|
8B0000
|
direct allocation
|
page execute and read and write
|
 |
|
|
| Name: |
00000000.00000003.259020968.00000000008B0000.00000040.00001000.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
direct allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
8B0000
|
| Size: |
221184
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Yara detected Amadeys stealer DLL |
Stealing of Sensitive Information |
|
|
|
401000
|
remote allocation
|
page execute read
|
|
|
|
| Name: |
00000005.00000002.263489058.0000000000401000.00000020.00000400.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
remote allocation
|
| Protect: |
page execute read
|
| Base address: |
401000
|
| Size: |
172032
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Yara detected Amadeys stealer DLL |
Stealing of Sensitive Information |
|
|
|
4B7000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261443990.00000000004B7000.00000004.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
4B7000
|
| Size: |
225280
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Yara detected Amadeys stealer DLL |
Stealing of Sensitive Information |
|
| Binary contains paths to debug symbols |
Compliance, System Summary |
|
|
|
4B7000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.274067183.00000000004B7000.00000004.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
4B7000
|
| Size: |
225280
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Yara detected Amadeys stealer DLL |
Stealing of Sensitive Information |
|
|
|
4B7000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260767513.00000000004B7000.00000004.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
4B7000
|
| Size: |
225280
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Yara detected Amadeys stealer DLL |
Stealing of Sensitive Information |
|
|
|
254000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000007.00000000.262572320.0000000000254000.00000002.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
254000
|
| Size: |
16384
|
|
|
240000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000007.00000000.262868382.0000000000240000.00000002.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
240000
|
| Size: |
4096
|
|
|
248C6770000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506544238.00000248C6770000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
248C6770000
|
| Size: |
4096
|
|
|
241000
|
unkown
|
page execute read
|
|
|
|
| Name: |
00000007.00000002.263709457.0000000000241000.00000020.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
241000
|
| Size: |
69632
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Binary contains paths to debug symbols |
Compliance, System Summary |
|
|
|
47AE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.263855300.00000000047AE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
47AE000
|
| Size: |
8192
|
|
|
A51087E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288235911.000000A51087E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A51087E000
|
| Size: |
8192
|
|
|
19C9E479000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506699854.0000019C9E479000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E479000
|
| Size: |
4096
|
|
|
2A05006D000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000003.294455561.000002A05006D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A05006D000
|
| Size: |
32768
|
|
|
1B34BD20000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288319992.000001B34BD20000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BD20000
|
| Size: |
4096
|
|
|
CC2C8FF000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506504658.000000CC2C8FF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CC2C8FF000
|
| Size: |
4096
|
|
|
19C9E493000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506721556.0000019C9E493000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E493000
|
| Size: |
40960
|
|
|
4EE000
|
unkown
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000000.260820654.00000000004EE000.00000040.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page execute and read and write
|
| Base address: |
4EE000
|
| Size: |
8192
|
|
|
19C9ED02000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506828987.0000019C9ED02000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9ED02000
|
| Size: |
32768
|
|
|
19CA3890000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506945378.0000019CA3890000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3890000
|
| Size: |
4096
|
|
|
19CA3C3F000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507013400.0000019CA3C3F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3C3F000
|
| Size: |
49152
|
|
|
1E237E02000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506706178.000001E237E02000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1E237E02000
|
| Size: |
4096
|
|
|
19CA3B90000
|
remote allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.325176920.0000019CA3B90000.00000004.00000400.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
remote allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3B90000
|
| Size: |
4096
|
|
|
19CA3CFE000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507156593.0000019CA3CFE000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3CFE000
|
| Size: |
4096
|
|
|
248C68C7000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506698698.00000248C68C7000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C68C7000
|
| Size: |
8192
|
|
|
920000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260900825.0000000000920000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
920000
|
| Size: |
32768
|
|
|
53B000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000002.274216902.000000000053B000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
53B000
|
| Size: |
102400
|
|
|
1B34BE7B000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000003.288005916.000001B34BE7B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BE7B000
|
| Size: |
40960
|
|
|
19C9F500000
|
trusted library section
|
page readonly
|
|
|
|
| Name: |
00000011.00000002.506894727.0000019C9F500000.00000002.08000000.00040000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library section
|
| Protect: |
page readonly
|
| Base address: |
19C9F500000
|
| Size: |
65536
|
|
|
19C9E360000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506589170.0000019C9E360000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E360000
|
| Size: |
4096
|
|
|
1551B66E000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317438222.000001551B66E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B66E000
|
| Size: |
40960
|
|
|
248C66D0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506518054.00000248C66D0000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C66D0000
|
| Size: |
4096
|
|
|
252000
|
unkown
|
page write copy
|
|
|
|
| Name: |
00000007.00000000.262889008.0000000000252000.00000008.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page write copy
|
| Base address: |
252000
|
| Size: |
4096
|
|
|
43FC000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.263836169.00000000043FC000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
43FC000
|
| Size: |
16384
|
|
|
36524FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317319428.00000036524FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
36524FE000
|
| Size: |
8192
|
|
|
4F0000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260825510.00000000004F0000.00000004.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
4F0000
|
| Size: |
4096
|
|
|
2A04FE20000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506539988.000002A04FE20000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A04FE20000
|
| Size: |
8192
|
|
|
1551B642000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317402919.000001551B642000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B642000
|
| Size: |
16384
|
|
|
19C9EB30000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506793589.0000019C9EB30000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19C9EB30000
|
| Size: |
4096
|
|
|
1551B67B000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317445584.000001551B67B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B67B000
|
| Size: |
4096
|
|
|
19C9F510000
|
trusted library section
|
page readonly
|
|
|
|
| Name: |
00000011.00000002.506904376.0000019C9F510000.00000002.08000000.00040000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library section
|
| Protect: |
page readonly
|
| Base address: |
19C9F510000
|
| Size: |
65536
|
|
|
4F1000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000002.274151672.00000000004F1000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
4F1000
|
| Size: |
282624
|
|
|
1E237651000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506594039.000001E237651000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E237651000
|
| Size: |
69632
|
|
|
1551B657000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317113856.000001551B657000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B657000
|
| Size: |
4096
|
|
|
3E31FF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506496857.00000003E31FF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E31FF000
|
| Size: |
4096
|
|
|
248C6813000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506575686.00000248C6813000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C6813000
|
| Size: |
86016
|
|
|
1E237622000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506536968.000001E237622000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E237622000
|
| Size: |
20480
|
|
|
6BC0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263840231.0000000006BC0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6BC0000
|
| Size: |
16384
|
|
|
248C66E0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506532227.00000248C66E0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C66E0000
|
| Size: |
4096
|
|
|
30000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.273953225.0000000000030000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
30000
|
| Size: |
4096
|
|
|
CC2C2FF000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506449438.000000CC2C2FF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CC2C2FF000
|
| Size: |
4096
|
|
|
19C9E48E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506717575.0000019C9E48E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E48E000
|
| Size: |
4096
|
|
|
53B000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.261567065.000000000053B000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
53B000
|
| Size: |
102400
|
|
|
3E2C7C000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506442286.00000003E2C7C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E2C7C000
|
| Size: |
16384
|
|
|
19CA3A3E000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.324296430.0000019CA3A3E000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3A3E000
|
| Size: |
73728
|
|
|
248C6867000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506638821.00000248C6867000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C6867000
|
| Size: |
20480
|
|
|
186F2750000
|
remote allocation
|
page read and write
|
|
|
|
| Name: |
00000010.00000003.297917767.00000186F2750000.00000004.00000400.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
free memory
|
| Regiontype: |
remote allocation
|
| Protect: |
page read and write
|
| Base address: |
186F2750000
|
| Size: |
4096
|
|
|
19CA3C55000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507025233.0000019CA3C55000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3C55000
|
| Size: |
49152
|
|
|
75C000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.274240077.000000000075C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
75C000
|
| Size: |
16384
|
|
|
30000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260612700.0000000000030000.00000004.00000001.00040000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
30000
|
| Size: |
4096
|
|
|
3E3AFF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506585566.00000003E3AFF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E3AFF000
|
| Size: |
4096
|
|
|
19C9E42A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506642172.0000019C9E42A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E42A000
|
| Size: |
69632
|
|
|
1060000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263666140.0000000001060000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1060000
|
| Size: |
20480
|
|
|
1E2375D0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506483310.000001E2375D0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E2375D0000
|
| Size: |
8192
|
|
|
1551BE02000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317471685.000001551BE02000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1551BE02000
|
| Size: |
4096
|
|
|
1551B613000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317368258.000001551B613000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B613000
|
| Size: |
73728
|
|
|
4F1000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.261512064.00000000004F1000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
4F1000
|
| Size: |
282624
|
|
|
19CA3C86000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507047739.0000019CA3C86000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3C86000
|
| Size: |
4096
|
|
|
254000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000007.00000002.263725658.0000000000254000.00000002.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
254000
|
| Size: |
16384
|
|
|
1551B65A000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317096617.000001551B65A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B65A000
|
| Size: |
12288
|
|
|
1F6F67E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506462036.0000001F6F67E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1F6F67E000
|
| Size: |
8192
|
|
|
1B34BF00000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288408843.000001B34BF00000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BF00000
|
| Size: |
4096
|
|
|
19CA3A54000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.324362441.0000019CA3A54000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3A54000
|
| Size: |
4096
|
|
|
19CA3B60000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506976940.0000019CA3B60000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3B60000
|
| Size: |
4096
|
|
|
241000
|
unkown
|
page execute read
|
|
|
|
| Name: |
00000007.00000000.263175636.0000000000241000.00000020.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
241000
|
| Size: |
69632
|
|
|
252000
|
unkown
|
page write copy
|
|
|
|
| Name: |
00000007.00000000.263194935.0000000000252000.00000008.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page write copy
|
| Base address: |
252000
|
| Size: |
4096
|
|
|
170000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260644296.0000000000170000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
170000
|
| Size: |
20480
|
|
|
A510E7E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288314696.000000A510E7E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A510E7E000
|
| Size: |
8192
|
|
|
19CA3A30000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.324267701.0000019CA3A30000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3A30000
|
| Size: |
28672
|
|
|
3E34FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506539039.00000003E34FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E34FE000
|
| Size: |
8192
|
|
|
8D0000
|
remote allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261628803.00000000008D0000.00000004.00000400.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
remote allocation
|
| Protect: |
page read and write
|
| Base address: |
8D0000
|
| Size: |
4096
|
|
|
19CA3C1C000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506998080.0000019CA3C1C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3C1C000
|
| Size: |
49152
|
|
|
19CA3CFC000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507151027.0000019CA3CFC000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3CFC000
|
| Size: |
4096
|
|
|
241000
|
unkown
|
page execute read
|
|
|
|
| Name: |
00000007.00000000.262549061.0000000000241000.00000020.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
241000
|
| Size: |
69632
|
|
|
397207F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506465909.000000397207F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
397207F000
|
| Size: |
4096
|
|
|
252000
|
unkown
|
page write copy
|
|
|
|
| Name: |
00000007.00000000.262560929.0000000000252000.00000008.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page write copy
|
| Base address: |
252000
|
| Size: |
4096
|
|
|
19CA3CDD000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507114057.0000019CA3CDD000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3CDD000
|
| Size: |
4096
|
|
|
19CA3A30000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.328771886.0000019CA3A30000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3A30000
|
| Size: |
4096
|
|
|
186F2750000
|
remote allocation
|
page read and write
|
|
|
|
| Name: |
00000010.00000003.297911532.00000186F2750000.00000004.00000400.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
free memory
|
| Regiontype: |
remote allocation
|
| Protect: |
page read and write
|
| Base address: |
186F2750000
|
| Size: |
4096
|
|
|
19CA3A60000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.324412379.0000019CA3A60000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3A60000
|
| Size: |
8192
|
|
|
1E237600000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506488665.000001E237600000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E237600000
|
| Size: |
4096
|
|
|
1F6F5FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506450101.0000001F6F5FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1F6F5FE000
|
| Size: |
8192
|
|
|
186F2025000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506599517.00000186F2025000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
186F2025000
|
| Size: |
16384
|
|
|
4EE000
|
unkown
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000002.274139764.00000000004EE000.00000040.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page execute and read and write
|
| Base address: |
4EE000
|
| Size: |
8192
|
|
|
1B34C602000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288427997.000001B34C602000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1B34C602000
|
| Size: |
4096
|
|
|
3971A7B000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506426725.0000003971A7B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3971A7B000
|
| Size: |
20480
|
|
|
186F2802000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506661614.00000186F2802000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
186F2802000
|
| Size: |
4096
|
|
|
186F1F50000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506525112.00000186F1F50000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
186F1F50000
|
| Size: |
4096
|
|
|
99C000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263570589.000000000099C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
99C000
|
| Size: |
16384
|
|
|
4F1000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.260829941.00000000004F1000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
4F1000
|
| Size: |
282624
|
|
|
401000
|
unkown
|
page execute read
|
|
|
|
| Name: |
00000000.00000000.236639915.0000000000401000.00000020.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
401000
|
| Size: |
745472
|
|
|
A5108FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288242063.000000A5108FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A5108FE000
|
| Size: |
8192
|
|
|
2A050113000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506721041.000002A050113000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A050113000
|
| Size: |
4096
|
|
|
F25000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263655739.0000000000F25000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
F25000
|
| Size: |
12288
|
|
|
159000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261315458.0000000000159000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
159000
|
| Size: |
20480
|
|
|
1E237713000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506675996.000001E237713000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E237713000
|
| Size: |
20480
|
|
|
150000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261303243.0000000000150000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
150000
|
| Size: |
12288
|
|
|
3651F0B000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317246295.0000003651F0B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3651F0B000
|
| Size: |
20480
|
|
|
1551B678000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317017215.000001551B678000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B678000
|
| Size: |
45056
|
|
|
2A050000000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506553982.000002A050000000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A050000000
|
| Size: |
4096
|
|
|
401000
|
unkown
|
page execute read
|
|
|
|
| Name: |
00000000.00000000.260664360.0000000000401000.00000020.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
401000
|
| Size: |
745472
|
|
|
19C9E476000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506695261.0000019C9E476000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E476000
|
| Size: |
8192
|
|
|
2A050602000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506726027.000002A050602000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2A050602000
|
| Size: |
4096
|
|
|
186F1FF0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506550549.00000186F1FF0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
186F1FF0000
|
| Size: |
4096
|
|
|
1551B663000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317067556.000001551B663000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B663000
|
| Size: |
4096
|
|
|
248C6913000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506767899.00000248C6913000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C6913000
|
| Size: |
4096
|
|
|
2A04FDC0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506533749.000002A04FDC0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A04FDC0000
|
| Size: |
4096
|
|
|
19C9E48C000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506713911.0000019C9E48C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E48C000
|
| Size: |
4096
|
|
|
241000
|
unkown
|
page execute read
|
|
|
|
| Name: |
00000007.00000000.262232010.0000000000241000.00000020.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
241000
|
| Size: |
69632
|
|
|
19C9E470000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506690413.0000019C9E470000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E470000
|
| Size: |
4096
|
|
|
248C6888000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506668671.00000248C6888000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C6888000
|
| Size: |
4096
|
|
|
434000
|
remote allocation
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263531333.0000000000434000.00000004.00000400.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
remote allocation
|
| Protect: |
page read and write
|
| Base address: |
434000
|
| Size: |
8192
|
|
|
495A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.263896042.000000000495A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
495A000
|
| Size: |
81920
|
|
|
102E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263660543.000000000102E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
102E000
|
| Size: |
8192
|
|
|
738E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263887613.000000000738E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
738E000
|
| Size: |
8192
|
|
|
4EE000
|
unkown
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000000.261495476.00000000004EE000.00000040.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page execute and read and write
|
| Base address: |
4EE000
|
| Size: |
8192
|
|
|
1551B5C0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317353523.000001551B5C0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1551B5C0000
|
| Size: |
4096
|
|
|
13E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.273969120.000000000013E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
13E000
|
| Size: |
8192
|
|
|
1551B685000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317453896.000001551B685000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B685000
|
| Size: |
32768
|
|
|
AA9827D000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506480465.000000AA9827D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AA9827D000
|
| Size: |
12288
|
|
|
1B34BD30000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288325257.000001B34BD30000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BD30000
|
| Size: |
4096
|
|
|
248C7113000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506784868.00000248C7113000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C7113000
|
| Size: |
28672
|
|
|
1551B450000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317337808.000001551B450000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B450000
|
| Size: |
4096
|
|
|
1B34BF08000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288418328.000001B34BF08000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BF08000
|
| Size: |
24576
|
|
|
19C9E4FB000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506770695.0000019C9E4FB000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E4FB000
|
| Size: |
24576
|
|
|
75C000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261609534.000000000075C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
75C000
|
| Size: |
16384
|
|
|
1F6F77E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506476108.0000001F6F77E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1F6F77E000
|
| Size: |
8192
|
|
|
248C683E000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506611469.00000248C683E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C683E000
|
| Size: |
155648
|
|
|
19CA3920000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506956074.0000019CA3920000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3920000
|
| Size: |
4096
|
|
|
1B34BE3C000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288369931.000001B34BE3C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BE3C000
|
| Size: |
81920
|
|
|
1F6FBFD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506517591.0000001F6FBFD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1F6FBFD000
|
| Size: |
12288
|
|
|
2A050002000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506559584.000002A050002000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A050002000
|
| Size: |
65536
|
|
|
186F2059000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506641849.00000186F2059000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
186F2059000
|
| Size: |
49152
|
|
|
240000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000007.00000000.262212637.0000000000240000.00000002.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
240000
|
| Size: |
4096
|
|
|
9D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.273959210.000000000009D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9D000
|
| Size: |
12288
|
|
|
1551B626000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317379385.000001551B626000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B626000
|
| Size: |
8192
|
|
|
AA9847E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506494759.000000AA9847E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AA9847E000
|
| Size: |
8192
|
|
|
2A050013000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506575536.000002A050013000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A050013000
|
| Size: |
86016
|
|
|
1B34BE5E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000003.288037041.000001B34BE5E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BE5E000
|
| Size: |
12288
|
|
|
4F0000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261503870.00000000004F0000.00000004.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
4F0000
|
| Size: |
4096
|
|
|
1E237602000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506494158.000001E237602000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E237602000
|
| Size: |
65536
|
|
|
19C9F890000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506942213.0000019C9F890000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19C9F890000
|
| Size: |
4096
|
|
|
1BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261341362.00000000001BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1BE000
|
| Size: |
8192
|
|
|
170000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.273984745.0000000000170000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
170000
|
| Size: |
20480
|
|
|
186F2750000
|
remote allocation
|
page read and write
|
|
|
|
| Name: |
00000010.00000003.297923811.00000186F2750000.00000004.00000400.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
free memory
|
| Regiontype: |
remote allocation
|
| Protect: |
page read and write
|
| Base address: |
186F2750000
|
| Size: |
4096
|
|
|
248C68CA000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506705605.00000248C68CA000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C68CA000
|
| Size: |
110592
|
|
|
1551B65D000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317082263.000001551B65D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B65D000
|
| Size: |
12288
|
|
|
1B34BE5C000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288386709.000001B34BE5C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BE5C000
|
| Size: |
8192
|
|
|
1E237663000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506610765.000001E237663000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E237663000
|
| Size: |
12288
|
|
|
555000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000002.274232449.0000000000555000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
555000
|
| Size: |
45056
|
|
|
19C9F301000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506869419.0000019C9F301000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19C9F301000
|
| Size: |
4096
|
|
|
1E237560000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506471718.000001E237560000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E237560000
|
| Size: |
4096
|
|
|
F20000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263642530.0000000000F20000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
F20000
|
| Size: |
16384
|
|
|
CF9000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263578708.0000000000CF9000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CF9000
|
| Size: |
28672
|
|
|
CC2C5FB000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506478393.000000CC2C5FB000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CC2C5FB000
|
| Size: |
20480
|
|
|
2A04FDB0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506527343.000002A04FDB0000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A04FDB0000
|
| Size: |
4096
|
|
|
3E2FFA000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506474445.00000003E2FFA000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E2FFA000
|
| Size: |
24576
|
|
|
1E237613000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506518160.000001E237613000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E237613000
|
| Size: |
57344
|
|
|
19CA3B70000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506980605.0000019CA3B70000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3B70000
|
| Size: |
4096
|
|
|
19CA3C62000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507032484.0000019CA3C62000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3C62000
|
| Size: |
139264
|
|
|
19C9EB40000
|
trusted library section
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506797766.0000019C9EB40000.00000004.08000000.00040000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library section
|
| Protect: |
page read and write
|
| Base address: |
19C9EB40000
|
| Size: |
4096
|
|
|
19C9EC15000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506816215.0000019C9EC15000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9EC15000
|
| Size: |
4096
|
|
|
1E237667000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506615979.000001E237667000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E237667000
|
| Size: |
40960
|
|
|
537000
|
unkown
|
page write copy
|
|
|
|
| Name: |
00000000.00000000.236954933.0000000000537000.00000008.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page write copy
|
| Base address: |
537000
|
| Size: |
4096
|
|
|
254000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000007.00000000.262892986.0000000000254000.00000002.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
254000
|
| Size: |
16384
|
|
|
AA9817F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506473362.000000AA9817F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AA9817F000
|
| Size: |
4096
|
|
|
19CA38A0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506949000.0000019CA38A0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA38A0000
|
| Size: |
4096
|
|
|
AA9857E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506503236.000000AA9857E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AA9857E000
|
| Size: |
8192
|
|
|
3971D7B000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506440802.0000003971D7B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3971D7B000
|
| Size: |
20480
|
|
|
19C9E413000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506625563.0000019C9E413000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E413000
|
| Size: |
90112
|
|
|
9D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260620209.000000000009D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9D000
|
| Size: |
12288
|
|
|
150000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260634536.0000000000150000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
150000
|
| Size: |
12288
|
|
|
19C9EC00000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506807712.0000019C9EC00000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9EC00000
|
| Size: |
4096
|
|
|
1B34BE29000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288361097.000001B34BE29000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BE29000
|
| Size: |
73728
|
|
|
AA9867F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506511048.000000AA9867F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AA9867F000
|
| Size: |
4096
|
|
|
248C68B9000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506675351.00000248C68B9000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C68B9000
|
| Size: |
32768
|
|
|
4620000
|
remote allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000000.263220537.0000000004620000.00000004.00000400.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
remote allocation
|
| Protect: |
page read and write
|
| Base address: |
4620000
|
| Size: |
4096
|
|
|
8E9000
|
direct allocation
|
page execute and read and write
|
|
|
|
| Name: |
00000000.00000003.259048817.00000000008E9000.00000040.00001000.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
free memory
|
| Regiontype: |
direct allocation
|
| Protect: |
page execute and read and write
|
| Base address: |
8E9000
|
| Size: |
12288
|
|
|
1551B4C0000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317348191.000001551B4C0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B4C0000
|
| Size: |
8192
|
|
|
E3E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263587771.0000000000E3E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
E3E000
|
| Size: |
8192
|
|
|
734F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263877676.000000000734F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
734F000
|
| Size: |
4096
|
|
|
1F6F87E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506483996.0000001F6F87E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1F6F87E000
|
| Size: |
8192
|
|
|
1067000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263672931.0000000001067000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1067000
|
| Size: |
77824
|
|
|
19C9F4F0000
|
trusted library section
|
page readonly
|
|
|
|
| Name: |
00000011.00000002.506885464.0000019C9F4F0000.00000002.08000000.00040000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library section
|
| Protect: |
page readonly
|
| Base address: |
19C9F4F0000
|
| Size: |
65536
|
|
|
19C9F410000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506873470.0000019C9F410000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19C9F410000
|
| Size: |
4096
|
|
|
E1F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260915745.0000000000E1F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
E1F000
|
| Size: |
4096
|
|
|
555000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.237010618.0000000000555000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
555000
|
| Size: |
45056
|
|
|
42B000
|
remote allocation
|
page readonly
|
|
|
|
| Name: |
00000005.00000002.263517945.000000000042B000.00000002.00000400.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
remote allocation
|
| Protect: |
page readonly
|
| Base address: |
42B000
|
| Size: |
36864
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Binary contains paths to debug symbols |
Compliance, System Summary |
|
|
|
710F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263853636.000000000710F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
710F000
|
| Size: |
4096
|
|
|
1551B631000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.295457384.000001551B631000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B631000
|
| Size: |
40960
|
|
|
10CA000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263739561.00000000010CA000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
10CA000
|
| Size: |
57344
|
|
|
1551B659000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317101058.000001551B659000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B659000
|
| Size: |
4096
|
|
|
1E237700000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506645075.000001E237700000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E237700000
|
| Size: |
4096
|
|
|
19C9E43C000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506657084.0000019C9E43C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E43C000
|
| Size: |
102400
|
|
|
1551B661000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317071778.000001551B661000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B661000
|
| Size: |
8192
|
|
|
2A05005B000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506652324.000002A05005B000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A05005B000
|
| Size: |
49152
|
|
|
1551B67F000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317449116.000001551B67F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B67F000
|
| Size: |
16384
|
|
|
3E367F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506556568.00000003E367F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E367F000
|
| Size: |
4096
|
|
|
8A0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261623287.00000000008A0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
8A0000
|
| Size: |
4096
|
|
|
1551B629000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317384283.000001551B629000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B629000
|
| Size: |
61440
|
|
|
6630000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.263958628.0000000006630000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
6630000
|
| Size: |
8192
|
|
|
1B34BF13000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288423494.000001B34BF13000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BF13000
|
| Size: |
16384
|
|
|
4280000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.263738611.0000000004280000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4280000
|
| Size: |
4096
|
|
|
19C9ED18000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.330576845.0000019C9ED18000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9ED18000
|
| Size: |
4096
|
|
|
920000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.274248412.0000000000920000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
920000
|
| Size: |
32768
|
|
|
2A050073000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506683242.000002A050073000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A050073000
|
| Size: |
8192
|
|
|
240000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000007.00000000.263169004.0000000000240000.00000002.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
240000
|
| Size: |
4096
|
|
|
2A050087000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506697581.000002A050087000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A050087000
|
| Size: |
28672
|
|
|
4620000
|
remote allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000000.262588355.0000000004620000.00000004.00000400.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
remote allocation
|
| Protect: |
page read and write
|
| Base address: |
4620000
|
| Size: |
4096
|
|
|
C1F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.274263435.0000000000C1F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C1F000
|
| Size: |
4096
|
|
|
4CD0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.263953493.0000000004CD0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4CD0000
|
| Size: |
8192
|
|
|
19CA3A50000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506959270.0000019CA3A50000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3A50000
|
| Size: |
4096
|
|
|
C1F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261675473.0000000000C1F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C1F000
|
| Size: |
4096
|
|
|
E1F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.274266509.0000000000E1F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
E1F000
|
| Size: |
4096
|
|
|
92A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260905702.000000000092A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
92A000
|
| Size: |
57344
|
| Signature Hits |
Behavior Group |
Mitre Attack |
|
| Creates a DirectInput object (often for capturing keystrokes) |
Key, Mouse, Clipboard, Microphone and Screen Capturing |
|
|
|
186F1F60000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506532412.00000186F1F60000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
186F1F60000
|
| Size: |
4096
|
|
|
19C9F530000
|
trusted library section
|
page readonly
|
|
|
|
| Name: |
00000011.00000002.506923529.0000019C9F530000.00000002.08000000.00040000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library section
|
| Protect: |
page readonly
|
| Base address: |
19C9F530000
|
| Size: |
65536
|
|
|
1551B655000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317125409.000001551B655000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B655000
|
| Size: |
4096
|
|
|
19CA3B80000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.324399543.0000019CA3B80000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3B80000
|
| Size: |
4096
|
|
|
F0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.273964502.00000000000F0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F0000
|
| Size: |
4096
|
|
|
186F202A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506606096.00000186F202A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
186F202A000
|
| Size: |
73728
|
|
|
19C9E49E000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506746521.0000019C9E49E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E49E000
|
| Size: |
4096
|
|
|
248C7002000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506774522.00000248C7002000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C7002000
|
| Size: |
4096
|
|
|
A51059C000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288227768.000000A51059C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A51059C000
|
| Size: |
16384
|
|
|
1B34BE87000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288400014.000001B34BE87000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BE87000
|
| Size: |
8192
|
|
|
13E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260630175.000000000013E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
13E000
|
| Size: |
8192
|
|
|
248C6800000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506550887.00000248C6800000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C6800000
|
| Size: |
73728
|
|
|
3E2E78000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506454450.00000003E2E78000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E2E78000
|
| Size: |
32768
|
|
|
240000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000007.00000002.263704365.0000000000240000.00000002.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
240000
|
| Size: |
4096
|
|
|
19CA3B90000
|
remote allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.325171220.0000019CA3B90000.00000004.00000400.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
remote allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3B90000
|
| Size: |
4096
|
|
|
1B34BF02000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288412052.000001B34BF02000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BF02000
|
| Size: |
12288
|
|
|
537000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.274212001.0000000000537000.00000004.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
537000
|
| Size: |
4096
|
|
|
3E38FC000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506572852.00000003E38FC000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E38FC000
|
| Size: |
16384
|
|
|
400000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000002.273993829.0000000000400000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
400000
|
| Size: |
4096
|
|
|
254000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000007.00000000.263208033.0000000000254000.00000002.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
254000
|
| Size: |
16384
|
|
|
125E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263752212.000000000125E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
125E000
|
| Size: |
8192
|
|
|
19C9E525000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506789337.0000019C9E525000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E525000
|
| Size: |
8192
|
|
|
8D0000
|
remote allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260897949.00000000008D0000.00000004.00000400.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
remote allocation
|
| Protect: |
page read and write
|
| Base address: |
8D0000
|
| Size: |
4096
|
|
|
1551B63A000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317393913.000001551B63A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B63A000
|
| Size: |
4096
|
|
|
19C9E4AD000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506758075.0000019C9E4AD000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E4AD000
|
| Size: |
49152
|
|
|
186F2000000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506556769.00000186F2000000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
186F2000000
|
| Size: |
4096
|
|
|
EE0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263637355.0000000000EE0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
EE0000
|
| Size: |
4096
|
|
|
E1F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261685884.0000000000E1F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
E1F000
|
| Size: |
4096
|
|
|
1F6F47B000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506428155.0000001F6F47B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1F6F47B000
|
| Size: |
20480
|
|
|
248C6829000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506591170.00000248C6829000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C6829000
|
| Size: |
81920
|
|
|
401000
|
unkown
|
page execute read
|
|
|
|
| Name: |
00000000.00000002.273997068.0000000000401000.00000020.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
401000
|
| Size: |
745472
|
|
|
4620000
|
remote allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000000.262929092.0000000004620000.00000004.00000400.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
remote allocation
|
| Protect: |
page read and write
|
| Base address: |
4620000
|
| Size: |
4096
|
|
|
19CA3A38000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.324277312.0000019CA3A38000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3A38000
|
| Size: |
16384
|
|
|
240000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000007.00000000.262534616.0000000000240000.00000002.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
240000
|
| Size: |
4096
|
|
|
1089000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263690101.0000000001089000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1089000
|
| Size: |
49152
|
|
|
401000
|
unkown
|
page execute read
|
|
|
|
| Name: |
00000000.00000000.261363801.0000000000401000.00000020.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
401000
|
| Size: |
745472
|
|
|
186F1FC0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506540303.00000186F1FC0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
186F1FC0000
|
| Size: |
8192
|
|
|
19C9ED00000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506819816.0000019C9ED00000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9ED00000
|
| Size: |
4096
|
|
|
1B34BE51000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288381451.000001B34BE51000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BE51000
|
| Size: |
28672
|
|
|
AA97CFA000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506441396.000000AA97CFA000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AA97CFA000
|
| Size: |
24576
|
|
|
6BBE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263833636.0000000006BBE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6BBE000
|
| Size: |
8192
|
|
|
19C9ED59000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.331391968.0000019C9ED59000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9ED59000
|
| Size: |
4096
|
|
|
4F0000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.274146572.00000000004F0000.00000004.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
4F0000
|
| Size: |
4096
|
|
|
48EE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.263867773.00000000048EE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
48EE000
|
| Size: |
8192
|
|
|
A510B7B000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288265561.000000A510B7B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A510B7B000
|
| Size: |
20480
|
|
|
19C9ED13000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506835370.0000019C9ED13000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9ED13000
|
| Size: |
20480
|
|
|
19C9ED18000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.331380810.0000019C9ED18000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9ED18000
|
| Size: |
4096
|
|
|
1E237702000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506651301.000001E237702000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E237702000
|
| Size: |
49152
|
|
|
1B34BE64000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288390009.000001B34BE64000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BE64000
|
| Size: |
94208
|
|
|
19C9E4A0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506749981.0000019C9E4A0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E4A0000
|
| Size: |
49152
|
|
|
439000
|
remote allocation
|
page readonly
|
|
|
|
| Name: |
00000005.00000002.263536672.0000000000439000.00000002.00000400.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
remote allocation
|
| Protect: |
page readonly
|
| Base address: |
439000
|
| Size: |
12288
|
|
|
2A050102000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506711412.000002A050102000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A050102000
|
| Size: |
32768
|
|
|
19CA3C0F000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506992340.0000019CA3C0F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3C0F000
|
| Size: |
40960
|
|
|
4290000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.263746366.0000000004290000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
4290000
|
| Size: |
4096
|
|
|
400000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.236632728.0000000000400000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
400000
|
| Size: |
4096
|
|
|
1551B66A000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317434057.000001551B66A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B66A000
|
| Size: |
8192
|
|
|
3E35FA000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506545073.00000003E35FA000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E35FA000
|
| Size: |
24576
|
|
|
AA97F7F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506462138.000000AA97F7F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AA97F7F000
|
| Size: |
4096
|
|
|
1551B67C000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317031975.000001551B67C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B67C000
|
| Size: |
28672
|
|
|
1E237570000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506479277.000001E237570000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E237570000
|
| Size: |
4096
|
|
|
1551B702000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317467180.000001551B702000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B702000
|
| Size: |
16384
|
|
|
AA9877E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506520730.000000AA9877E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AA9877E000
|
| Size: |
8192
|
|
|
E7E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263592727.0000000000E7E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
E7E000
|
| Size: |
8192
|
|
|
252000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.263721368.0000000000252000.00000004.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
252000
|
| Size: |
4096
|
|
|
19CA3A51000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.324338151.0000019CA3A51000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3A51000
|
| Size: |
4096
|
|
|
19CA3CFA000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507145400.0000019CA3CFA000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3CFA000
|
| Size: |
4096
|
|
|
150000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.273973801.0000000000150000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
150000
|
| Size: |
12288
|
|
|
1F6FAFD000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506510653.0000001F6FAFD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1F6FAFD000
|
| Size: |
12288
|
|
|
13E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261298469.000000000013E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
13E000
|
| Size: |
8192
|
|
|
CC2C3FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506454071.000000CC2C3FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CC2C3FE000
|
| Size: |
8192
|
|
|
19CA3B40000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506969150.0000019CA3B40000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3B40000
|
| Size: |
4096
|
|
|
53B000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.260863956.000000000053B000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
53B000
|
| Size: |
102400
|
|
|
19C9E513000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506784731.0000019C9E513000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E513000
|
| Size: |
4096
|
|
|
19CA3D00000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507161561.0000019CA3D00000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3D00000
|
| Size: |
4096
|
|
|
A510A7E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288260899.000000A510A7E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A510A7E000
|
| Size: |
8192
|
|
|
1551B660000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317076774.000001551B660000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B660000
|
| Size: |
4096
|
|
|
1551B65C000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317414203.000001551B65C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B65C000
|
| Size: |
4096
|
|
|
19CA3C88000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507052181.0000019CA3C88000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3C88000
|
| Size: |
98304
|
|
|
1551B460000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317343311.000001551B460000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B460000
|
| Size: |
4096
|
|
|
2A04FFF0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506545492.000002A04FFF0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
2A04FFF0000
|
| Size: |
4096
|
|
|
3E37FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506567761.00000003E37FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E37FE000
|
| Size: |
8192
|
|
|
248C6740000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506537819.00000248C6740000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C6740000
|
| Size: |
8192
|
|
|
CC2C17C000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506441587.000000CC2C17C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CC2C17C000
|
| Size: |
16384
|
|
|
1096000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263705487.0000000001096000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1096000
|
| Size: |
208896
|
|
|
537000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261557639.0000000000537000.00000004.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
537000
|
| Size: |
4096
|
|
|
19CA3CE4000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507121488.0000019CA3CE4000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3CE4000
|
| Size: |
40960
|
|
|
1551B640000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317108309.000001551B640000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B640000
|
| Size: |
24576
|
|
|
19CA3910000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506952942.0000019CA3910000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3910000
|
| Size: |
4096
|
|
|
170000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261323820.0000000000170000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
170000
|
| Size: |
20480
|
|
|
252000
|
unkown
|
page write copy
|
|
|
|
| Name: |
00000007.00000000.262245890.0000000000252000.00000008.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page write copy
|
| Base address: |
252000
|
| Size: |
4096
|
|
|
1B34BE13000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288350462.000001B34BE13000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BE13000
|
| Size: |
86016
|
|
|
4950000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.263881160.0000000004950000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4950000
|
| Size: |
32768
|
|
|
A510C77000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288300793.000000A510C77000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A510C77000
|
| Size: |
36864
|
|
|
36523FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317294814.00000036523FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
36523FE000
|
| Size: |
8192
|
|
|
19CA3B50000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506973202.0000019CA3B50000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3B50000
|
| Size: |
4096
|
|
|
248C7100000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506780327.00000248C7100000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C7100000
|
| Size: |
4096
|
|
|
19CA3A70000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.324427189.0000019CA3A70000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3A70000
|
| Size: |
4096
|
|
|
19C9E400000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506606537.0000019C9E400000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E400000
|
| Size: |
73728
|
|
|
19CA3CA5000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507077050.0000019CA3CA5000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3CA5000
|
| Size: |
225280
|
|
|
CC2C57C000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506469113.000000CC2C57C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CC2C57C000
|
| Size: |
16384
|
|
|
A5109FC000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288255447.000000A5109FC000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A5109FC000
|
| Size: |
16384
|
|
|
1BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.273990010.00000000001BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1BE000
|
| Size: |
8192
|
|
|
1E23763C000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506569699.000001E23763C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E23763C000
|
| Size: |
32768
|
|
|
19CA3CA2000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507068986.0000019CA3CA2000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3CA2000
|
| Size: |
8192
|
|
|
48AF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.263861761.00000000048AF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
48AF000
|
| Size: |
4096
|
|
|
1551B665000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317429394.000001551B665000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B665000
|
| Size: |
12288
|
|
|
1551B63C000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317397849.000001551B63C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B63C000
|
| Size: |
16384
|
|
|
920000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261645821.0000000000920000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
920000
|
| Size: |
32768
|
|
|
42FC000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.263753107.00000000042FC000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
42FC000
|
| Size: |
16384
|
|
|
1551B668000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317039774.000001551B668000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B668000
|
| Size: |
16384
|
|
|
400000
|
remote allocation
|
page readonly
|
|
|
|
| Name: |
00000005.00000002.263484775.0000000000400000.00000002.00000400.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
remote allocation
|
| Protect: |
page readonly
|
| Base address: |
400000
|
| Size: |
4096
|
|
|
19CA3D02000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507166454.0000019CA3D02000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3D02000
|
| Size: |
4096
|
|
|
19CA3C00000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506985402.0000019CA3C00000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3C00000
|
| Size: |
57344
|
|
|
254000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000007.00000000.262250361.0000000000254000.00000002.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
254000
|
| Size: |
16384
|
|
|
3651F8E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317263324.0000003651F8E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3651F8E000
|
| Size: |
8192
|
|
|
186F2102000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506651986.00000186F2102000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
186F2102000
|
| Size: |
28672
|
|
|
8A0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.274245232.00000000008A0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
8A0000
|
| Size: |
4096
|
|
|
9D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261283993.000000000009D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
9D000
|
| Size: |
12288
|
|
|
19CA3CEF000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507132128.0000019CA3CEF000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3CEF000
|
| Size: |
4096
|
|
|
1551B64D000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317407943.000001551B64D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B64D000
|
| Size: |
28672
|
|
|
4B4F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.263939201.0000000004B4F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
4B4F000
|
| Size: |
4096
|
|
|
248C686D000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506646234.00000248C686D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C686D000
|
| Size: |
106496
|
|
|
CC2BD1B000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506427028.000000CC2BD1B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CC2BD1B000
|
| Size: |
20480
|
|
|
1551B658000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317104706.000001551B658000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B658000
|
| Size: |
4096
|
|
|
19C9E502000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506777114.0000019C9E502000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E502000
|
| Size: |
45056
|
|
|
8A0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260884612.00000000008A0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
8A0000
|
| Size: |
4096
|
|
|
6B7E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263800718.0000000006B7E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
6B7E000
|
| Size: |
8192
|
|
|
EA0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263600007.0000000000EA0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
EA0000
|
| Size: |
4096
|
|
|
C1F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260912581.0000000000C1F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
C1F000
|
| Size: |
4096
|
|
|
1551B664000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317045238.000001551B664000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B664000
|
| Size: |
16384
|
|
|
930000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263562350.0000000000930000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
930000
|
| Size: |
8192
|
|
|
400000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.260661396.0000000000400000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
400000
|
| Size: |
4096
|
|
|
19CA3A74000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.324432715.0000019CA3A74000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3A74000
|
| Size: |
4096
|
|
|
2A050029000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506594392.000002A050029000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A050029000
|
| Size: |
86016
|
|
|
1B34BE58000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000003.288077943.000001B34BE58000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BE58000
|
| Size: |
8192
|
|
|
400000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.261349826.0000000000400000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
400000
|
| Size: |
4096
|
|
|
248C6902000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506760881.00000248C6902000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C6902000
|
| Size: |
32768
|
|
|
537000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260860569.0000000000537000.00000004.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
537000
|
| Size: |
4096
|
|
|
CC2C9FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506509776.000000CC2C9FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CC2C9FE000
|
| Size: |
8192
|
|
|
1551B656000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317117376.000001551B656000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B656000
|
| Size: |
4096
|
|
|
19C9E370000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506595259.0000019C9E370000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E370000
|
| Size: |
4096
|
|
|
19C9EC02000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506811020.0000019C9EC02000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9EC02000
|
| Size: |
4096
|
|
|
1B34BE61000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000003.288021509.000001B34BE61000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BE61000
|
| Size: |
106496
|
|
|
2A050066000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000003.294444205.000002A050066000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A050066000
|
| Size: |
61440
|
|
|
4F1000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.236891625.00000000004F1000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
4F1000
|
| Size: |
282624
|
|
|
3E377D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506561869.00000003E377D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E377D000
|
| Size: |
12288
|
|
|
1F6F6FF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506469608.0000001F6F6FF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1F6F6FF000
|
| Size: |
4096
|
|
|
3E32FB000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506505673.00000003E32FB000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E32FB000
|
| Size: |
20480
|
|
|
19CA3B90000
|
remote allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.325163526.0000019CA3B90000.00000004.00000400.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
remote allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3B90000
|
| Size: |
4096
|
|
|
724E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263871220.000000000724E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
724E000
|
| Size: |
8192
|
|
|
19C9ED59000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.331407650.0000019C9ED59000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9ED59000
|
| Size: |
4096
|
|
|
92A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261662254.000000000092A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
92A000
|
| Size: |
57344
|
|
|
53B000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.236965089.000000000053B000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
53B000
|
| Size: |
102400
|
|
|
19CA3C29000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507004380.0000019CA3C29000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3C29000
|
| Size: |
73728
|
|
|
AA97E7D000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506454718.000000AA97E7D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AA97E7D000
|
| Size: |
12288
|
|
|
1551B641000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317120886.000001551B641000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B641000
|
| Size: |
20480
|
|
|
1B34BE9A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288403359.000001B34BE9A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BE9A000
|
| Size: |
36864
|
|
|
AA9837F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506488859.000000AA9837F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AA9837F000
|
| Size: |
4096
|
|
|
555000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.260874322.0000000000555000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
555000
|
| Size: |
45056
|
|
|
2A050066000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000003.294424691.000002A050066000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A050066000
|
| Size: |
57344
|
|
|
241000
|
unkown
|
page execute read
|
|
|
|
| Name: |
00000007.00000000.262875701.0000000000241000.00000020.00000001.01000000.00000004.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page execute read
|
| Base address: |
241000
|
| Size: |
69632
|
|
|
AA978EB000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506428014.000000AA978EB000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AA978EB000
|
| Size: |
20480
|
|
|
3E337F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506515181.00000003E337F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E337F000
|
| Size: |
4096
|
|
|
748C000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263892259.000000000748C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
748C000
|
| Size: |
16384
|
|
|
F0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261293651.00000000000F0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F0000
|
| Size: |
4096
|
|
|
1B34BE00000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288339312.000001B34BE00000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BE00000
|
| Size: |
73728
|
|
|
186F203D000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506623550.00000186F203D000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
186F203D000
|
| Size: |
94208
|
|
|
248C6865000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506634232.00000248C6865000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C6865000
|
| Size: |
4096
|
|
|
1551B662000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317425420.000001551B662000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B662000
|
| Size: |
4096
|
|
|
1F6F9FF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506502484.0000001F6F9FF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1F6F9FF000
|
| Size: |
4096
|
|
|
19CA3C4C000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507020131.0000019CA3C4C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3C4C000
|
| Size: |
20480
|
|
|
19C9F520000
|
trusted library section
|
page readonly
|
|
|
|
| Name: |
00000011.00000002.506914439.0000019C9F520000.00000002.08000000.00040000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library section
|
| Protect: |
page readonly
|
| Base address: |
19C9F520000
|
| Size: |
65536
|
|
|
CC2C47C000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506461280.000000CC2C47C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CC2C47C000
|
| Size: |
16384
|
|
|
159000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260639071.0000000000159000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
159000
|
| Size: |
20480
|
|
|
1F6F97D000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506490844.0000001F6F97D000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1F6F97D000
|
| Size: |
12288
|
|
|
3E33FF000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506519913.00000003E33FF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E33FF000
|
| Size: |
4096
|
|
|
AA9807F000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506468302.000000AA9807F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
AA9807F000
|
| Size: |
4096
|
|
|
19CA3CF5000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.507138340.0000019CA3CF5000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19CA3CF5000
|
| Size: |
16384
|
|
|
700E000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263848331.000000000700E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
700E000
|
| Size: |
8192
|
|
|
19C9EF01000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506840903.0000019C9EF01000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19C9EF01000
|
| Size: |
4096
|
|
|
186F2013000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506580604.00000186F2013000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
186F2013000
|
| Size: |
69632
|
|
|
19CA3B00000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.325035263.0000019CA3B00000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3B00000
|
| Size: |
4096
|
|
|
19CA3B90000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000003.324243492.0000019CA3B90000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
free memory
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3B90000
|
| Size: |
8192
|
|
|
920000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263543703.0000000000920000.00000004.00000020.00040000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
920000
|
| Size: |
4096
|
|
|
36525FF000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317326626.00000036525FF000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
36525FF000
|
| Size: |
4096
|
|
|
30000
|
unkown
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.261248813.0000000000030000.00000004.00000001.00040000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page read and write
|
| Base address: |
30000
|
| Size: |
4096
|
|
|
19CA3A60000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506962706.0000019CA3A60000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
19CA3A60000
|
| Size: |
4096
|
|
|
CC2C7FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506495857.000000CC2C7FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CC2C7FE000
|
| Size: |
8192
|
|
|
1E237645000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506580937.000001E237645000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E237645000
|
| Size: |
45056
|
|
|
555000
|
unkown
|
page readonly
|
|
|
|
| Name: |
00000000.00000000.261592478.0000000000555000.00000002.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page readonly
|
| Base address: |
555000
|
| Size: |
45056
|
|
|
1551B646000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317087806.000001551B646000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B646000
|
| Size: |
57344
|
|
|
A510D7F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288308955.000000A510D7F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
A510D7F000
|
| Size: |
4096
|
|
|
36526FE000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317332433.00000036526FE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
36526FE000
|
| Size: |
8192
|
|
|
19C9E456000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506680048.0000019C9E456000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E456000
|
| Size: |
73728
|
|
|
19C9E3D0000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506600386.0000019C9E3D0000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E3D0000
|
| Size: |
12288
|
|
|
19C9F540000
|
trusted library section
|
page readonly
|
|
|
|
| Name: |
00000011.00000002.506932605.0000019C9F540000.00000002.08000000.00040000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library section
|
| Protect: |
page readonly
|
| Base address: |
19C9F540000
|
| Size: |
65536
|
|
|
19C9E489000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506706312.0000019C9E489000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
19C9E489000
|
| Size: |
4096
|
|
|
F0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260625266.00000000000F0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
F0000
|
| Size: |
4096
|
|
|
1B34BDC0000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288334833.000001B34BDC0000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1B34BDC0000
|
| Size: |
4096
|
|
|
1E237628000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506548725.000001E237628000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E237628000
|
| Size: |
77824
|
|
|
1551B600000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317357300.000001551B600000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B600000
|
| Size: |
73728
|
|
|
4760000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000007.00000002.263847111.0000000004760000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
7
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
4760000
|
| Size: |
20480
|
|
|
1551B66C000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000003.317000085.000001551B66C000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B66C000
|
| Size: |
94208
|
|
|
3971F7B000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506458032.0000003971F7B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3971F7B000
|
| Size: |
20480
|
|
|
1E237679000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506630762.000001E237679000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1E237679000
|
| Size: |
20480
|
|
|
92A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.274254496.000000000092A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
92A000
|
| Size: |
57344
|
|
|
186F2002000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000010.00000002.506563912.00000186F2002000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
16
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
186F2002000
|
| Size: |
65536
|
|
|
4B7000
|
unkown
|
page write copy
|
|
|
|
| Name: |
00000000.00000000.236840377.00000000004B7000.00000008.00000001.01000000.00000003.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
unkown
|
| Protect: |
page write copy
|
| Base address: |
4B7000
|
| Size: |
237568
|
|
|
1B34BE5A000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000003.288069661.000001B34BE5A000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
free memory
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BE5A000
|
| Size: |
16384
|
|
|
1551B65E000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317421753.000001551B65E000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1551B65E000
|
| Size: |
8192
|
|
|
365227E000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000E.00000002.317279353.000000365227E000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
14
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
365227E000
|
| Size: |
8192
|
|
|
3E30FA000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506485318.00000003E30FA000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E30FA000
|
| Size: |
24576
|
|
|
7110000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000005.00000002.263859450.0000000007110000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
5
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
7110000
|
| Size: |
40960
|
|
|
1E237D30000
|
trusted library allocation
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506701914.000001E237D30000.00000004.00000800.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
trusted library allocation
|
| Protect: |
page read and write
|
| Base address: |
1E237D30000
|
| Size: |
4096
|
|
|
1B34BD90000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000009.00000002.288330643.000001B34BD90000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
9
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
1B34BD90000
|
| Size: |
8192
|
|
|
159000
|
heap
|
page read and write
|
|
|
|
| Name: |
00000000.00000002.273979058.0000000000159000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
159000
|
| Size: |
20480
|
|
|
CC2C6FD000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506489132.000000CC2C6FD000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
CC2C6FD000
|
| Size: |
12288
|
|
|
75C000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260880312.000000000075C000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
75C000
|
| Size: |
16384
|
|
|
1BE000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000000.00000000.260656367.00000000001BE000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
0
|
| Dumpstage: |
process new
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
1BE000
|
| Size: |
8192
|
|
|
2A05003F000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000C.00000002.506618873.000002A05003F000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
12
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
2A05003F000
|
| Size: |
110592
|
|
|
248C7139000
|
heap
|
page read and write
|
|
|
|
| Name: |
0000000B.00000002.506794772.00000248C7139000.00000004.00000020.00020000.00000000.sdmp
|
| TargetID: |
11
|
| Dumpstage: |
process exit
|
| Regiontype: |
heap
|
| Protect: |
page read and write
|
| Base address: |
248C7139000
|
| Size: |
8192
|
|
|
3E347F000
|
stack
|
page read and write
|
|
|
|
| Name: |
00000011.00000002.506531444.00000003E347F000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
17
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3E347F000
|
| Size: |
4096
|
|
|
3971E7B000
|
stack
|
page read and write
|
|
|
|
| Name: |
0000000A.00000002.506448898.0000003971E7B000.00000004.00000010.00020000.00000000.sdmp
|
| TargetID: |
10
|
| Dumpstage: |
process exit
|
| Regiontype: |
stack
|
| Protect: |
page read and write
|
| Base address: |
3971E7B000
|
| Size: |
20480
|
|
