page readonly
|
|
|
|
7DF595E32000
|
unkown image
|
page readonly
|
|
|
|
1D400F63000
|
unkown
|
page read and write
|
|
|
|
7FF5704F1000
|
unkown image
|
page readonly
|
|
|
|
7FF5B81F4000
|
unkown image
|
page readonly
|
|
|
|
7FF5880B7000
|
unkown image
|
page readonly
|
|
|
|
7FF555FF1000
|
unkown image
|
page readonly
|
|
|
|
1D400917000
|
unkown
|
page read and write
|
|
|
|
7FF59AB1B000
|
unkown image
|
page readonly
|
|
|
|
7FF59AE7E000
|
unkown image
|
page readonly
|
|
|
|
36F607B000
|
unkown
|
page read and write
|
|
|
|
976557E000
|
stack
|
page read and write
|
|
|
|
1F950250000
|
unkown image
|
page readonly
|
|
|
|
294B6010000
|
unkown image
|
page readonly
|
|
|
|
24DAB002000
|
unkown
|
page read and write
|
|
|
|
294B625A000
|
unkown
|
page read and write
|
|
|
|
7FF588199000
|
unkown image
|
page readonly
|
|
|
|
7FF588137000
|
unkown image
|
page readonly
|
|
|
|
1D400967000
|
unkown
|
page read and write
|
|
|
|
7FF57030F000
|
unkown image
|
page readonly
|
|
|
|
7FF5B17D7000
|
unkown image
|
page readonly
|
|
|
|
2BE27C00000
|
unkown
|
page read and write
|
|
|
|
249B5B20000
|
unkown image
|
page readonly
|
|
|
|
1D400102000
|
unkown
|
page read and write
|
|
|
|
1F94FC3A000
|
unkown
|
page read and write
|
|
|
|
1D4004D0000
|
unkown image
|
page readonly
|
|
|
|
7FF5B89B4000
|
unkown image
|
page readonly
|
|
|
|
7FF5B81C9000
|
unkown image
|
page readonly
|
|
|
|
7FF5B89C5000
|
unkown image
|
page readonly
|
|
|
|
7FF55613E000
|
unkown image
|
page readonly
|
|
|
|
1D40097D000
|
unkown
|
page read and write
|
|
|
|
1D400E02000
|
unkown
|
page read and write
|
|
|
|
2142E313000
|
unkown
|
page read and write
|
|
|
|
7DF54B7D0000
|
unkown image
|
page readonly
|
|
|
|
1D400053000
|
unkown
|
page read and write
|
|
|
|
2142E020000
|
unkown image
|
page read and write
|
|
|
|
1D400E6A000
|
unkown
|
page read and write
|
|
|
|
24DAB100000
|
unkown
|
page read and write
|
|
|
|
1D400971000
|
unkown
|
page read and write
|
|
|
|
7FF5B88DD000
|
unkown image
|
page readonly
|
|
|
|
7DF563DB2000
|
unkown image
|
page readonly
|
|
|
|
7FF5B17C7000
|
unkown image
|
page readonly
|
|
|
|
1F94FC62000
|
unkown
|
page read and write
|
|
|
|
36F627C000
|
stack
|
page read and write
|
|
|
|
1F94FC5C000
|
unkown
|
page read and write
|
|
|
|
1D40099D000
|
unkown
|
page read and write
|
|
|
|
7FF5880F7000
|
unkown image
|
page readonly
|
|
|
|
7FF5B8756000
|
unkown image
|
page readonly
|
|
|
|
1F94FC6D000
|
unkown
|
page read and write
|
|
|
|
1D40099D000
|
unkown
|
page read and write
|
|
|
|
7FF51BA3E000
|
unkown image
|
page readonly
|
|
|
|
C36E2FF000
|
stack
|
page read and write
|
|
|
|
7DF57E160000
|
unkown image
|
page readonly
|
|
|
|
1F94FC45000
|
unkown
|
page read and write
|
|
|
|
7FF51BA2A000
|
unkown image
|
page readonly
|
|
|
|
7DF5BF512000
|
unkown image
|
page readonly
|
|
|
|
168B6313000
|
unkown
|
page read and write
|
|
|
|
1F94FB80000
|
unkown image
|
page readonly
|
|
|
|
294B6020000
|
unkown image
|
page readonly
|
|
|
|
1D4009A3000
|
unkown
|
page read and write
|
|
|
|
19FA1037000
|
unkown
|
page read and write
|
|
|
|
7FF570453000
|
unkown image
|
page readonly
|
|
|
|
1D400993000
|
unkown
|
page read and write
|
|
|
|
7FF59AD8C000
|
unkown image
|
page readonly
|
|
|
|
1D40095A000
|
unkown
|
page read and write
|
|
|
|
2142E253000
|
unkown
|
page read and write
|
|
|
|
9764DF7000
|
stack
|
page read and write
|
|
|
|
294B6302000
|
unkown
|
page read and write
|
|
|
|
2142E200000
|
unkown
|
page read and write
|
|
|
|
1D400080000
|
unkown
|
page read and write
|
|
|
|
1D400E1F000
|
unkown
|
page read and write
|
|
|
|
1D400982000
|
unkown
|
page read and write
|
|
|
|
294B61D0000
|
unkown
|
page read and write
|
|
|
|
7FF5B88E3000
|
unkown image
|
page readonly
|
|
|
|
24DAB802000
|
unkown
|
page read and write
|
|
|
|
7FF5880E7000
|
unkown image
|
page readonly
|
|
|
|
1D40090E000
|
unkown
|
page read and write
|
|
|
|
7FF55612A000
|
unkown image
|
page readonly
|
|
|
|
1D40099B000
|
unkown
|
page read and write
|
|
|
|
7FF5847BE000
|
unkown image
|
page readonly
|
|
|
|
294B6600000
|
unkown image
|
page readonly
|
|
|
|
1E8A579000
|
stack
|
page read and write
|
|
|
|
7FF53DA6F000
|
unkown image
|
page readonly
|
|
|
|
24DAB2D0000
|
unkown image
|
page readonly
|
|
|
|
C7E417E000
|
stack
|
page read and write
|
|
|
|
C7E40FE000
|
stack
|
page read and write
|
|
|
|
C36DFFE000
|
stack
|
page read and write
|
|
|
|
7FF51BA9B000
|
unkown image
|
page readonly
|
|
|
|
C36DB0C000
|
unkown
|
page read and write
|
|
|
|
1D4007F0000
|
unkown
|
page read and write
|
|
|
|
7FF5B876F000
|
unkown image
|
page readonly
|
|
|
|
7DF4BD3D0000
|
unkown image
|
page readonly
|
|
|
|
7FF51BB22000
|
unkown image
|
page readonly
|
|
|
|
7FF584861000
|
unkown image
|
page readonly
|
|
|
|
7FF51BA7E000
|
unkown image
|
page readonly
|
|
|
|
7DF563DB0000
|
unkown image
|
page readonly
|
|
|
|
7FF5B1891000
|
unkown image
|
page readonly
|
|
|
|
1F94FB70000
|
heap private
|
page read and write
|
|
|
|
7FF570423000
|
unkown image
|
page readonly
|
|
|
|
168B6170000
|
unkown
|
page read and write
|
|
|
|
7DF5A8BA0000
|
unkown image
|
page readonly
|
|
|
|
7DF4A6A50000
|
unkown image
|
page readonly
|
|
|
|
7FF51BAA3000
|
unkown image
|
page readonly
|
|
|
|
7FF51B1E1000
|
unkown image
|
page readonly
|
|
|
|
32BBEFE000
|
stack
|
page read and write
|
|
|
|
7FF57040D000
|
unkown image
|
page readonly
|
|
|
|
C449CFC000
|
stack
|
page read and write
|
|
|
|
7FF51B822000
|
unkown image
|
page readonly
|
|
|
|
249B5AF0000
|
unkown image
|
page readonly
|
|
|
|
7FF59AE9A000
|
unkown image
|
page readonly
|
|
|
|
7FF59AE9D000
|
unkown image
|
page readonly
|
|
|
|
1F52A9F0000
|
unkown
|
page read and write
|
|
|
|
7FF5B89A9000
|
unkown image
|
page readonly
|
|
|
|
249B5AE0000
|
heap private
|
page read and write
|
|
|
|
24DAAF10000
|
unkown image
|
page readonly
|
|
|
|
1D400730000
|
unkown
|
page read and write
|
|
|
|
7FF51BA12000
|
unkown image
|
page readonly
|
|
|
|
7DF5A8B82000
|
unkown image
|
page readonly
|
|
|
|
7FF5B859C000
|
unkown image
|
page readonly
|
|
|
|
1D40099D000
|
unkown
|
page read and write
|
|
|
|
7FF51B1D5000
|
unkown image
|
page readonly
|
|
|
|
7DF5A8B90000
|
unkown image
|
page readonly
|
|
|
|
7FF53DAD7000
|
unkown image
|
page readonly
|
|
|
|
7FF5845E6000
|
unkown image
|
page readonly
|
|
|
|
24DAB064000
|
unkown
|
page read and write
|
|
|
|
7FF51B724000
|
unkown image
|
page readonly
|
|
|
|
19FA0F40000
|
unkown image
|
page readonly
|
|
|
|
1F94FC7D000
|
unkown
|
page read and write
|
|
|
|
249B5AD0000
|
unkown image
|
page read and write
|
|
|
|
1F94FC00000
|
unkown
|
page read and write
|
|
|
|
7FF59AF04000
|
unkown image
|
page readonly
|
|
|
|
2142E26A000
|
unkown
|
page read and write
|
|
|
|
294B7C02000
|
unkown
|
page read and write
|
|
|
|
1F52AA4B000
|
unkown
|
page read and write
|
|
|
|
294B627F000
|
unkown
|
page read and write
|
|
|
|
7FF51B1CA000
|
unkown image
|
page readonly
|
|
|
|
7DF5BF500000
|
unkown image
|
page readonly
|
|
|
|
7FF51BA63000
|
unkown image
|
page readonly
|
|
|
|
7FF55608B000
|
unkown image
|
page readonly
|
|
|
|
7FF5B17FE000
|
unkown image
|
page readonly
|
|
|
|
1D400982000
|
unkown
|
page read and write
|
|
|
|
1D400974000
|
unkown
|
page read and write
|
|
|
|
1F94FC63000
|
unkown
|
page read and write
|
|
|
|
7DF57E162000
|
unkown image
|
page readonly
|
|
|
|
1D40099A000
|
unkown
|
page read and write
|
|
|
|
2BE28180000
|
unkown image
|
page readonly
|
|
|
|
7DF5A8B92000
|
unkown image
|
page readonly
|
|
|
|
1F950402000
|
unkown
|
page read and write
|
|
|
|
1D3FFF70000
|
heap private
|
page read and write
|
|
|
|
1F52A970000
|
unkown image
|
page readonly
|
|
|
|
7DF528E52000
|
unkown image
|
page readonly
|
|
|
|
82B4C7D000
|
stack
|
page read and write
|
|
|
|
7FF51B920000
|
unkown image
|
page readonly
|
|
|
|
7FF51BA77000
|
unkown image
|
page readonly
|
|
|
|
168B6200000
|
unkown
|
page read and write
|
|
|
|
249B5B10000
|
unkown image
|
page readonly
|
|
|
|
2BE27E00000
|
unkown image
|
page readonly
|
|
|
|
1D400E02000
|
unkown
|
page read and write
|
|
|
|
7FF5B17C3000
|
unkown image
|
page readonly
|
|
|
|
7FF555E8E000
|
unkown image
|
page readonly
|
|
|
|
7DF5924D0000
|
unkown image
|
page readonly
|
|
|
|
7DF5924E0000
|
unkown image
|
page readonly
|
|
|
|
1F950330000
|
unkown
|
page read and write
|
|
|
|
7FF5560B7000
|
unkown image
|
page readonly
|
|
|
|
7FF51BA59000
|
unkown image
|
page readonly
|
|
|
|
7FF51B133000
|
unkown image
|
page readonly
|
|
|
|
249B6330000
|
unkown image
|
page write copy
|
|
|
|
5369F7B000
|
stack
|
page read and write
|
|
|
|
7FF5880A3000
|
unkown image
|
page readonly
|
|
|
|
1D4000DF000
|
unkown
|
page read and write
|
|
|
|
7FF5560BD000
|
unkown image
|
page readonly
|
|
|
|
7DF54B7D0000
|
unkown image
|
page readonly
|
|
|
|
24DAB058000
|
unkown
|
page read and write
|
|
|
|
7FF5702CD000
|
unkown image
|
page readonly
|
|
|
|
19FA0F40000
|
unkown image
|
page readonly
|
|
|
|
249B60D0000
|
unkown image
|
page readonly
|
|
|
|
1F94FC74000
|
unkown
|
page read and write
|
|
|
|
7FF51B894000
|
unkown image
|
page readonly
|
|
|
|
7FF51B8AF000
|
unkown image
|
page readonly
|
|
|
|
7FF5B171C000
|
unkown image
|
page readonly
|
|
|
|
1F94FC13000
|
unkown
|
page read and write
|
|
|
|
1E8A47E000
|
stack
|
page read and write
|
|
|
|
7FF5B17C0000
|
unkown image
|
page readonly
|
|
|
|
7FF570501000
|
unkown image
|
page readonly
|
|
|
|
2142E170000
|
unkown image
|
page readonly
|
|
|
|
36F617E000
|
stack
|
page read and write
|
|
|
|
7FF58476D000
|
unkown image
|
page readonly
|
|
|
|
294B7BA0000
|
unkown
|
page read and write
|
|
|
|
7DF54B7D2000
|
unkown image
|
page readonly
|
|
|
|
1F94FC75000
|
unkown
|
page read and write
|
|
|
|
19FA103A000
|
unkown
|
page read and write
|
|
|
|
7FF584832000
|
unkown image
|
page readonly
|
|
|
|
1F94FC40000
|
unkown
|
page read and write
|
|
|
|
2BE27AF0000
|
unkown image
|
page readonly
|
|
|
|
19FA1043000
|
unkown
|
page read and write
|
|
|
|
C44977C000
|
stack
|
page read and write
|
|
|
|
1D400993000
|
unkown
|
page read and write
|
|
|
|
7FF59AE2D000
|
unkown image
|
page readonly
|
|
|
|
7FF51B8B5000
|
unkown image
|
page readonly
|
|
|
|
1F94FC6F000
|
unkown
|
page read and write
|
|
|
|
7FF53DB51000
|
unkown image
|
page readonly
|
|
|
|
19FA1043000
|
unkown
|
page read and write
|
|
|
|
7FF570420000
|
unkown image
|
page readonly
|
|
|
|
1D400963000
|
unkown
|
page read and write
|
|
|
|
7FF5B17CE000
|
unkown image
|
page readonly
|
|
|
|
7DF5297C2000
|
unkown image
|
page readonly
|
|
|
|
7FF56FFE1000
|
unkown image
|
page readonly
|
|
|
|
7FF58761A000
|
unkown image
|
page readonly
|
|
|
|
7FF5B809D000
|
unkown image
|
page readonly
|
|
|
|
7FF5B1584000
|
unkown image
|
page readonly
|
|
|
|
7FF555E36000
|
unkown image
|
page readonly
|
|
|
|
249B5CE2000
|
unkown
|
page read and write
|
|
|
|
168B6020000
|
unkown image
|
page readonly
|
|
|
|
536A3FD000
|
stack
|
page read and write
|
|
|
|
1D400993000
|
unkown
|
page read and write
|
|
|
|
7FF587D0D000
|
unkown image
|
page readonly
|
|
|
|
7FF55596D000
|
unkown image
|
page readonly
|
|
|
|
2142E300000
|
unkown
|
page read and write
|
|
|
|
536A0FB000
|
stack
|
page read and write
|
|
|
|
7FF51B1B9000
|
unkown image
|
page readonly
|
|
|
|
82B4EFF000
|
stack
|
page read and write
|
|
|
|
1D4000FE000
|
unkown
|
page read and write
|
|
|
|
976517E000
|
stack
|
page read and write
|
|
|
|
2142E22A000
|
unkown
|
page read and write
|
|
|
|
1D400013000
|
unkown
|
page read and write
|
|
|
|
7FF58484A000
|
unkown image
|
page readonly
|
|
|
|
1D400102000
|
unkown
|
page read and write
|
|
|
|
1D400959000
|
unkown
|
page read and write
|
|
|
|
1D40004B000
|
unkown
|
page read and write
|
|
|
|
19FA1031000
|
unkown
|
page read and write
|
|
|
|
24DAB028000
|
unkown
|
page read and write
|
|
|
|
1F94FC2E000
|
unkown
|
page read and write
|
|
|
|
7FF5702D0000
|
unkown image
|
page readonly
|
|
|
|
7FF59ACED000
|
unkown image
|
page readonly
|
|
|
|
1D40004E000
|
unkown
|
page read and write
|
|
|
|
1F52AB00000
|
unkown
|
page read and write
|
|
|
|
7FF59AA01000
|
unkown image
|
page readonly
|
|
|
|
1D40096C000
|
unkown
|
page read and write
|
|
|
|
7FF570355000
|
unkown image
|
page readonly
|
|
|
|
1F52AA70000
|
unkown
|
page read and write
|
|
|
|
1F94FC69000
|
unkown
|
page read and write
|
|
|
|
1E8A5FF000
|
stack
|
page read and write
|
|
|
|
1D400E02000
|
unkown
|
page read and write
|
|
|
|
7FF570409000
|
unkown image
|
page readonly
|
|
|
|
1F52AA4E000
|
unkown
|
page read and write
|
|
|
|
7FF5B1572000
|
unkown image
|
page readonly
|
|
|
|
7FF5B1626000
|
unkown image
|
page readonly
|
|
|
|
1D400780000
|
unkown image
|
page write copy
|
|
|
|
9764B7E000
|
stack
|
page read and write
|
|
|
|
7FF59AA07000
|
unkown image
|
page readonly
|
|
|
|
1D4009C6000
|
unkown
|
page read and write
|
|
|
|
2BE27AC0000
|
unkown image
|
page readonly
|
|
|
|
7FF5B892E000
|
unkown image
|
page readonly
|
|
|
|
19FA16E0000
|
unkown image
|
page readonly
|
|
|
|
32BBB8B000
|
unkown
|
page read and write
|
|
|
|
19FA1355000
|
heap private
|
page read and write
|
|
|
|
19FA1043000
|
unkown
|
page read and write
|
|
|
|
7FF53DB32000
|
unkown image
|
page readonly
|
|
|
|
7DF5BF512000
|
unkown image
|
page readonly
|
|
|
|
1D400923000
|
unkown
|
page read and write
|
|
|
|
168B623F000
|
unkown
|
page read and write
|
|
|
|
7FF58813A000
|
unkown image
|
page readonly
|
|
|
|
2BE27BF0000
|
unkown image
|
page readonly
|
|
|
|
C36E07C000
|
stack
|
page read and write
|
|
|
|
1D4009A3000
|
unkown
|
page read and write
|
|
|
|
1D40095E000
|
unkown
|
page read and write
|
|
|
|
1D400F00000
|
unkown
|
page read and write
|
|
|
|
168B6302000
|
unkown
|
page read and write
|
|
|
|
1D40095F000
|
unkown
|
page read and write
|
|
|
|
7FF51B6B7000
|
unkown image
|
page readonly
|
|
|
|
249B5C43000
|
unkown
|
page read and write
|
|
|
|
1F52A970000
|
unkown image
|
page readonly
|
|
|
|
1D400966000
|
unkown
|
page read and write
|
|
|
|
7DF449690000
|
unkown image
|
page readonly
|
|
|
|
294B624A000
|
unkown
|
page read and write
|
|
|
|
7FF5700FB000
|
unkown image
|
page readonly
|
|
|
|
7FF5847DD000
|
unkown image
|
page readonly
|
|
|
|
7FF51B967000
|
unkown image
|
page readonly
|
|
|
|
19FA0FD0000
|
unkown image
|
page readonly
|
|
|
|
24DAB03E000
|
unkown
|
page read and write
|
|
|
|
2BE27B10000
|
heap default
|
page read and write
|
|
|
|
1F52AA52000
|
unkown
|
page read and write
|
|
|
|
C1839DC000
|
unkown
|
page read and write
|
|
|
|
7FF5880E0000
|
unkown image
|
page readonly
|
|
|
|
C1840FB000
|
stack
|
page read and write
|
|
|
|
7DF54B7C0000
|
unkown image
|
page readonly
|
|
|
|
7FF556037000
|
unkown image
|
page readonly
|
|
|
|
168B6020000
|
unkown image
|
page readonly
|
|
|
|
1F9500D0000
|
unkown image
|
page readonly
|
|
|
|
1F94FD02000
|
unkown
|
page read and write
|
|
|
|
7DF528E50000
|
unkown image
|
page readonly
|
|
|
|
1F94FC7E000
|
unkown
|
page read and write
|
|
|
|
1D400E6A000
|
unkown
|
page read and write
|
|
|
|
7FF51B4BB000
|
unkown image
|
page readonly
|
|
|
|
2142E249000
|
unkown
|
page read and write
|
|
|
|
7FF5880D3000
|
unkown image
|
page readonly
|
|
|
|
2142E24E000
|
unkown
|
page read and write
|
|
|
|
168B6040000
|
unkown image
|
page readonly
|
|
|
|
168B6264000
|
unkown
|
page read and write
|
|
|
|
249B5ED0000
|
unkown image
|
page readonly
|
|
|
|
1D40099B000
|
unkown
|
page read and write
|
|
|
|
7FF51AF42000
|
unkown image
|
page readonly
|
|
|
|
19FA1049000
|
unkown
|
page read and write
|
|
|
|
7DF57E170000
|
unkown image
|
page readonly
|
|
|
|
7FF59AE4E000
|
unkown image
|
page readonly
|
|
|
|
7FF5B878C000
|
unkown image
|
page readonly
|
|
|
|
536A1FE000
|
stack
|
page read and write
|
|
|
|
7DF5A8B80000
|
unkown image
|
page readonly
|
|
|
|
7FF556112000
|
unkown image
|
page readonly
|
|
|
|
19FA104B000
|
unkown
|
page read and write
|
|
|
|
7FF5B181A000
|
unkown image
|
page readonly
|
|
|
|
7FF51BA87000
|
unkown image
|
page readonly
|
|
|
|
1D3FFFB0000
|
unkown image
|
page readonly
|
|
|
|
1F94FBB0000
|
unkown image
|
page readonly
|
|
|
|
7DF426D10000
|
unkown image
|
page readonly
|
|
|
|
7FF555F0D000
|
unkown image
|
page readonly
|
|
|
|
7FF588192000
|
unkown image
|
page readonly
|
|
|
|
7DF4C4500000
|
unkown image
|
page readonly
|
|
|
|
1D40099D000
|
unkown
|
page read and write
|
|
|
|
1D400900000
|
unkown
|
page read and write
|
|
|
|
7DF528E52000
|
unkown image
|
page readonly
|
|
|
|
7DF5924D2000
|
unkown image
|
page readonly
|
|
|
|
7FF5B1667000
|
unkown image
|
page readonly
|
|
|
|
7DF5C6650000
|
unkown image
|
page readonly
|
|
|
|
1D40098C000
|
unkown
|
page read and write
|
|
|
|
1F52AA50000
|
unkown
|
page read and write
|
|
|
|
7FF51BB34000
|
unkown image
|
page readonly
|
|
|
|
1F94FC3B000
|
unkown
|
page read and write
|
|
|
|
7FF584757000
|
unkown image
|
page readonly
|
|
|
|
24DAB113000
|
unkown
|
page read and write
|
|
|
|
1D4000C7000
|
unkown
|
page read and write
|
|
|
|
7FF588045000
|
unkown image
|
page readonly
|
|
|
|
7DF5BF500000
|
unkown image
|
page readonly
|
|
|
|
1D400802000
|
unkown
|
page read and write
|
|
|
|
2BE27C5C000
|
unkown
|
page read and write
|
|
|
|
1D40099D000
|
unkown
|
page read and write
|
|
|
|
168B6150000
|
unkown image
|
page readonly
|
|
|
|
7FF59ADA5000
|
unkown image
|
page readonly
|
|
|
|
7FF55613A000
|
unkown image
|
page readonly
|
|
|
|
7FF51B0F6000
|
unkown image
|
page readonly
|
|
|
|
7DF563DA0000
|
unkown image
|
page readonly
|
|
|
|
7FF51B962000
|
unkown image
|
page readonly
|
|
|
|
9764FFF000
|
stack
|
page read and write
|
|
|
|
1D40095E000
|
unkown
|
page read and write
|
|
|
|
294B6249000
|
unkown
|
page read and write
|
|
|
|
7FF556092000
|
unkown image
|
page readonly
|
|
|
|
7FF570385000
|
unkown image
|
page readonly
|
|
|
|
7FF5881C1000
|
unkown image
|
page readonly
|
|
|
|
294B5FF0000
|
unkown image
|
page readonly
|
|
|
|
36F657F000
|
stack
|
page read and write
|
|
|
|
7FF5B1567000
|
unkown image
|
page readonly
|
|
|
|
1D40003C000
|
unkown
|
page read and write
|
|
|
|
7FF5880C9000
|
unkown image
|
page readonly
|
|
|
|
7FF5B832D000
|
unkown image
|
page readonly
|
|
|
|
1D4007F0000
|
unkown
|
page read and write
|
|
|
|
249B5B40000
|
heap default
|
page read and write
|
|
|
|
7DF5924C2000
|
unkown image
|
page readonly
|
|
|
|
7FF5B17F3000
|
unkown image
|
page readonly
|
|
|
|
294B6190000
|
unkown
|
page read and write
|
|
|
|
1D400E02000
|
unkown
|
page read and write
|
|
|
|
249B5C64000
|
unkown
|
page read and write
|
|
|
|
7DF57E172000
|
unkown image
|
page readonly
|
|
|
|
2142EA02000
|
unkown
|
page read and write
|
|
|
|
7FF584077000
|
unkown image
|
page readonly
|
|
|
|
19FA103A000
|
unkown
|
page read and write
|
|
|
|
C44936C000
|
unkown
|
page read and write
|
|
|
|
7FF584861000
|
unkown image
|
page readonly
|
|
|
|
249B6500000
|
unkown
|
page read and write
|
|
|
|
2142E400000
|
unkown image
|
page readonly
|
|
|
|
7FF584783000
|
unkown image
|
page readonly
|
|
|
|
7DF5924E0000
|
unkown image
|
page readonly
|
|
|
|
24DAB013000
|
unkown
|
page read and write
|
|
|
|
1D400982000
|
unkown
|
page read and write
|
|
|
|
7FF5B87E7000
|
unkown image
|
page readonly
|
|
|
|
7FF51B896000
|
unkown image
|
page readonly
|
|
|
|
2BE28270000
|
unkown
|
page read and write
|
|
|
|
7FF5B88DF000
|
unkown image
|
page readonly
|
|
|
|
24DAAF40000
|
unkown image
|
page readonly
|
|
|
|
7DF5C6642000
|
unkown image
|
page readonly
|
|
|
|
7FF51BB3A000
|
unkown image
|
page readonly
|
|
|
|
1F52A960000
|
heap private
|
page read and write
|
|
|
|
7FF570477000
|
unkown image
|
page readonly
|
|
|
|
C36E27D000
|
stack
|
page read and write
|
|
|
|
1D400116000
|
unkown
|
page read and write
|
|
|
|
1D400958000
|
unkown
|
page read and write
|
|
|
|
1D4009A1000
|
unkown
|
page read and write
|
|
|
|
1D400960000
|
unkown
|
page read and write
|
|
|
|
19FA0FE0000
|
unkown image
|
page readonly
|
|
|
|
2142E202000
|
unkown
|
page read and write
|
|
|
|
1D400963000
|
unkown
|
page read and write
|
|
|
|
2BE27C13000
|
unkown
|
page read and write
|
|
|
|
2142E282000
|
unkown
|
page read and write
|
|
|
|
1D40008A000
|
unkown
|
page read and write
|
|
|
|
294B6300000
|
unkown
|
page read and write
|
|
|
|
7FF53D820000
|
unkown image
|
page readonly
|
|
|
|
C7E407C000
|
unkown
|
page read and write
|
|
|
|
7FF5B1596000
|
unkown image
|
page readonly
|
|
|
|
1D400956000
|
unkown
|
page read and write
|
|
|
|
7FF5B1783000
|
unkown image
|
page readonly
|
|
|
|
7DF57E160000
|
unkown image
|
page readonly
|
|
|
|
294B6259000
|
unkown
|
page read and write
|
|
|
|
1F94FC42000
|
unkown
|
page read and write
|
|
|
|
7FF5880E3000
|
unkown image
|
page readonly
|
|
|
|
7DF54B7C2000
|
unkown image
|
page readonly
|
|
|
|
7FF57044B000
|
unkown image
|
page readonly
|
|
|
|
24DAB07F000
|
unkown
|
page read and write
|
|
|
|
1F94FBA0000
|
unkown image
|
page readonly
|
|
|
|
7DF528E40000
|
unkown image
|
page readonly
|
|
|
|
24DAAF30000
|
unkown image
|
page readonly
|
|
|
|
7DF5A8B80000
|
unkown image
|
page readonly
|
|
|
|
7DF5924C2000
|
unkown image
|
page readonly
|
|
|
|
1D400963000
|
unkown
|
page read and write
|
|
|
|
1D400993000
|
unkown
|
page read and write
|
|
|
|
7FF57035B000
|
unkown image
|
page readonly
|
|
|
|
1D400113000
|
unkown
|
page read and write
|
|
|
|
1F52AA13000
|
unkown
|
page read and write
|
|
|
|
1D400967000
|
unkown
|
page read and write
|
|
|
|
7FF51B1E1000
|
unkown image
|
page readonly
|
|
|
|
7FF555EE4000
|
unkown image
|
page readonly
|
|
|
|
C449DFE000
|
stack
|
page read and write
|
|
|
|
7FF5879ED000
|
unkown image
|
page readonly
|
|
|
|
7DF5924D2000
|
unkown image
|
page readonly
|
|
|
|
7FF555CA7000
|
unkown image
|
page readonly
|
|
|
|
1F94FC6B000
|
unkown
|
page read and write
|
|
|
|
7FF51B74B000
|
unkown image
|
page readonly
|
|
|
|
19FA100E000
|
heap default
|
page read and write
|
|
|
|
7DF5297C0000
|
unkown image
|
page readonly
|
|
|
|
24DAB079000
|
unkown
|
page read and write
|
|
|
|
1D400988000
|
unkown
|
page read and write
|
|
|
|
536A7FF000
|
stack
|
page read and write
|
|
|
|
7FF587F5F000
|
unkown image
|
page readonly
|
|
|
|
1D3FFFA0000
|
unkown image
|
page readonly
|
|
|
|
7FF5B1884000
|
unkown image
|
page readonly
|
|
|
|
7FF51B1DA000
|
unkown image
|
page readonly
|
|
|
|
7FF51B905000
|
unkown image
|
page readonly
|
|
|
|
7FF5560BA000
|
unkown image
|
page readonly
|
|
|
|
536A5FE000
|
stack
|
page read and write
|
|
|
|
7FF5B17B3000
|
unkown image
|
page readonly
|
|
|
|
7DF490390000
|
unkown image
|
page readonly
|
|
|
|
7FF59AE47000
|
unkown image
|
page readonly
|
|
|
|
7FF51BAC7000
|
unkown image
|
page readonly
|
|
|
|
7FF59AE29000
|
unkown image
|
page readonly
|
|
|
|
168B6050000
|
unkown image
|
page readonly
|
|
|
|
19FA1360000
|
unkown image
|
page readonly
|
|
|
|
7FF53DADD000
|
unkown image
|
page readonly
|
|
|
|
7DF5BF510000
|
unkown image
|
page readonly
|
|
|
|
7FF59AE2F000
|
unkown image
|
page readonly
|
|
|
|
7FF5B88F3000
|
unkown image
|
page readonly
|
|
|
|
7FF55604F000
|
unkown image
|
page readonly
|
|
|
|
7DF57E170000
|
unkown image
|
page readonly
|
|
|
|
7FF587E95000
|
unkown image
|
page readonly
|
|
|
|
1D400963000
|
unkown
|
page read and write
|
|
|
|
7FF53DADA000
|
unkown image
|
page readonly
|
|
|
|
7FF5703F7000
|
unkown image
|
page readonly
|
|
|
|
7FF51A9E2000
|
unkown image
|
page readonly
|
|
|
|
1F94FBE0000
|
unkown image
|
page readonly
|
|
|
|
7FF51B85B000
|
unkown image
|
page readonly
|
|
|
|
7DF5C6640000
|
unkown image
|
page readonly
|
|
|
|
7FF587FD7000
|
unkown image
|
page readonly
|
|
|
|
7FF51B95F000
|
unkown image
|
page readonly
|
|
|
|
7FF5B86A2000
|
unkown image
|
page readonly
|
|
|
|
294B61D0000
|
unkown
|
page read and write
|
|
|
|
294B6202000
|
unkown
|
page read and write
|
|
|
|
7FF5847B3000
|
unkown image
|
page readonly
|
|
|
|
2142E23C000
|
unkown
|
page read and write
|
|
|
|
7FF5B87E2000
|
unkown image
|
page readonly
|
|
|
|
249B5D13000
|
unkown
|
page read and write
|
|
|
|
7FF53D87A000
|
unkown image
|
page readonly
|
|
|
|
7FF587F1F000
|
unkown image
|
page readonly
|
|
|
|
7FF59AE6B000
|
unkown image
|
page readonly
|
|
|
|
1F52A9C0000
|
heap default
|
page read and write
|
|
|
|
7DF54B7C2000
|
unkown image
|
page readonly
|
|
|
|
7FF59AD7B000
|
unkown image
|
page readonly
|
|
|
|
7DF47C030000
|
unkown image
|
page readonly
|
|
|
|
2142E213000
|
unkown
|
page read and write
|
|
|
|
7FF556063000
|
unkown image
|
page readonly
|
|
|
|
1D40099B000
|
unkown
|
page read and write
|
|
|
|
36F60FE000
|
stack
|
page read and write
|
|
|
|
249B5AF0000
|
unkown image
|
page readonly
|
|
|
|
7FF5B1872000
|
unkown image
|
page readonly
|
|
|
|
7FF59AE40000
|
unkown image
|
page readonly
|
|
|
|
7FF5B18A1000
|
unkown image
|
page readonly
|
|
|
|
19FA0FA0000
|
unkown
|
page read and write
|
|
|
|
1F94FC49000
|
unkown
|
page read and write
|
|
|
|
7FF51B93B000
|
unkown image
|
page readonly
|
|
|
|
1D4009A5000
|
unkown
|
page read and write
|
|
|
|
7DF5BF502000
|
unkown image
|
page readonly
|
|
|
|
1E8A10A000
|
unkown
|
page read and write
|
|
|
|
7FF5B8165000
|
unkown image
|
page readonly
|
|
|
|
24DAB660000
|
unkown image
|
page readonly
|
|
|
|
294B61D0000
|
unkown
|
page read and write
|
|
|
|
1F94FC66000
|
unkown
|
page read and write
|
|
|
|
7DF54B7E0000
|
unkown image
|
page readonly
|
|
|
|
9764EF7000
|
stack
|
page read and write
|
|
|
|
7FF5B8783000
|
unkown image
|
page readonly
|
|
|
|
1F52AA5E000
|
unkown
|
page read and write
|
|
|
|
1F52A9D0000
|
unkown image
|
page readonly
|
|
|
|
1F52B202000
|
unkown
|
page read and write
|
|
|
|
1F94FC41000
|
unkown
|
page read and write
|
|
|
|
7FF58476F000
|
unkown image
|
page readonly
|
|
|
|
7FF5B88D9000
|
unkown image
|
page readonly
|
|
|
|
1D4000E1000
|
unkown
|
page read and write
|
|
|
|
7DF563DB2000
|
unkown image
|
page readonly
|
|
|
|
249B6260000
|
unkown image
|
page readonly
|
|
|
|
1F94FC44000
|
unkown
|
page read and write
|
|
|
|
249B5B70000
|
unkown
|
page read and write
|
|
|
|
1F94FC2D000
|
unkown
|
page read and write
|
|
|
|
7DF563DC0000
|
unkown image
|
page readonly
|
|
|
|
294B6200000
|
unkown
|
page read and write
|
|
|
|
249B6402000
|
unkown
|
page read and write
|
|
|
|
249B6532000
|
unkown
|
page read and write
|
|
|
|
7FF51B8D6000
|
unkown image
|
page readonly
|
|
|
|
7FF5704FA000
|
unkown image
|
page readonly
|
|
|
|
1D40002A000
|
unkown
|
page read and write
|
|
|
|
1D400967000
|
unkown
|
page read and write
|
|
|
|
7DF5A8B90000
|
unkown image
|
page readonly
|
|
|
|
294B6313000
|
unkown
|
page read and write
|
|
|
|
1D40005A000
|
unkown
|
page read and write
|
|
|
|
168B6213000
|
unkown
|
page read and write
|
|
|
|
7DF57E162000
|
unkown image
|
page readonly
|
|
|
|
1F52A990000
|
unkown image
|
page readonly
|
|
|
|
168B6261000
|
unkown
|
page read and write
|
|
|
|
2142E247000
|
unkown
|
page read and write
|
|
|
|
32BC37E000
|
stack
|
page read and write
|
|
|
|
1F94FC84000
|
unkown
|
page read and write
|
|
|
|
1D400983000
|
unkown
|
page read and write
|
|
|
|
294B8180000
|
unkown image
|
page write copy
|
|
|
|
1D40099D000
|
unkown
|
page read and write
|
|
|
|
7FF53DA22000
|
unkown image
|
page readonly
|
|
|
|
7FF5702EB000
|
unkown image
|
page readonly
|
|
|
|
7FF5B8183000
|
unkown image
|
page readonly
|
|
|
|
1D400050000
|
unkown
|
page read and write
|
|
|
|
7FF57045E000
|
unkown image
|
page readonly
|
|
|
|
19FA1031000
|
unkown
|
page read and write
|
|
|
|
1D400971000
|
unkown
|
page read and write
|
|
|
|
7FF53DA2E000
|
unkown image
|
page readonly
|
|
|
|
7FF51BA70000
|
unkown image
|
page readonly
|
|
|
|
249B5C67000
|
unkown
|
page read and write
|
|
|
|
7FF5B1644000
|
unkown image
|
page readonly
|
|
|
|
7DF595E20000
|
unkown image
|
page readonly
|
|
|
|
7FF5702B1000
|
unkown image
|
page readonly
|
|
|
|
2BE27C29000
|
unkown
|
page read and write
|
|
|
|
7DF54B7E0000
|
unkown image
|
page readonly
|
|
|
|
1F94FC32000
|
unkown
|
page read and write
|
|
|
|
7FF570427000
|
unkown image
|
page readonly
|
|
|
|
7FF59ACD1000
|
unkown image
|
page readonly
|
|
|
|
7FF5B8537000
|
unkown image
|
page readonly
|
|
|
|
2142E060000
|
unkown image
|
page readonly
|
|
|
|
1D400966000
|
unkown
|
page read and write
|
|
|
|
1F52AB02000
|
unkown
|
page read and write
|
|
|
|
1D40095B000
|
unkown
|
page read and write
|
|
|
|
1D400967000
|
unkown
|
page read and write
|
|
|
|
7DF5C6650000
|
unkown image
|
page readonly
|
|
|
|
1E8A18E000
|
stack
|
page read and write
|
|
|
|
19FA103A000
|
unkown
|
page read and write
|
|
|
|
2142E262000
|
unkown
|
page read and write
|
|
|
|
C449BFC000
|
stack
|
page read and write
|
|
|
|
32BC17B000
|
stack
|
page read and write
|
|
|
|
19FA1027000
|
unkown
|
page read and write
|
|
|
|
7FF556053000
|
unkown image
|
page readonly
|
|
|
|
7FF5B88C7000
|
unkown image
|
page readonly
|
|
|
|
294B5FE0000
|
heap private
|
page read and write
|
|
|
|
C183EFB000
|
stack
|
page read and write
|
|
|
|
7FF59AE97000
|
unkown image
|
page readonly
|
|
|
|
7FF5B87BB000
|
unkown image
|
page readonly
|
|
|
|
7FF53DAB3000
|
unkown image
|
page readonly
|
|
|
|
7FF5B8947000
|
unkown image
|
page readonly
|
|
|
|
7FF5880CF000
|
unkown image
|
page readonly
|
|
|
|
7FF5881A4000
|
unkown image
|
page readonly
|
|
|
|
1D400963000
|
unkown
|
page read and write
|
|
|
|
249B5CBB000
|
unkown
|
page read and write
|
|
|
|
2BE27AC0000
|
unkown image
|
page readonly
|
|
|
|
36F637B000
|
stack
|
page read and write
|
|
|
|
7DF5C6630000
|
unkown image
|
page readonly
|
|
|
|
C7E447F000
|
stack
|
page read and write
|
|
|
|
24DAB650000
|
unkown image
|
page readonly
|
|
|
|
19FA1007000
|
heap default
|
page read and write
|
|
|
|
7DF5A8B82000
|
unkown image
|
page readonly
|
|
|
|
7FF5844E5000
|
unkown image
|
page readonly
|
|
|
|
1D40095E000
|
unkown
|
page read and write
|
|
|
|
32BC277000
|
stack
|
page read and write
|
|
|
|
1D4009AA000
|
unkown
|
page read and write
|
|
|
|
7FF53DB39000
|
unkown image
|
page readonly
|
|
|
|
1D400000000
|
unkown
|
page read and write
|
|
|
|
C4499FF000
|
stack
|
page read and write
|
|
|
|
1D400919000
|
unkown
|
page read and write
|
|
|
|
249B5D02000
|
unkown
|
page read and write
|
|
|
|
7FF5B1879000
|
unkown image
|
page readonly
|
|
|
|
7FF5B17AF000
|
unkown image
|
page readonly
|
|
|
|
7FF58485A000
|
unkown image
|
page readonly
|
|
|
|
82B50FF000
|
stack
|
page read and write
|
|
|
|
36F667C000
|
stack
|
page read and write
|
|
|
|
19FA1025000
|
unkown
|
page read and write
|
|
|
|
294B6120000
|
unkown image
|
page readonly
|
|
|
|
1D400993000
|
unkown
|
page read and write
|
|
|
|
1D400957000
|
unkown
|
page read and write
|
|
|
|
7FF51B10E000
|
unkown image
|
page readonly
|
|
|
|
7FF5B0CBE000
|
unkown image
|
page readonly
|
|
|
|
168B625C000
|
unkown
|
page read and write
|
|
|
|
7FF5B8922000
|
unkown image
|
page readonly
|
|
|
|
1D40095F000
|
unkown
|
page read and write
|
|
|
|
82B4DFC000
|
stack
|
page read and write
|
|
|
|
7FF5704D2000
|
unkown image
|
page readonly
|
|
|
|
7FF51BA2E000
|
unkown image
|
page readonly
|
|
|
|
168B6400000
|
unkown image
|
page readonly
|
|
|
|
1D40099B000
|
unkown
|
page read and write
|
|
|
|
1F52AA4A000
|
unkown
|
page read and write
|
|
|
|
294B6318000
|
unkown
|
page read and write
|
|
|
|
7FF555EBB000
|
unkown image
|
page readonly
|
|
|
|
1F52B050000
|
unkown image
|
page readonly
|
|
|
|
7FF51AF48000
|
unkown image
|
page readonly
|
|
|
|
7FF5B89C1000
|
unkown image
|
page readonly
|
|
|
|
7FF5B88BF000
|
unkown image
|
page readonly
|
|
|
|
36F677F000
|
stack
|
page read and write
|
|
|
|
7DF528E40000
|
unkown image
|
page readonly
|
|
|
|
7FF51B9A5000
|
unkown image
|
page readonly
|
|
|
|
7FF58803B000
|
unkown image
|
page readonly
|
|
|
|
1D400984000
|
unkown
|
page read and write
|
|
|
|
7FF51B1C4000
|
unkown image
|
page readonly
|
|
|
|
7FF570437000
|
unkown image
|
page readonly
|
|
|
|
1D400986000
|
unkown
|
page read and write
|
|
|
|
7FF5B894A000
|
unkown image
|
page readonly
|
|
|
|
2BE27AE0000
|
unkown image
|
page readonly
|
|
|
|
19FA1350000
|
heap private
|
page read and write
|
|
|
|
7FF59AE17000
|
unkown image
|
page readonly
|
|
|
|
24DAB102000
|
unkown
|
page read and write
|
|
|
|
2142E24B000
|
unkown
|
page read and write
|
|
|
|
1D40098C000
|
unkown
|
page read and write
|
|
|
|
2BE282B0000
|
unkown
|
page read and write
|
|
|
|
82B49FF000
|
stack
|
page read and write
|
|
|
|
1D40095F000
|
unkown
|
page read and write
|
|
|
|
7FF556135000
|
unkown image
|
page readonly
|
|
|
|
1D400048000
|
unkown
|
page read and write
|
|
|
|
7FF556060000
|
unkown image
|
page readonly
|
|
|
|
7DF528E50000
|
unkown image
|
page readonly
|
|
|
|
7FF5B874B000
|
unkown image
|
page readonly
|
|
|
|
1D40095E000
|
unkown
|
page read and write
|
|
|
|
7DF528E60000
|
unkown image
|
page readonly
|
|
|
|
7FF555C93000
|
unkown image
|
page readonly
|
|
|
|
168B6229000
|
unkown
|
page read and write
|
|
|
|
1F94FB80000
|
unkown image
|
page readonly
|
|
|
|
7FF51BB50000
|
unkown image
|
page readonly
|
|
|
|
1D400999000
|
unkown
|
page read and write
|
|
|
|
7FF57036C000
|
unkown image
|
page readonly
|
|
|
|
7DF427680000
|
unkown image
|
page readonly
|
|
|
|
1D40098B000
|
unkown
|
page read and write
|
|
|
|
1D4009A3000
|
unkown
|
page read and write
|
|
|
|
249B5CC3000
|
unkown
|
page read and write
|
|
|
|
168B6274000
|
unkown
|
page read and write
|
|
|
|
1D40098C000
|
unkown
|
page read and write
|
|
|
|
1D400F02000
|
unkown
|
page read and write
|
|
|
|
294B6266000
|
unkown
|
page read and write
|
|
|
|
7FF5B89D1000
|
unkown image
|
page readonly
|
|
|
|
7FF5B1817000
|
unkown image
|
page readonly
|
|
|
|
7FF5B168B000
|
unkown image
|
page readonly
|
|
|
|
1D400919000
|
unkown
|
page read and write
|
|
|
|
2142E070000
|
unkown image
|
page readonly
|
|
|
|
7FF5B89CA000
|
unkown image
|
page readonly
|
|
|
|
24DAAEF0000
|
unkown image
|
page read and write
|
|
|
|
7FF5B88F0000
|
unkown image
|
page readonly
|
|
|
|
7FF5B1661000
|
unkown image
|
page readonly
|
|
|
|
7DF595E30000
|
unkown image
|
page readonly
|
|
|
|
1D400982000
|
unkown
|
page read and write
|
|
|
|
7FF53DB5A000
|
unkown image
|
page readonly
|
|
|
|
168B6600000
|
unkown image
|
page readonly
|
|
|
|
7FF51B100000
|
unkown image
|
page readonly
|
|
|
|
7FF51B0EF000
|
unkown image
|
page readonly
|
|
|
|
249B5B50000
|
unkown image
|
page readonly
|
|
|
|
1D3FFFD0000
|
heap default
|
page read and write
|
|
|
|
1D400750000
|
unkown image
|
page readonly
|
|
|
|
7FF556023000
|
unkown image
|
page readonly
|
|
|
|
1D4009A3000
|
unkown
|
page read and write
|
|
|
|
1F94FC3D000
|
unkown
|
page read and write
|
|
|
|
1D4000CC000
|
unkown
|
page read and write
|
|
|
|
976547B000
|
stack
|
page read and write
|
|
|
|
1D400983000
|
unkown
|
page read and write
|
|
|
|
1D400966000
|
unkown
|
page read and write
|
|
|
|
7FF51BA5D000
|
unkown image
|
page readonly
|
|
|
|
1F52AED0000
|
unkown image
|
page readonly
|
|
|
|
7FF59AD2F000
|
unkown image
|
page readonly
|
|
|
|
C36E57E000
|
stack
|
page read and write
|
|
|
|
1D4009B0000
|
unkown
|
page read and write
|
|
|
|
C4498FE000
|
stack
|
page read and write
|
|
|
|
2BE28402000
|
unkown
|
page read and write
|
|
|
|
7DF5BF510000
|
unkown image
|
page readonly
|
|
|
|
7FF55609E000
|
unkown image
|
page readonly
|
|
|
|
24DAB000000
|
unkown
|
page read and write
|
|
|
|
2142E030000
|
heap private
|
page read and write
|
|
|
|
7FF53DB55000
|
unkown image
|
page readonly
|
|
|
|
1D400E00000
|
unkown
|
page read and write
|
|
|
|
7FF59AE33000
|
unkown image
|
page readonly
|
|
|
|
7DF5297B2000
|
unkown image
|
page readonly
|
|
|
|
1D400108000
|
unkown
|
page read and write
|
|
|
|
7FF5880EE000
|
unkown image
|
page readonly
|
|
|
|
7FF53DAB8000
|
unkown image
|
page readonly
|
|
|
|
168B6000000
|
unkown image
|
page read and write
|
|
|
|
1F52AA7F000
|
unkown
|
page read and write
|
|
|
|
32BC47F000
|
stack
|
page read and write
|
|
|
|
7FF5881B1000
|
unkown image
|
page readonly
|
|
|
|
7FF51B9BC000
|
unkown image
|
page readonly
|
|
|
|
1D40098C000
|
unkown
|
page read and write
|
|
|
|
1D400965000
|
unkown
|
page read and write
|
|
|
|
1D4009DA000
|
unkown
|
page read and write
|
|
|
|
C7E437E000
|
stack
|
page read and write
|
|
|
|
7FF59AE73000
|
unkown image
|
page readonly
|
|
|
|
294B6226000
|
unkown
|
page read and write
|
|
|
|
2BE27C02000
|
unkown
|
page read and write
|
|
|
|
7FF5B8539000
|
unkown image
|
page readonly
|
|
|
|
1F52AA89000
|
unkown
|
page read and write
|
|
|
|
1F94FC7B000
|
unkown
|
page read and write
|
|
|
|
7FF5B86C9000
|
unkown image
|
page readonly
|
|
|
|
1F52AA49000
|
unkown
|
page read and write
|
|
|
|
19FA1037000
|
unkown
|
page read and write
|
|
|
|
7DF57E180000
|
unkown image
|
page readonly
|
|
|
|
7FF51B6B9000
|
unkown image
|
page readonly
|
|
|
|
1D400056000
|
unkown
|
page read and write
|
|
|
|
7FF5B89BA000
|
unkown image
|
page readonly
|
|
|
|
7FF5B88F7000
|
unkown image
|
page readonly
|
|
|
|
7FF5881BE000
|
unkown image
|
page readonly
|
|
|
|
7DF5C6632000
|
unkown image
|
page readonly
|
|
|
|
2BE27C25000
|
unkown
|
page read and write
|
|
|
|
7DF5BF520000
|
unkown image
|
page readonly
|
|
|
|
7FF5B8697000
|
unkown image
|
page readonly
|
|
|
|
1D400051000
|
unkown
|
page read and write
|
|
|
|
7FF570286000
|
unkown image
|
page readonly
|
|
|
|
7DF563DB0000
|
unkown image
|
page readonly
|
|
|
|
7FF51B4B7000
|
unkown image
|
page readonly
|
|
|
|
7FF556119000
|
unkown image
|
page readonly
|
|
|
|
7DF5297C2000
|
unkown image
|
page readonly
|
|
|
|
1F94FC60000
|
unkown
|
page read and write
|
|
|
|
7FF570381000
|
unkown image
|
page readonly
|
|
|
|
7FF58478E000
|
unkown image
|
page readonly
|
|
|
|
1F94FC32000
|
unkown
|
page read and write
|
|
|
|
7FF53D817000
|
unkown image
|
page readonly
|
|
|
|
82B467B000
|
unkown
|
page read and write
|
|
|
|
19FA1017000
|
heap default
|
page read and write
|
|
|
|
7DF595E40000
|
unkown image
|
page readonly
|
|
|
|
7FF58810B000
|
unkown image
|
page readonly
|
|
|
|
7DF595E22000
|
unkown image
|
page readonly
|
|
|
|
7FF587E92000
|
unkown image
|
page readonly
|
|
|
|
7FF51BA47000
|
unkown image
|
page readonly
|
|
|
|
7FF5B0CC4000
|
unkown image
|
page readonly
|
|
|
|
7FF51B352000
|
unkown image
|
page readonly
|
|
|
|
7FF587B3C000
|
unkown image
|
page readonly
|
|
|
|
1D40004C000
|
unkown
|
page read and write
|
|
|
|
7FF5B891B000
|
unkown image
|
page readonly
|
|
|
|
294B5FF0000
|
unkown image
|
page readonly
|
|
|
|
2142E28C000
|
unkown
|
page read and write
|
|
|
|
7FF51B0ED000
|
unkown image
|
page readonly
|
|
|
|
249B5C00000
|
unkown
|
page read and write
|
|
|
|
1D400959000
|
unkown
|
page read and write
|
|
|
|
1D400965000
|
unkown
|
page read and write
|
|
|
|
7DF595E22000
|
unkown image
|
page readonly
|
|
|
|
249B5C6E000
|
unkown
|
page read and write
|
|
|
|
7FF53DB61000
|
unkown image
|
page readonly
|
|
|
|
7DF563DA2000
|
unkown image
|
page readonly
|
|
|
|
7DF5BF502000
|
unkown image
|
page readonly
|
|
|
|
1F52AA4D000
|
unkown
|
page read and write
|
|
|
|
7FF587EA4000
|
unkown image
|
page readonly
|
|
|
|
7DF528E42000
|
unkown image
|
page readonly
|
|
|
|
7FF5B88FE000
|
unkown image
|
page readonly
|
|
|
|
7FF51B817000
|
unkown image
|
page readonly
|
|
|
|
7FF55606E000
|
unkown image
|
page readonly
|
|
|
|
7DF563DA2000
|
unkown image
|
page readonly
|
|
|
|
1D400983000
|
unkown
|
page read and write
|
|
|
|
7FF51BB51000
|
unkown image
|
page readonly
|
|
|
|
2142E308000
|
unkown
|
page read and write
|
|
|
|
7FF51B901000
|
unkown image
|
page readonly
|
|
|
|
1D400966000
|
unkown
|
page read and write
|
|
|
|
7FF57047A000
|
unkown image
|
page readonly
|
|
|
|
7FF55602E000
|
unkown image
|
page readonly
|
|
|
|
7FF59AE57000
|
unkown image
|
page readonly
|
|
|
|
976527A000
|
stack
|
page read and write
|
|
|
|
7FF5880C4000
|
unkown image
|
page readonly
|
|
|
|
1F94FC47000
|
unkown
|
page read and write
|
|
|
|
7FF58811E000
|
unkown image
|
page readonly
|
|
|
|
1D400958000
|
unkown
|
page read and write
|
|
|
|
1D3FFFE0000
|
unkown image
|
page readonly
|
|
|
|
2142E090000
|
heap default
|
page read and write
|
|
|
|
7FF5B15FF000
|
unkown image
|
page readonly
|
|
|
|
C7E457F000
|
stack
|
page read and write
|
|
|
|
1D400D40000
|
unkown image
|
page read and write
|
|
|
|
7FF57047D000
|
unkown image
|
page readonly
|
|
|
|
1D3FFF60000
|
unkown image
|
page read and write
|
|
|
|
1F52AB08000
|
unkown
|
page read and write
|
|
|
|
1D400963000
|
unkown
|
page read and write
|
|
|
|
5369B5B000
|
unkown
|
page read and write
|
|
|
|
7FF51BB41000
|
unkown image
|
page readonly
|
|
|
|
7DF5297B0000
|
unkown image
|
page readonly
|
|
|
|
2BE282A0000
|
unkown
|
page read and write
|
|
|
|
294B6780000
|
unkown image
|
page readonly
|
|
|
|
9764AFE000
|
stack
|
page read and write
|
|
|
|
2BE27AB0000
|
heap private
|
page read and write
|
|
|
|
7FF53DA6D000
|
unkown image
|
page readonly
|
|
|
|
7FF57040F000
|
unkown image
|
page readonly
|
|
|
|
7FF5704E4000
|
unkown image
|
page readonly
|
|
|
|
7DF563DC0000
|
unkown image
|
page readonly
|
|
|
|
1D400988000
|
unkown
|
page read and write
|
|
|
|
294B628B000
|
unkown
|
page read and write
|
|
|
|
C183FFF000
|
stack
|
page read and write
|
|
|
|
2BE27AA0000
|
unkown image
|
page read and write
|
|
|
|
1D400650000
|
unkown image
|
page readonly
|
|
|
|
1F94FC31000
|
unkown
|
page read and write
|
|
|
|
2BE282A0000
|
unkown
|
page read and write
|
|
|
|
7FF53DA69000
|
unkown image
|
page readonly
|
|
|
|
7FF51B7D5000
|
unkown image
|
page readonly
|
|
|
|
82B4FFC000
|
stack
|
page read and write
|
|
|
|
7FF53DB44000
|
unkown image
|
page readonly
|
|
|
|
1D4002D0000
|
unkown image
|
page readonly
|
|
|
|
1F94FC4B000
|
unkown
|
page read and write
|
|
|
|
2142E302000
|
unkown
|
page read and write
|
|
|
|
7DF595E40000
|
unkown image
|
page readonly
|
|
|
|
24DAB077000
|
unkown
|
page read and write
|
|
|
|
2BE28190000
|
unkown image
|
page readonly
|
|
|
|
1F52AA5E000
|
unkown
|
page read and write
|
|
|
|
294B6213000
|
unkown
|
page read and write
|
|
|
|
168B6780000
|
unkown image
|
page readonly
|
|
|
|
2BE282A0000
|
unkown
|
page read and write
|
|
|
|
7FF57042E000
|
unkown image
|
page readonly
|
|
|
|
7FF570501000
|
unkown image
|
page readonly
|
|
|
|
168B6271000
|
unkown
|
page read and write
|
|
|
|
1D400E02000
|
unkown
|
page read and write
|
|
|
|
7FF5704EA000
|
unkown image
|
page readonly
|
|
|
|
1D3FFF80000
|
unkown image
|
page readonly
|
|
|
|
7FF59AE43000
|
unkown image
|
page readonly
|
|
|
|
7FF51B12B000
|
unkown image
|
page readonly
|
|
|
|
1F94FB60000
|
unkown image
|
page read and write
|
|
|
|
1F52A9A0000
|
unkown image
|
page readonly
|
|
|
|
2142E262000
|
unkown
|
page read and write
|
|
|
|
1D40098A000
|
unkown
|
page read and write
|
|
|
|
168B626C000
|
unkown
|
page read and write
|
|
|
|
7FF5B163F000
|
unkown image
|
page readonly
|
|
|
|
19FA1000000
|
heap default
|
page read and write
|
|
|
|
7FF584084000
|
unkown image
|
page readonly
|
|
|
|
249B5CCC000
|
unkown
|
page read and write
|
|
|
|
7FF59AF21000
|
unkown image
|
page readonly
|
|
|
|
7DF54B7C0000
|
unkown image
|
page readonly
|
|
|
|
1D400988000
|
unkown
|
page read and write
|
|
|
|
1D400991000
|
unkown
|
page read and write
|
|
|
|
C36E17F000
|
stack
|
page read and write
|
|
|
|
7FF59AD75000
|
unkown image
|
page readonly
|
|
|
|
1D40099B000
|
unkown
|
page read and write
|
|
|
|
82B487C000
|
stack
|
page read and write
|
|
|
|
7FF59ADA1000
|
unkown image
|
page readonly
|
|
|
|
7FF584780000
|
unkown image
|
page readonly
|
|
|
|
1F52AA00000
|
unkown
|
page read and write
|
|
|
|
7FF584787000
|
unkown image
|
page readonly
|
|
|
|
7DF5297D0000
|
unkown image
|
page readonly
|
|
|
|
24DAAF70000
|
unkown image
|
page readonly
|
|
|
|
7FF570185000
|
unkown image
|
page readonly
|
|
|
|
7FF556141000
|
unkown image
|
page readonly
|
|
|
|
7FF587F7C000
|
unkown image
|
page readonly
|
|
|
|
1D4009A5000
|
unkown
|
page read and write
|
|
|
|
1D400982000
|
unkown
|
page read and write
|
|
|
|
24DAAF00000
|
heap private
|
page read and write
|
|
|
|
7DF5924D0000
|
unkown image
|
page readonly
|
|
|
|
7FF51B103000
|
unkown image
|
page readonly
|
|
|
|
24DAAF10000
|
unkown image
|
page readonly
|
|
|
|
7FF555FDE000
|
unkown image
|
page readonly
|
|
|
|
7DF595E30000
|
unkown image
|
page readonly
|
|
|
|
2BE27C3D000
|
unkown
|
page read and write
|
|
|
|
7DF5297C0000
|
unkown image
|
page readonly
|
|
|
|
97650FB000
|
stack
|
page read and write
|
|
|
|
7DF5BF520000
|
unkown image
|
page readonly
|
|
|
|
7FF51B9FF000
|
unkown image
|
page readonly
|
|
|
|
7FF5847D7000
|
unkown image
|
page readonly
|
|
|
|
1D40099D000
|
unkown
|
page read and write
|
|
|
|
7FF5B894D000
|
unkown image
|
page readonly
|
|
|
|
7FF59ACF0000
|
unkown image
|
page readonly
|
|
|
|
7FF59AF1A000
|
unkown image
|
page readonly
|
|
|
|
294B623D000
|
unkown
|
page read and write
|
|
|
|
7FF51BA5F000
|
unkown image
|
page readonly
|
|
|
|
7FF56FFE7000
|
unkown image
|
page readonly
|
|
|
|
1D4009A0000
|
unkown
|
page read and write
|
|
|
|
7FF59ABA5000
|
unkown image
|
page readonly
|
|
|
|
7FF584773000
|
unkown image
|
page readonly
|
|
|
|
7FF588091000
|
unkown image
|
page readonly
|
|
|
|
7FF51B4CC000
|
unkown image
|
page readonly
|
|
|
|
7FF5B181D000
|
unkown image
|
page readonly
|
|
|
|
1D400049000
|
unkown
|
page read and write
|
|
|
|
1D40098D000
|
unkown
|
page read and write
|
|
|
|
294B624A000
|
unkown
|
page read and write
|
|
|
|
1F94FC29000
|
unkown
|
page read and write
|
|
|
|
7DF5C6640000
|
unkown image
|
page readonly
|
|
|
|
1D400070000
|
unkown
|
page read and write
|
|
|
|
C1841FE000
|
stack
|
page read and write
|
|
|
|
1F94FC67000
|
unkown
|
page read and write
|
|
|
|
7FF51B9D1000
|
unkown image
|
page readonly
|
|
|
|
7FF51BA73000
|
unkown image
|
page readonly
|
|
|
|
7FF5881BA000
|
unkown image
|
page readonly
|
|
|
|
1D400E02000
|
unkown
|
page read and write
|
|
|
|
7FF5B188A000
|
unkown image
|
page readonly
|
|
|
|
1F94FED0000
|
unkown image
|
page readonly
|
|
|
|
249B5C13000
|
unkown
|
page read and write
|
|
|
|
7FF59ACA6000
|
unkown image
|
page readonly
|
|
|
|
1D40095E000
|
unkown
|
page read and write
|
|
|
|
7FF51BA01000
|
unkown image
|
page readonly
|
|
|
|
1D4000F8000
|
unkown
|
page read and write
|
|
|
|
1D40004D000
|
unkown
|
page read and write
|
|
|
|
7FF53DA80000
|
unkown image
|
page readonly
|
|
|
|
1D4009AA000
|
unkown
|
page read and write
|
|
|
|
19FA0F60000
|
unkown image
|
page readonly
|
|
|
|
7FF51B1B2000
|
unkown image
|
page readonly
|
|
|
|
7FF587D09000
|
unkown image
|
page readonly
|
|
|
|
1D400054000
|
unkown
|
page read and write
|
|
|
|
168B6A02000
|
unkown
|
page read and write
|
|
|
|
7DF5297D0000
|
unkown image
|
page readonly
|
|
|
|
7FF59AF21000
|
unkown image
|
page readonly
|
|
|
|
7FF51BB29000
|
unkown image
|
page readonly
|
|
|
|
7FF587F46000
|
unkown image
|
page readonly
|
|
|
|
294B622A000
|
unkown
|
page read and write
|
|
|
|
7DF595E20000
|
unkown image
|
page readonly
|
|
|
|
1F94FC61000
|
unkown
|
page read and write
|
|
|
|
1F94FC5F000
|
unkown
|
page read and write
|
|
|
|
7FF53DABE000
|
unkown image
|
page readonly
|
|
|
|
294B6400000
|
unkown image
|
page readonly
|
|
|
|
7FF5847AB000
|
unkown image
|
page readonly
|
|
|
|
2142E190000
|
unkown
|
page read and write
|
|
|
|
168B6790000
|
unkown image
|
page readonly
|
|
|
|
32BBE7E000
|
stack
|
page read and write
|
|
|
|
7FF5B1771000
|
unkown image
|
page readonly
|
|
|
|
9764CFD000
|
stack
|
page read and write
|
|
|
|
7FF59A312000
|
unkown image
|
page readonly
|
|
|
|
7DF5924C0000
|
unkown image
|
page readonly
|
|
|
|
7DF5A8B92000
|
unkown image
|
page readonly
|
|
|
|
1D400989000
|
unkown
|
page read and write
|
|
|
|
7FF51B15D000
|
unkown image
|
page readonly
|
|
|
|
7FF51B631000
|
unkown image
|
page readonly
|
|
|
|
19FA1012000
|
unkown
|
page read and write
|
|
|
|
7FF556049000
|
unkown image
|
page readonly
|
|
|
|
1F94FBD0000
|
heap default
|
page read and write
|
|
|
|
7FF51B9D5000
|
unkown image
|
page readonly
|
|
|
|
7DF5C6632000
|
unkown image
|
page readonly
|
|
|
|
1D400F02000
|
unkown
|
page read and write
|
|
|
|
7FF51B1D1000
|
unkown image
|
page readonly
|
|
|
|
2BE28000000
|
unkown image
|
page readonly
|
|
|
|
2BE27D02000
|
unkown
|
page read and write
|
|
|
|
1F52A950000
|
unkown image
|
page read and write
|
|
|
|
249B6250000
|
unkown image
|
page readonly
|
|
|
|
24DAB4D0000
|
unkown image
|
page readonly
|
|
|
|
1F52ACD0000
|
unkown image
|
page readonly
|
|
|
|
7FF5B1797000
|
unkown image
|
page readonly
|
|
|
|
294B6160000
|
unkown
|
page read and write
|
|
|
|
7FF5558D9000
|
unkown image
|
page readonly
|
|
|
|
1D400978000
|
unkown
|
page read and write
|
|
|
|
1D400986000
|
unkown
|
page read and write
|
|
|
|
1F94FC64000
|
unkown
|
page read and write
|
|
|
|
82B4B7C000
|
stack
|
page read and write
|
|
|
|
19FA0F20000
|
unkown image
|
page read and write
|
|
|
|
7FF5B89A2000
|
unkown image
|
page readonly
|
|
|
|
1F94FC46000
|
unkown
|
page read and write
|
|
|
|
1D400988000
|
unkown
|
page read and write
|
|
|
|
7FF59AF0A000
|
unkown image
|
page readonly
|
|
|
|
1D4007F0000
|
unkown
|
page read and write
|
|
|
|
2142E780000
|
unkown image
|
page readonly
|
|
|
|
1F52AB13000
|
unkown
|
page read and write
|
|
|
|
7FF556067000
|
unkown image
|
page readonly
|
|
|
|
19FA0FF0000
|
unkown image
|
page read and write
|
|
|
|
7FF5880AE000
|
unkown image
|
page readonly
|
|
|
|
7FF5B17AA000
|
unkown image
|
page readonly
|
|
|
|
C36E3FD000
|
stack
|
page read and write
|
|
|
|
9764C7C000
|
stack
|
page read and write
|
|
|
|
7FF53DA44000
|
unkown image
|
page readonly
|
|
|
|
7FF5B7E1C000
|
unkown image
|
page readonly
|
|
|
|
7FF588112000
|
unkown image
|
page readonly
|
|
|
|
1D400988000
|
unkown
|
page read and write
|
|
|
|
7DF54B7D2000
|
unkown image
|
page readonly
|
|
|
|
1D400984000
|
unkown
|
page read and write
|
|
|
|
7FF58813D000
|
unkown image
|
page readonly
|
|
|
|
19FA1560000
|
unkown image
|
page readonly
|
|
|
|
1D40099D000
|
unkown
|
page read and write
|
|
|
|
1D3FFF80000
|
unkown image
|
page readonly
|
|
|
|
1D4009C6000
|
unkown
|
page read and write
|
|
|
|
7FF584797000
|
unkown image
|
page readonly
|
|
|
|
7DF528E42000
|
unkown image
|
page readonly
|
|
|
|
7FF53DA87000
|
unkown image
|
page readonly
|
|
|
|
1D400047000
|
unkown
|
page read and write
|
|
|
|
1D40095D000
|
unkown
|
page read and write
|
|
|
|
7FF56F8F8000
|
unkown image
|
page readonly
|
|
|
|
1F52AA51000
|
unkown
|
page read and write
|
|
|
|
7FF5847DA000
|
unkown image
|
page readonly
|
|
|
|
7FF5B189A000
|
unkown image
|
page readonly
|
|
|
|
7FF53DB4A000
|
unkown image
|
page readonly
|
|
|
|
1D40090F000
|
unkown
|
page read and write
|
|
|
|
294B625A000
|
unkown
|
page read and write
|
|
|
|
7FF5B8674000
|
unkown image
|
page readonly
|
|
|
|
7DF5924C0000
|
unkown image
|
page readonly
|
|
|
|
1D4000B2000
|
unkown
|
page read and write
|
|
|
|
294B6790000
|
unkown image
|
page readonly
|
|
|
|
1D40095B000
|
unkown
|
page read and write
|
|
|
|
C449EFE000
|
stack
|
page read and write
|
|
|
|
7FF51B9AB000
|
unkown image
|
page readonly
|
|
|
|
168B6010000
|
heap private
|
page read and write
|
|
|
|
7DF563DA0000
|
unkown image
|
page readonly
|
|
|
|
82B4CFC000
|
stack
|
page read and write
|
|
|
|
1D40099F000
|
unkown
|
page read and write
|
|
|
|
32BC07E000
|
stack
|
page read and write
|
|
|
|
1D400989000
|
unkown
|
page read and write
|
|
|
|
7FF53DA83000
|
unkown image
|
page readonly
|
|
|
|
7FF51B13E000
|
unkown image
|
page readonly
|
|
|
|
7DF5297B2000
|
unkown image
|
page readonly
|
|
|
|
7FF583C7E000
|
unkown image
|
page readonly
|
|
|
|
7DF5A8BA0000
|
unkown image
|
page readonly
|
|
|
|
7FF59AF11000
|
unkown image
|
page readonly
|
|
|
|
7DF5297B0000
|
unkown image
|
page readonly
|
|
|
|
1D400963000
|
unkown
|
page read and write
|
|
|
|
1D400965000
|
unkown
|
page read and write
|
|
|
|
7FF59AD0B000
|
unkown image
|
page readonly
|
|
|
|
1D4009AC000
|
unkown
|
page read and write
|
|
|
|
7FF5B17AD000
|
unkown image
|
page readonly
|
|
|
|
7FF5704D9000
|
unkown image
|
page readonly
|
|
|
|
7FF53DB61000
|
unkown image
|
page readonly
|
|
|
|
9764A7B000
|
unkown
|
page read and write
|
|
|
|
1D400988000
|
unkown
|
page read and write
|
|
|
|
1F52AA3C000
|
unkown
|
page read and write
|
|
|
|
7E00193E5000
|
unkown image
|
page readonly
|
|
|
|
7FF51BAAE000
|
unkown image
|
page readonly
|
|
|
|
1D400978000
|
unkown
|
page read and write
|
|
|
|
7FF53CF7A000
|
unkown image
|
page readonly
|
|
|
|
168B6202000
|
unkown
|
page read and write
|
|
|
|
7FF5880CD000
|
unkown image
|
page readonly
|
|
There are 1099 hidden memdumps, click here to show them.