Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Docs.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Sep 27 13:46:07 2024, atime=Mon Oct 2 20:46:57
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Gmail.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Sep 27 13:46:07 2024, atime=Mon Oct 2 20:46:57
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Google Drive.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Oct 6 08:54:41 2023, atime=Mon Oct 2 20:46:57
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Sheets.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Sep 27 13:46:07 2024, atime=Mon Oct 2 20:46:57
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\Slides.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Sep 27 13:46:07 2024, atime=Mon Oct 2 20:46:57
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Users\user\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Chrome Apps\YouTube.lnk
|
MS Windows shortcut, Item id list present, Points to a file or directory, Has Relative path, Has Working directory, Has command
line arguments, Icon number=0, Archive, ctime=Tue Oct 3 09:48:42 2023, mtime=Fri Sep 27 13:46:07 2024, atime=Mon Oct 2 20:46:57
2023, length=1210144, window=hide
|
dropped
|
||
|
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping4392_1682649702\cr_en-us_500000_index.bin
|
data
|
dropped
|
||
|
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping4392_323717889\Google.Widevine.CDM.dll
|
PE32+ executable (DLL) (console) x86-64, for MS Windows
|
dropped
|
||
|
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping4392_323717889\_metadata\verified_contents.json
|
JSON data
|
dropped
|
||
|
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping4392_323717889\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping4392_323717889\manifest.json
|
JSON data
|
dropped
|
||
|
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping4392_451530688\Filtering Rules
|
data
|
dropped
|
||
|
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping4392_451530688\LICENSE.txt
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping4392_451530688\_metadata\verified_contents.json
|
JSON data
|
dropped
|
||
|
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping4392_451530688\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping4392_451530688\manifest.json
|
JSON data
|
dropped
|
||
|
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping4392_641429222\LICENSE
|
ASCII text
|
dropped
|
||
|
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping4392_641429222\_metadata\verified_contents.json
|
JSON data
|
dropped
|
||
|
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping4392_641429222\manifest.fingerprint
|
ASCII text, with no line terminators
|
dropped
|
||
|
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping4392_641429222\manifest.json
|
JSON data
|
dropped
|
||
|
C:\Windows\SystemTemp\chrome_PuffinComponentUnpacker_BeginUnzipping4392_641429222\sets.json
|
JSON data
|
dropped
|
||
|
Chrome Cache Entry: 180
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1840x630, components
3
|
downloaded
|
||
|
Chrome Cache Entry: 181
|
ASCII text, with very long lines (4742)
|
downloaded
|
||
|
Chrome Cache Entry: 182
|
ASCII text, with no line terminators
|
downloaded
|
||
|
Chrome Cache Entry: 183
|
HTML document, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 184
|
HTML document, ASCII text
|
downloaded
|
||
|
Chrome Cache Entry: 185
|
JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 1840x630, components
3
|
dropped
|
There are 18 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Windows\System32\osk.exe
|
"C:\Windows\system32\osk.exe"
|
 |
|
|
C:\Windows\System32\osk.exe
|
"C:\Windows\system32\osk.exe"
|
|
|
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --start-maximized "about:blank"
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" --type=utility --utility-sub-type=network.mojom.NetworkService --lang=en-US
--service-sandbox-type=none --mojo-platform-channel-handle=2068 --field-trial-handle=1972,i,1698617406949419602,7228872294080109155,262144
--disable-features=OptimizationGuideModelDownloading,OptimizationHints,OptimizationHintsFetching,OptimizationTargetPrediction
/prefetch:8
|
||
|
C:\Program Files\Google\Chrome\Application\chrome.exe
|
"C:\Program Files\Google\Chrome\Application\chrome.exe" "https://main.d3engbxc9elyir.amplifyapp.com/"
|
||
|
C:\Windows\explorer.exe
|
C:\Windows\Explorer.EXE
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://main.d3engbxc9elyir.amplifyapp.com/
|
|
||
|
https://main.d3engbxc9elyir.amplifyapp.com/favicon.ico
|
18.66.102.22
|
|
|
|
https://main.d3engbxc9elyir.amplifyapp.com/
|
|
||
|
https://api.msn.com/v1/news/Feed/Windows?
|
unknown
|
||
|
https://www.msn.com/en-us/news/politics/many-gop-anti-trumpers-are-throwing-in-the-towel/ar-AA1hMmec
|
unknown
|
||
|
https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13f2DV
|
unknown
|
||
|
https://api.msn.com:443/v1/news/Feed/Windows?
|
unknown
|
||
|
https://news.gallup.com/poll/247016/conservatives-greatly-outnumber-liberals-states.aspx
|
unknown
|
||
|
https://www.msn.com/en-us/news/politics/the-state-with-the-most-liberals-isn-t-california-or-new-yor
|
unknown
|
||
|
https://deff.nelreports.net/api/report?cat=msn
|
unknown
|
||
|
https://excel.office.com
|
unknown
|
||
|
https://www.msn.com/en-us/news/us/ancient-footprints-upend-timeline-of-humans-arrival-in-north-ameri
|
unknown
|
||
|
http://schemas.micro
|
unknown
|
||
|
https://assets.msn.com/weathermapdata/1/static/weather/Icons/JyNGQgA=/Teaser/recordhigh.svg
|
unknown
|
||
|
https://www.270towin.com/
|
unknown
|
||
|
https://www.msn.com/en-us/news/world/a-russian-missile-attack-in-eastern-ukraine-kills-a-10-year-old
|
unknown
|
||
|
https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13govM-dark
|
unknown
|
||
|
https://www.msn.com/en-us/news/world/seismologist-predicts-earthquake-in-asia-japan-issues-tsunami-w
|
unknown
|
||
|
https://windows.msn.com:443/shellv2?osLocale=en-GB&chosenMarketReason=ImplicitNew
|
unknown
|
||
|
https://pbs.twimg.com/media/GGrR89_WgAAgrOI?format=jpg&name=large
|
199.232.188.159
|
||
|
https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13gKhb
|
unknown
|
||
|
https://api.msn.com/v1/news/Feed/Windows?activityId=A201BF9CD1304F30B542E3825626C85B&timeOut=5000&oc
|
unknown
|
||
|
https://android.notify.windows.com/iOSp
|
unknown
|
||
|
https://www.msn.com/en-us/health/medical/mayo-clinic-minute-who-benefits-from-taking-statins/ar-AA1h
|
unknown
|
||
|
https://www.msn.com/en-us/entertainment/entertainment-celebrity/mother-sued-and-won-against-school-d
|
unknown
|
||
|
https://www.theatlantic.com/politics/archive/2014/02/the-origin-of-liberalism/283780/
|
unknown
|
||
|
https://wns.windows.com/
|
unknown
|
||
|
https://www.financebuzz.com/clever-debt-payoff-55mp?utm_source=msn&utm_medium=feed&synd_slide=1&synd
|
unknown
|
||
|
https://android.notify.windows.com/iOSd
|
unknown
|
||
|
https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=%27&oit=4&cp=1&pgcl=4&gs_rn=42&psi=CE2RIP3hMqCwg0VO&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
|
142.250.186.36
|
||
|
https://assets.msn.com/weathermapdata/1/static/weather/taskbar/animation/WeatherInsights/WeatherInsi
|
unknown
|
||
|
https://www.msn.com/en-us/money/retirement/retirees-why-oct-12-is-social-security-s-most-important-d
|
unknown
|
||
|
https://word.office.com
|
unknown
|
||
|
https://assets.msn.com/weathermapdata/1/static/weather/Icons/JyNGQgA=/Condition/AAehwh2.svg
|
unknown
|
||
|
https://windows.msn.com:443/shell?osLocale=en-GB&chosenMarketReason=ImplicitNew
|
unknown
|
||
|
https://financebuzz.com/top-signs-of-financial-fitness?utm_source=msn&utm_medium=feed&synd_slide=1&s
|
unknown
|
||
|
https://www.google.com/complete/search?client=chrome-omni&gs_ri=chrome-ext-ansg&xssi=t&q=&oit=0&gs_rn=42&sugkey=AIzaSyBOti4mM-6x9WDnZIjIeyEU21OpBXqWBgw
|
142.250.186.36
|
||
|
https://outlook.com
|
unknown
|
||
|
https://cookpolitical.com/2020-national-popular-vote-tracker
|
unknown
|
||
|
https://www.msn.com/en-us/money/personalfinance/if-any-of-these-11-things-describes-you-you-ve-climb
|
unknown
|
||
|
https://powerpoint.office.comtextQ
|
unknown
|
||
|
https://stacker.com/politics/states-most-conservatives-0
|
unknown
|
||
|
https://becausemomsays.com
|
unknown
|
||
|
http://crl.micro
|
unknown
|
||
|
https://assets.msn.com/weathermapdata/1
|
unknown
|
||
|
https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13govM
|
unknown
|
||
|
https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13g0vJ
|
unknown
|
||
|
https://android.notify.windows.com/iOS
|
unknown
|
||
|
https://www.forbes.com/sites/elanagross/2020/10/28/trump-administration-uses-philadelphia-protests-t
|
unknown
|
||
|
https://android.notify.windows.com/iOS0
|
unknown
|
||
|
https://activity.windows.com/UserActivity.ReadWrite.CreatedByApp
|
unknown
|
||
|
https://activity.windows.com/UserActivity.ReadWrite.CreatedByAppMEOW/r
|
unknown
|
||
|
https://www.msn.com/en-us/news/technology/the-most-stunning-space-images-captured-in-2023-so-far/ar-
|
unknown
|
||
|
https://www.msn.com/en-us/autos/buying/if-your-old-car-has-any-of-these-16-problems-consider-buying-
|
unknown
|
||
|
https://www.msn.com/en-us/news/world/putin-s-plan-for-winning-the-war-in-ukraine-could-be-starting-t
|
unknown
|
||
|
https://api.msn.com/
|
unknown
|
||
|
https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13g0vJ-dark
|
unknown
|
||
|
https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13f2DV-dark
|
unknown
|
||
|
https://www.msn.com/en-us/health/medical/scientists-reveal-new-findings-about-older-adults-who-take-
|
unknown
|
||
|
https://www.msn.com:443/en-us/feed
|
unknown
|
||
|
https://stacker.com/
|
unknown
|
||
|
https://becausemomsays.com/she-wanted-to-keep-her-deceased-husbands-ring-so-she-selfishly-denied-her
|
unknown
|
||
|
https://www.msn.com/en-us/travel/news/these-new-overhead-aircraft-bins-could-be-an-inflight-game-cha
|
unknown
|
||
|
https://cdn.query.prod.cms.msn.com/cms/api/amp/binary/AA13gKhb-dark
|
unknown
|
There are 53 hidden URLs, click here to show them.
Domains
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
pbs.twimg.com
|
unknown
|
|
|
|
dualstack.twimg.twitter.map.fastly.net
|
199.232.188.159
|
||
|
main.d3engbxc9elyir.amplifyapp.com
|
18.66.102.22
|
||
|
www.google.com
|
142.250.186.36
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
18.66.102.22
|
main.d3engbxc9elyir.amplifyapp.com
|
United States
|
||
|
142.250.186.36
|
www.google.com
|
United States
|
||
|
192.168.2.17
|
unknown
|
unknown
|
||
|
192.168.2.18
|
unknown
|
unknown
|
||
|
239.255.255.250
|
unknown
|
Reserved
|
||
|
199.232.188.159
|
dualstack.twimg.twitter.map.fastly.net
|
United States
|
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AccessibilityTemp
|
osk
|
||
|
HKEY_CURRENT_USER_Classes\Local Settings\MuiCache\1f\417C44EB
|
@%SystemRoot%\system32\AccessibilityCPL.dll,-83
|
||
|
HKEY_CURRENT_USER_Classes\Local Settings\MuiCache\1f\417C44EB
|
@%SystemRoot%\system32\AccessibilityCPL.dll,-84
|
||
|
HKEY_CURRENT_USER_Classes\Local Settings\MuiCache\1f\417C44EB
|
@%SystemRoot%\system32\AccessibilityCPL.dll,-85
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility
|
Configuration
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1
|
SecureConfiguration
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1
|
Configuration
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
WindowLeft
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
WindowLeft
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
WindowTop
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
WindowTop
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
WindowWidth
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
WindowWidth
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
WindowHeight
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
WindowHeight
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
ClickSound
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
ClickSound
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
Mode
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
Mode
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
HoverPeriod
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
HoverPeriod
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
ScanInterval
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
ScanInterval
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
UseDevice
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
UseDevice
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
UseMouse
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
UseMouse
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
UseKB
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
UseKB
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
ScanKey
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
ScanKey
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
UseTextPrediction
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
UseTextPrediction
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
InsertSpace
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
InsertSpace
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
ShowNumPad
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
ShowNumPad
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
NavigationMode
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
NavigationMode
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
ModeHeightNavigation
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
ModeHeightNavigation
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
ModeHeightGeneral
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
ModeHeightGeneral
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
ShowClearKeyboard
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
ShowClearKeyboard
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
Dock
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\ATConfig\osk
|
Dock
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
WindowLeft
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
WindowTop
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
WindowWidth
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
WindowHeight
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
ClickSound
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
Mode
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
HoverPeriod
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
ScanInterval
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
UseDevice
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
UseMouse
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
UseKB
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
ScanKey
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
UseTextPrediction
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
InsertSpace
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
ShowNumPad
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
NavigationMode
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
ModeHeightNavigation
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
ModeHeightGeneral
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
ShowClearKeyboard
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1\ATConfig\Osk
|
Dock
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AccessibilityTemp
|
osk
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
RunningState
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AccessibilityTemp
|
osk
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AccessibilityTemp
|
osk
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Accessibility\Session1
|
Configuration
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Osk
|
RunningState
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\ApplicationViewManagement\W32:0000000000030332
|
VirtualDesktop
|
||
|
HKEY_CURRENT_USER_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache
|
LangID
|
||
|
HKEY_CURRENT_USER_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache
|
C:\Windows\system32\explorerframe.dll.FriendlyAppName
|
||
|
HKEY_CURRENT_USER_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache
|
C:\Windows\system32\explorerframe.dll.ApplicationCompany
|
||
|
HKEY_CURRENT_USER_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache
|
C:\Windows\system32\shell32.dll.FriendlyAppName
|
||
|
HKEY_CURRENT_USER_Classes\Local Settings\Software\Microsoft\Windows\Shell\MuiCache
|
C:\Windows\system32\shell32.dll.ApplicationCompany
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\SessionInfo\1\ApplicationViewManagement\W32:000000000003037E
|
VirtualDesktop
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{CEBFF5CD-ACE2-4F4F-9178-9926F41749EA}\Count
|
Zvpebfbsg.Jvaqbjf.Frnepu_pj5a1u2gklrjl!PbegnanHV
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{CEBFF5CD-ACE2-4F4F-9178-9926F41749EA}\Count
|
HRZR_PGYFRFFVBA
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{CEBFF5CD-ACE2-4F4F-9178-9926F41749EA}\Count
|
Puebzr
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{CEBFF5CD-ACE2-4F4F-9178-9926F41749EA}\Count
|
HRZR_PGYFRFFVBA
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{CEBFF5CD-ACE2-4F4F-9178-9926F41749EA}\Count
|
{1NP14R77-02R7-4R5Q-O744-2RO1NR5198O7}\bfx.rkr
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{CEBFF5CD-ACE2-4F4F-9178-9926F41749EA}\Count
|
HRZR_PGYFRFFVBA
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{CEBFF5CD-ACE2-4F4F-9178-9926F41749EA}\Count
|
Puebzr
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\FeatureUsage\AppLaunch
|
Microsoft.Windows.Explorer
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{F4E57C4B-2036-45F0-A9AB-443BCFE33D9F}\Count
|
{9R3995NO-1S9P-4S13-O827-48O24O6P7174}\GnfxOne\Svyr Rkcybere.yax
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{F4E57C4B-2036-45F0-A9AB-443BCFE33D9F}\Count
|
HRZR_PGYFRFFVBA
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{F4E57C4B-2036-45F0-A9AB-443BCFE33D9F}\Count
|
{9R3995NO-1S9P-4S13-O827-48O24O6P7174}\GnfxOne\Svyr Rkcybere.yax
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{F4E57C4B-2036-45F0-A9AB-443BCFE33D9F}\Count
|
HRZR_PGYFRFFVBA
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{CEBFF5CD-ACE2-4F4F-9178-9926F41749EA}\Count
|
Zvpebfbsg.Jvaqbjf.Rkcybere
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{CEBFF5CD-ACE2-4F4F-9178-9926F41749EA}\Count
|
HRZR_PGYFRFFVBA
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\CloudStore\Store\Cache\DefaultAccount\$de${2566fb8b-b66f-4802-b44d-e5fb5b12fb67}$$windows.data.unifiedtile.localstartvolatiletilepropertiesmap\Current
|
Data
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{F4E57C4B-2036-45F0-A9AB-443BCFE33D9F}\Count
|
{9R3995NO-1S9P-4S13-O827-48O24O6P7174}\GnfxOne\Svyr Rkcybere.yax
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{F4E57C4B-2036-45F0-A9AB-443BCFE33D9F}\Count
|
HRZR_PGYFRFFVBA
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{F4E57C4B-2036-45F0-A9AB-443BCFE33D9F}\Count
|
{9R3995NO-1S9P-4S13-O827-48O24O6P7174}\GnfxOne\Svyr Rkcybere.yax
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{F4E57C4B-2036-45F0-A9AB-443BCFE33D9F}\Count
|
HRZR_PGYFRFFVBA
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{CEBFF5CD-ACE2-4F4F-9178-9926F41749EA}\Count
|
Zvpebfbsg.Jvaqbjf.Rkcybere
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\Explorer\UserAssist\{CEBFF5CD-ACE2-4F4F-9178-9926F41749EA}\Count
|
HRZR_PGYFRFFVBA
|
||
|
HKEY_CURRENT_USER\SOFTWARE\Microsoft\Windows\CurrentVersion\CloudStore\Store\Cache\DefaultAccount\$de${2566fb8b-b66f-4802-b44d-e5fb5b12fb67}$$windows.data.unifiedtile.localstartvolatiletilepropertiesmap\Current
|
Data
|
||
|
HKEY_CURRENT_USER_Classes\Local Settings\Software\Microsoft\Windows\Shell\BagMRU
|
MRUListEx
|
||
|
HKEY_CURRENT_USER_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\Shell\{24CCB8A6-C45A-477D-B940-3382B9225668}
|
FFlags
|
||
|
HKEY_CURRENT_USER_Classes\Local Settings\Software\Microsoft\Windows\Shell\Bags\6\Shell\{24CCB8A6-C45A-477D-B940-3382B9225668}
|
FFlags
|
There are 95 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
90C9000
|
unkown
|
page read and write
|
||
|
AD53000
|
unkown
|
page read and write
|
||
|
98E8000
|
stack
|
page read and write
|
||
|
7FF571119000
|
unkown
|
page readonly
|
||
|
8398000
|
unkown
|
page read and write
|
||
|
3763000
|
unkown
|
page read and write
|
||
|
12DE000
|
heap
|
page read and write
|
||
|
8393000
|
unkown
|
page read and write
|
||
|
36C8000
|
stack
|
page read and write
|
||
|
AE3B000
|
unkown
|
page read and write
|
||
|
1326000
|
heap
|
page read and write
|
||
|
85FA000
|
unkown
|
page read and write
|
||
|
C9F6000
|
unkown
|
page read and write
|
||
|
C65D000
|
unkown
|
page read and write
|
||
|
9272000
|
unkown
|
page read and write
|
||
|
8424000
|
unkown
|
page read and write
|
||
|
76B4000
|
unkown
|
page read and write
|
||
|
2C1F63B8000
|
heap
|
page read and write
|
||
|
2C1F4BEC000
|
heap
|
page read and write
|
||
|
C95C000
|
unkown
|
page read and write
|
||
|
9275000
|
unkown
|
page read and write
|
||
|
8F0B000
|
unkown
|
page read and write
|
||
|
EAEE000
|
stack
|
page read and write
|
||
|
8FEE000
|
unkown
|
page read and write
|
||
|
7FF570B95000
|
unkown
|
page readonly
|
||
|
ED6000
|
stack
|
page read and write
|
||
|
C6BD000
|
unkown
|
page read and write
|
||
|
8613000
|
unkown
|
page read and write
|
||
|
7FF570C2B000
|
unkown
|
page readonly
|
||
|
A529000
|
unkown
|
page read and write
|
||
|
8311000
|
unkown
|
page read and write
|
||
|
9134000
|
unkown
|
page read and write
|
||
|
7FF570E35000
|
unkown
|
page readonly
|
||
|
F4DD000
|
unkown
|
page read and write
|
||
|
8F4C000
|
unkown
|
page read and write
|
||
|
4CDA000
|
unkown
|
page read and write
|
||
|
10C9B000
|
unkown
|
page read and write
|
||
|
90DC000
|
unkown
|
page read and write
|
||
|
2C1F2A83000
|
heap
|
page read and write
|
||
|
7FF570FF2000
|
unkown
|
page readonly
|
||
|
3390000
|
unkown
|
page readonly
|
||
|
85A0000
|
unkown
|
page read and write
|
||
|
8406000
|
unkown
|
page read and write
|
||
|
10C7C000
|
unkown
|
page read and write
|
||
|
7FF570D45000
|
unkown
|
page readonly
|
||
|
4CBC000
|
unkown
|
page read and write
|
||
|
C66B000
|
unkown
|
page read and write
|
||
|
3795000
|
unkown
|
page read and write
|
||
|
1260000
|
heap
|
page read and write
|
||
|
2C1F2A41000
|
heap
|
page read and write
|
||
|
C74D000
|
unkown
|
page read and write
|
||
|
2C1F4AB6000
|
heap
|
page read and write
|
||
|
8C70000
|
unkown
|
page readonly
|
||
|
7FF570D7D000
|
unkown
|
page readonly
|
||
|
133B000
|
heap
|
page read and write
|
||
|
2C1F4AE0000
|
heap
|
page read and write
|
||
|
2C1F4B06000
|
heap
|
page read and write
|
||
|
BA40000
|
unkown
|
page readonly
|
||
|
C370000
|
unkown
|
page read and write
|
||
|
A42E000
|
unkown
|
page read and write
|
||
|
CA38000
|
unkown
|
page read and write
|
||
|
77FB000
|
unkown
|
page read and write
|
||
|
2C1F4AF7000
|
heap
|
page read and write
|
||
|
AE57000
|
unkown
|
page read and write
|
||
|
CA44000
|
unkown
|
page read and write
|
||
|
382E000
|
unkown
|
page read and write
|
||
|
10C99000
|
unkown
|
page read and write
|
||
|
2C1F2A9E000
|
heap
|
page read and write
|
||
|
BA30000
|
unkown
|
page readonly
|
||
|
CA4D000
|
unkown
|
page read and write
|
||
|
8F01000
|
unkown
|
page read and write
|
||
|
2C1F4BEF000
|
heap
|
page read and write
|
||
|
3786000
|
unkown
|
page read and write
|
||
|
76F3000
|
unkown
|
page read and write
|
||
|
8D00000
|
unkown
|
page read and write
|
||
|
CB1E000
|
unkown
|
page read and write
|
||
|
9107000
|
unkown
|
page read and write
|
||
|
7FF570D93000
|
unkown
|
page readonly
|
||
|
C8C8000
|
unkown
|
page read and write
|
||
|
2C1F4AE3000
|
heap
|
page read and write
|
||
|
9225000
|
unkown
|
page read and write
|
||
|
9318000
|
stack
|
page read and write
|
||
|
8EE3000
|
unkown
|
page read and write
|
||
|
810E000
|
stack
|
page read and write
|
||
|
C48E000
|
unkown
|
page read and write
|
||
|
823A000
|
unkown
|
page read and write
|
||
|
2C1F4B9A000
|
heap
|
page read and write
|
||
|
B32C000
|
stack
|
page read and write
|
||
|
CB1E000
|
unkown
|
page read and write
|
||
|
8EEB000
|
unkown
|
page read and write
|
||
|
882C000
|
stack
|
page read and write
|
||
|
3610000
|
unkown
|
page readonly
|
||
|
8EF1000
|
unkown
|
page read and write
|
||
|
917E000
|
unkown
|
page read and write
|
||
|
BA00000
|
unkown
|
page readonly
|
||
|
2C1F4BDF000
|
heap
|
page read and write
|
||
|
383F000
|
unkown
|
page read and write
|
||
|
90B3000
|
unkown
|
page read and write
|
||
|
84AB000
|
unkown
|
page read and write
|
||
|
76B2000
|
unkown
|
page read and write
|
||
|
4C85000
|
unkown
|
page read and write
|
||
|
B2AF000
|
stack
|
page read and write
|
||
|
848D000
|
unkown
|
page read and write
|
||
|
9190000
|
unkown
|
page read and write
|
||
|
C624000
|
unkown
|
page read and write
|
||
|
9262000
|
unkown
|
page read and write
|
||
|
9100000
|
unkown
|
page read and write
|
||
|
2E13000
|
heap
|
page read and write
|
||
|
7FF571153000
|
unkown
|
page readonly
|
||
|
375D000
|
unkown
|
page read and write
|
||
|
2C1F2A49000
|
heap
|
page read and write
|
||
|
2C1F2D50000
|
heap
|
page read and write
|
||
|
7FF570F77000
|
unkown
|
page readonly
|
||
|
2C1F4A95000
|
heap
|
page read and write
|
||
|
107DB000
|
unkown
|
page read and write
|
||
|
2C1F2AB9000
|
heap
|
page read and write
|
||
|
A51D000
|
unkown
|
page read and write
|
||
|
7FF571004000
|
unkown
|
page readonly
|
||
|
2C1F4AD6000
|
heap
|
page read and write
|
||
|
CA0C000
|
unkown
|
page read and write
|
||
|
8FE3000
|
unkown
|
page read and write
|
||
|
8ADB000
|
stack
|
page read and write
|
||
|
8EA0000
|
unkown
|
page read and write
|
||
|
C655000
|
unkown
|
page read and write
|
||
|
8F07000
|
unkown
|
page read and write
|
||
|
9099000
|
unkown
|
page read and write
|
||
|
1267000
|
heap
|
page read and write
|
||
|
8339000
|
unkown
|
page read and write
|
||
|
90FD000
|
unkown
|
page read and write
|
||
|
7FF570AC6000
|
unkown
|
page readonly
|
||
|
2C1F4B19000
|
heap
|
page read and write
|
||
|
C517000
|
unkown
|
page read and write
|
||
|
91AF000
|
unkown
|
page read and write
|
||
|
77EC000
|
unkown
|
page read and write
|
||
|
EE675FE000
|
stack
|
page read and write
|
||
|
7FF570722000
|
unkown
|
page readonly
|
||
|
56B1000
|
unkown
|
page read and write
|
||
|
7FF57116C000
|
unkown
|
page readonly
|
||
|
CA8B000
|
unkown
|
page read and write
|
||
|
91B1000
|
unkown
|
page read and write
|
||
|
2C1F2CC0000
|
heap
|
page read and write
|
||
|
2C1F4AE2000
|
heap
|
page read and write
|
||
|
7FF570D3E000
|
unkown
|
page readonly
|
||
|
108DE000
|
unkown
|
page read and write
|
||
|
941E000
|
stack
|
page read and write
|
||
|
8EA0000
|
unkown
|
page read and write
|
||
|
C579000
|
unkown
|
page read and write
|
||
|
10DD3000
|
unkown
|
page read and write
|
||
|
C2DE000
|
stack
|
page read and write
|
||
|
2C1F63A9000
|
heap
|
page read and write
|
||
|
7FF570F3E000
|
unkown
|
page readonly
|
||
|
7FF570B5D000
|
unkown
|
page readonly
|
||
|
8497000
|
unkown
|
page read and write
|
||
|
10BE9000
|
stack
|
page read and write
|
||
|
9229000
|
unkown
|
page read and write
|
||
|
2C1F4BE1000
|
heap
|
page read and write
|
||
|
8F8C000
|
unkown
|
page read and write
|
||
|
10894000
|
unkown
|
page read and write
|
||
|
10DCC000
|
unkown
|
page read and write
|
||
|
839D000
|
unkown
|
page read and write
|
||
|
8EDF000
|
unkown
|
page read and write
|
||
|
8D00000
|
unkown
|
page read and write
|
||
|
10CD2000
|
unkown
|
page read and write
|
||
|
A018000
|
stack
|
page read and write
|
||
|
85F5000
|
unkown
|
page read and write
|
||
|
C35F000
|
stack
|
page read and write
|
||
|
7FF5706FC000
|
unkown
|
page readonly
|
||
|
7FF571030000
|
unkown
|
page readonly
|
||
|
CB00000
|
unkown
|
page read and write
|
||
|
83CA000
|
unkown
|
page read and write
|
||
|
90B3000
|
unkown
|
page read and write
|
||
|
AD51000
|
unkown
|
page read and write
|
||
|
EF90000
|
heap
|
page read and write
|
||
|
2C1F2C00000
|
heap
|
page read and write
|
||
|
8FC8000
|
unkown
|
page read and write
|
||
|
7856000
|
unkown
|
page read and write
|
||
|
EDA000
|
stack
|
page read and write
|
||
|
7FF570DBB000
|
unkown
|
page readonly
|
||
|
7FF570EC4000
|
unkown
|
page readonly
|
||
|
AB8E000
|
unkown
|
page read and write
|
||
|
9293000
|
unkown
|
page read and write
|
||
|
2C1F4AA4000
|
heap
|
page read and write
|
||
|
1287000
|
heap
|
page read and write
|
||
|
C72B000
|
unkown
|
page read and write
|
||
|
BF3E000
|
stack
|
page read and write
|
||
|
2C1F2A3B000
|
heap
|
page read and write
|
||
|
AB54000
|
unkown
|
page read and write
|
||
|
8FB9000
|
unkown
|
page read and write
|
||
|
3459000
|
stack
|
page read and write
|
||
|
91B1000
|
unkown
|
page read and write
|
||
|
76C6000
|
unkown
|
page read and write
|
||
|
8EF4000
|
unkown
|
page read and write
|
||
|
9157000
|
unkown
|
page read and write
|
||
|
7910000
|
unkown
|
page read and write
|
||
|
8188000
|
stack
|
page read and write
|
||
|
7FF570C8A000
|
unkown
|
page readonly
|
||
|
7FF570D2C000
|
unkown
|
page readonly
|
||
|
10BEE000
|
stack
|
page read and write
|
||
|
C458000
|
unkown
|
page read and write
|
||
|
2C1F4B3A000
|
heap
|
page read and write
|
||
|
2C1F2A57000
|
heap
|
page read and write
|
||
|
829E000
|
unkown
|
page read and write
|
||
|
7FF570C45000
|
unkown
|
page readonly
|
||
|
2C1F2AFE000
|
heap
|
page read and write
|
||
|
4CDF000
|
unkown
|
page read and write
|
||
|
2C1F2A88000
|
heap
|
page read and write
|
||
|
9046000
|
unkown
|
page read and write
|
||
|
8F7E000
|
unkown
|
page read and write
|
||
|
2C1F6378000
|
heap
|
page read and write
|
||
|
8214000
|
unkown
|
page read and write
|
||
|
7850000
|
unkown
|
page read and write
|
||
|
F65A000
|
heap
|
page read and write
|
||
|
8230000
|
unkown
|
page read and write
|
||
|
132D000
|
heap
|
page read and write
|
||
|
7751000
|
unkown
|
page read and write
|
||
|
90C4000
|
unkown
|
page read and write
|
||
|
95AF000
|
unkown
|
page read and write
|
||
|
7FF570B84000
|
unkown
|
page readonly
|
||
|
9B5A000
|
unkown
|
page read and write
|
||
|
CA3A000
|
unkown
|
page read and write
|
||
|
9065000
|
unkown
|
page read and write
|
||
|
7FF570BA0000
|
unkown
|
page readonly
|
||
|
2C1F4B8E000
|
heap
|
page read and write
|
||
|
4C7F000
|
unkown
|
page read and write
|
||
|
83C5000
|
unkown
|
page read and write
|
||
|
2C1F2A78000
|
heap
|
page read and write
|
||
|
9514000
|
stack
|
page read and write
|
||
|
C3D3000
|
unkown
|
page read and write
|
||
|
76A0000
|
unkown
|
page read and write
|
||
|
F4BA000
|
unkown
|
page read and write
|
||
|
C639000
|
unkown
|
page read and write
|
||
|
2C1F4ACB000
|
heap
|
page read and write
|
||
|
7E1B000
|
unkown
|
page read and write
|
||
|
7FF570ACF000
|
unkown
|
page readonly
|
||
|
4C49000
|
unkown
|
page read and write
|
||
|
384E000
|
unkown
|
page read and write
|
||
|
7FF570B3A000
|
unkown
|
page readonly
|
||
|
2D64000
|
unkown
|
page read and write
|
||
|
9209000
|
unkown
|
page read and write
|
||
|
82D0000
|
unkown
|
page read and write
|
||
|
C39F000
|
unkown
|
page read and write
|
||
|
8FD5000
|
unkown
|
page read and write
|
||
|
84BA000
|
unkown
|
page read and write
|
||
|
C436000
|
unkown
|
page read and write
|
||
|
10813000
|
unkown
|
page read and write
|
||
|
76E2000
|
unkown
|
page read and write
|
||
|
B7BB000
|
stack
|
page read and write
|
||
|
AB8B000
|
unkown
|
page read and write
|
||
|
2C1F4B91000
|
heap
|
page read and write
|
||
|
2C1F4BD4000
|
heap
|
page read and write
|
||
|
7FF57113C000
|
unkown
|
page readonly
|
||
|
F4E4000
|
unkown
|
page read and write
|
||
|
7FF570B2D000
|
unkown
|
page readonly
|
||
|
1200000
|
unkown
|
page read and write
|
||
|
7FF570BF2000
|
unkown
|
page readonly
|
||
|
2C1F4AB3000
|
heap
|
page read and write
|
||
|
9102000
|
unkown
|
page read and write
|
||
|
8188000
|
stack
|
page read and write
|
||
|
9136000
|
unkown
|
page read and write
|
||
|
8F74000
|
unkown
|
page read and write
|
||
|
10C99000
|
unkown
|
page read and write
|
||
|
C9FB000
|
unkown
|
page read and write
|
||
|
7FF570603000
|
unkown
|
page readonly
|
||
|
7FF570ECF000
|
unkown
|
page readonly
|
||
|
C47D000
|
unkown
|
page read and write
|
||
|
8221000
|
unkown
|
page read and write
|
||
|
A090000
|
unkown
|
page readonly
|
||
|
AD5F000
|
unkown
|
page read and write
|
||
|
8F5D000
|
unkown
|
page read and write
|
||
|
2C1F4BBF000
|
heap
|
page read and write
|
||
|
EE6777D000
|
stack
|
page read and write
|
||
|
834A000
|
unkown
|
page read and write
|
||
|
C6C2000
|
unkown
|
page read and write
|
||
|
10D82000
|
unkown
|
page read and write
|
||
|
7FF570ADC000
|
unkown
|
page readonly
|
||
|
2C1F4AD3000
|
heap
|
page read and write
|
||
|
7DC0000
|
unkown
|
page readonly
|
||
|
C03E000
|
stack
|
page read and write
|
||
|
335A000
|
stack
|
page read and write
|
||
|
2C1F2A8E000
|
heap
|
page read and write
|
||
|
8226000
|
unkown
|
page read and write
|
||
|
C9F4000
|
unkown
|
page read and write
|
||
|
2C1F4ACD000
|
heap
|
page read and write
|
||
|
C4FD000
|
unkown
|
page read and write
|
||
|
2C1F4640000
|
heap
|
page read and write
|
||
|
918A000
|
unkown
|
page read and write
|
||
|
7D10000
|
unkown
|
page read and write
|
||
|
7D50000
|
unkown
|
page read and write
|
||
|
CA81000
|
unkown
|
page read and write
|
||
|
90C3000
|
unkown
|
page read and write
|
||
|
9129000
|
unkown
|
page read and write
|
||
|
CA06000
|
unkown
|
page read and write
|
||
|
7DF4858B0000
|
unkown
|
page readonly
|
||
|
CB48000
|
unkown
|
page read and write
|
||
|
2C1F4AE5000
|
heap
|
page read and write
|
||
|
10C4C000
|
unkown
|
page read and write
|
||
|
88AE000
|
stack
|
page read and write
|
||
|
CAA5000
|
unkown
|
page read and write
|
||
|
CA2C000
|
unkown
|
page read and write
|
||
|
774A000
|
unkown
|
page read and write
|
||
|
C370000
|
unkown
|
page read and write
|
||
|
131E000
|
heap
|
page read and write
|
||
|
3640000
|
unkown
|
page read and write
|
||
|
2C1F4BA2000
|
heap
|
page read and write
|
||
|
7805000
|
unkown
|
page read and write
|
||
|
2C1F4BE1000
|
heap
|
page read and write
|
||
|
7FF5710E9000
|
unkown
|
page readonly
|
||
|
858C000
|
unkown
|
page read and write
|
||
|
90B8000
|
unkown
|
page read and write
|
||
|
8631000
|
unkown
|
page read and write
|
||
|
3620000
|
unkown
|
page read and write
|
||
|
76ED000
|
unkown
|
page read and write
|
||
|
C713000
|
unkown
|
page read and write
|
||
|
10CB1000
|
unkown
|
page read and write
|
||
|
CA76000
|
unkown
|
page read and write
|
||
|
84C4000
|
unkown
|
page read and write
|
||
|
8410000
|
unkown
|
page read and write
|
||
|
7FF570EB4000
|
unkown
|
page readonly
|
||
|
81B8000
|
unkown
|
page read and write
|
||
|
8B8A000
|
unkown
|
page read and write
|
||
|
C442000
|
unkown
|
page read and write
|
||
|
9285000
|
unkown
|
page read and write
|
||
|
7FF5711C9000
|
unkown
|
page readonly
|
||
|
10C38000
|
unkown
|
page read and write
|
||
|
2C1F2A7F000
|
heap
|
page read and write
|
||
|
1280000
|
heap
|
page read and write
|
||
|
2C1F6396000
|
heap
|
page read and write
|
||
|
7FF571114000
|
unkown
|
page readonly
|
||
|
7FF5710DE000
|
unkown
|
page readonly
|
||
|
9204000
|
unkown
|
page read and write
|
||
|
7FF570D54000
|
unkown
|
page readonly
|
||
|
7782000
|
unkown
|
page read and write
|
||
|
133F000
|
heap
|
page read and write
|
||
|
8F97000
|
unkown
|
page read and write
|
||
|
91BA000
|
unkown
|
page read and write
|
||
|
81E5000
|
unkown
|
page read and write
|
||
|
E20000
|
unkown
|
page readonly
|
||
|
8ECF000
|
unkown
|
page read and write
|
||
|
7710000
|
unkown
|
page read and write
|
||
|
783C000
|
unkown
|
page read and write
|
||
|
8EFE000
|
unkown
|
page read and write
|
||
|
34DB000
|
stack
|
page read and write
|
||
|
31DE000
|
stack
|
page read and write
|
||
|
8BE0000
|
unkown
|
page read and write
|
||
|
12DA000
|
heap
|
page read and write
|
||
|
7FF5710D8000
|
unkown
|
page readonly
|
||
|
8618000
|
unkown
|
page read and write
|
||
|
783E000
|
unkown
|
page read and write
|
||
|
91D2000
|
unkown
|
page read and write
|
||
|
C622000
|
unkown
|
page read and write
|
||
|
4D0D000
|
unkown
|
page read and write
|
||
|
7FF5710F1000
|
unkown
|
page readonly
|
||
|
A447000
|
unkown
|
page read and write
|
||
|
7FF571034000
|
unkown
|
page readonly
|
||
|
A430000
|
unkown
|
page read and write
|
||
|
F650000
|
heap
|
page read and write
|
||
|
325D000
|
stack
|
page read and write
|
||
|
8F30000
|
unkown
|
page read and write
|
||
|
7821000
|
unkown
|
page read and write
|
||
|
B1D0000
|
unkown
|
page readonly
|
||
|
4DD0000
|
unkown
|
page read and write
|
||
|
7FF570E4C000
|
unkown
|
page readonly
|
||
|
AB10000
|
unkown
|
page read and write
|
||
|
1085B000
|
unkown
|
page read and write
|
||
|
85FF000
|
unkown
|
page read and write
|
||
|
2C1F4C00000
|
heap
|
page read and write
|
||
|
8582000
|
unkown
|
page read and write
|
||
|
9089000
|
unkown
|
page read and write
|
||
|
7FF570DC6000
|
unkown
|
page readonly
|
||
|
7FF5706FE000
|
unkown
|
page readonly
|
||
|
7FF570D13000
|
unkown
|
page readonly
|
||
|
10794000
|
unkown
|
page read and write
|
||
|
9258000
|
unkown
|
page read and write
|
||
|
C6D2000
|
unkown
|
page read and write
|
||
|
7FF570A32000
|
unkown
|
page readonly
|
||
|
8578000
|
unkown
|
page read and write
|
||
|
842E000
|
unkown
|
page read and write
|
||
|
2C1F4AD5000
|
heap
|
page read and write
|
||
|
7FF5705E9000
|
unkown
|
page readonly
|
||
|
8F3B000
|
unkown
|
page read and write
|
||
|
7FF570C39000
|
unkown
|
page readonly
|
||
|
76B0000
|
unkown
|
page read and write
|
||
|
C383000
|
unkown
|
page read and write
|
||
|
8FFD000
|
unkown
|
page read and write
|
||
|
32D9000
|
stack
|
page read and write
|
||
|
850F000
|
unkown
|
page read and write
|
||
|
10C8B000
|
unkown
|
page read and write
|
||
|
9278000
|
unkown
|
page read and write
|
||
|
2C1F631F000
|
heap
|
page read and write
|
||
|
AB51000
|
unkown
|
page read and write
|
||
|
2C1F4AD8000
|
heap
|
page read and write
|
||
|
7E11000
|
unkown
|
page read and write
|
||
|
A588000
|
unkown
|
page read and write
|
||
|
2C1F4B11000
|
heap
|
page read and write
|
||
|
917A000
|
unkown
|
page read and write
|
||
|
2C1F6391000
|
heap
|
page read and write
|
||
|
83AC000
|
unkown
|
page read and write
|
||
|
7FF570FFE000
|
unkown
|
page readonly
|
||
|
C715000
|
unkown
|
page read and write
|
||
|
7FF570DC8000
|
unkown
|
page readonly
|
||
|
7FF570D00000
|
unkown
|
page readonly
|
||
|
2DE0000
|
unkown
|
page readonly
|
||
|
8FF1000
|
unkown
|
page read and write
|
||
|
2C1F4B4F000
|
heap
|
page read and write
|
||
|
1251000
|
unkown
|
page readonly
|
||
|
7FF570BD9000
|
unkown
|
page readonly
|
||
|
7FF570BBF000
|
unkown
|
page readonly
|
||
|
770E000
|
unkown
|
page read and write
|
||
|
8007000
|
stack
|
page read and write
|
||
|
F4D1000
|
unkown
|
page read and write
|
||
|
CB6C000
|
unkown
|
page read and write
|
||
|
786A000
|
unkown
|
page read and write
|
||
|
3832000
|
unkown
|
page read and write
|
||
|
10D2D000
|
unkown
|
page read and write
|
||
|
B08D000
|
stack
|
page read and write
|
||
|
7FF570F7B000
|
unkown
|
page readonly
|
||
|
F20000
|
heap
|
page read and write
|
||
|
10D3A000
|
unkown
|
page read and write
|
||
|
8334000
|
unkown
|
page read and write
|
||
|
9865000
|
stack
|
page read and write
|
||
|
14E0000
|
unkown
|
page readonly
|
||
|
4CF3000
|
unkown
|
page read and write
|
||
|
2C1F2AD1000
|
heap
|
page read and write
|
||
|
7FF571060000
|
unkown
|
page readonly
|
||
|
10D9A000
|
unkown
|
page read and write
|
||
|
8F09000
|
unkown
|
page read and write
|
||
|
776B000
|
unkown
|
page read and write
|
||
|
91A9000
|
unkown
|
page read and write
|
||
|
2C1F4B3C000
|
heap
|
page read and write
|
||
|
CA46000
|
unkown
|
page read and write
|
||
|
2C1F2AEF000
|
heap
|
page read and write
|
||
|
2C1F4BF5000
|
heap
|
page read and write
|
||
|
7FF57100A000
|
unkown
|
page readonly
|
||
|
2DB0000
|
unkown
|
page read and write
|
||
|
AB97000
|
unkown
|
page read and write
|
||
|
C6FB000
|
unkown
|
page read and write
|
||
|
7FF570BCB000
|
unkown
|
page readonly
|
||
|
76E1000
|
unkown
|
page read and write
|
||
|
83A2000
|
unkown
|
page read and write
|
||
|
4D20000
|
unkown
|
page read and write
|
||
|
AB9C000
|
unkown
|
page read and write
|
||
|
127D000
|
heap
|
page read and write
|
||
|
7FF570C53000
|
unkown
|
page readonly
|
||
|
2C1F2A7A000
|
heap
|
page read and write
|
||
|
822B000
|
unkown
|
page read and write
|
||
|
819C000
|
unkown
|
page read and write
|
||
|
C620000
|
unkown
|
page read and write
|
||
|
C628000
|
unkown
|
page read and write
|
||
|
9084000
|
unkown
|
page read and write
|
||
|
EE66FFE000
|
stack
|
page read and write
|
||
|
2C1F2D85000
|
heap
|
page read and write
|
||
|
F652000
|
heap
|
page read and write
|
||
|
2C1F4BEE000
|
heap
|
page read and write
|
||
|
7F80000
|
unkown
|
page read and write
|
||
|
2C1F4A97000
|
heap
|
page read and write
|
||
|
C523000
|
unkown
|
page read and write
|
||
|
788E000
|
unkown
|
page read and write
|
||
|
2C1F4BEC000
|
heap
|
page read and write
|
||
|
8F39000
|
unkown
|
page read and write
|
||
|
8C60000
|
unkown
|
page readonly
|
||
|
2C1F4AAF000
|
heap
|
page read and write
|
||
|
2C1F4B01000
|
heap
|
page read and write
|
||
|
82BC000
|
unkown
|
page read and write
|
||
|
8363000
|
unkown
|
page read and write
|
||
|
860E000
|
unkown
|
page read and write
|
||
|
36C9000
|
stack
|
page read and write
|
||
|
8008000
|
stack
|
page read and write
|
||
|
2C1F2A5D000
|
heap
|
page read and write
|
||
|
C575000
|
unkown
|
page read and write
|
||
|
39C0000
|
unkown
|
page read and write
|
||
|
2C1F4AAB000
|
heap
|
page read and write
|
||
|
2C1F4BC2000
|
heap
|
page read and write
|
||
|
B007000
|
stack
|
page read and write
|
||
|
8F78000
|
unkown
|
page read and write
|
||
|
4CD8000
|
unkown
|
page read and write
|
||
|
EA60000
|
unkown
|
page read and write
|
||
|
2C1F4ABD000
|
heap
|
page read and write
|
||
|
7FF570732000
|
unkown
|
page readonly
|
||
|
C42C000
|
unkown
|
page read and write
|
||
|
7FF57101A000
|
unkown
|
page readonly
|
||
|
85A5000
|
unkown
|
page read and write
|
||
|
C250000
|
unkown
|
page readonly
|
||
|
76F8000
|
unkown
|
page read and write
|
||
|
BA70000
|
unkown
|
page readonly
|
||
|
8FDB000
|
unkown
|
page read and write
|
||
|
91A5000
|
unkown
|
page read and write
|
||
|
3819000
|
unkown
|
page read and write
|
||
|
7FF570E88000
|
unkown
|
page readonly
|
||
|
825D000
|
unkown
|
page read and write
|
||
|
8505000
|
unkown
|
page read and write
|
||
|
CA04000
|
unkown
|
page read and write
|
||
|
8447000
|
unkown
|
page read and write
|
||
|
CA09000
|
unkown
|
page read and write
|
||
|
CA85000
|
unkown
|
page read and write
|
||
|
8386000
|
unkown
|
page read and write
|
||
|
BAFF000
|
stack
|
page read and write
|
||
|
10D3D000
|
unkown
|
page read and write
|
||
|
903B000
|
unkown
|
page read and write
|
||
|
107BC000
|
unkown
|
page read and write
|
||
|
98EC000
|
stack
|
page read and write
|
||
|
7FF570D33000
|
unkown
|
page readonly
|
||
|
7FF571164000
|
unkown
|
page readonly
|
||
|
906B000
|
unkown
|
page read and write
|
||
|
782E000
|
unkown
|
page read and write
|
||
|
2C1F2A84000
|
heap
|
page read and write
|
||
|
8F51000
|
unkown
|
page read and write
|
||
|
2C1F4B15000
|
heap
|
page read and write
|
||
|
CB4D000
|
unkown
|
page read and write
|
||
|
9086000
|
unkown
|
page read and write
|
||
|
1248000
|
heap
|
page read and write
|
||
|
CA3C000
|
unkown
|
page read and write
|
||
|
2C1F2A78000
|
heap
|
page read and write
|
||
|
9089000
|
unkown
|
page read and write
|
||
|
128E000
|
heap
|
page read and write
|
||
|
2C1F2A45000
|
heap
|
page read and write
|
||
|
2C1F631E000
|
heap
|
page read and write
|
||
|
B7B7000
|
stack
|
page read and write
|
||
|
14E0000
|
unkown
|
page readonly
|
||
|
3834000
|
unkown
|
page read and write
|
||
|
2C1F4B4F000
|
heap
|
page read and write
|
||
|
2C1F4A87000
|
heap
|
page read and write
|
||
|
4C83000
|
unkown
|
page read and write
|
||
|
B210000
|
unkown
|
page read and write
|
||
|
7718000
|
unkown
|
page read and write
|
||
|
C39C000
|
unkown
|
page read and write
|
||
|
38CB000
|
stack
|
page read and write
|
||
|
8EEF000
|
unkown
|
page read and write
|
||
|
8483000
|
unkown
|
page read and write
|
||
|
8C90000
|
heap
|
page read and write
|
||
|
7746000
|
unkown
|
page read and write
|
||
|
8429000
|
unkown
|
page read and write
|
||
|
8604000
|
unkown
|
page read and write
|
||
|
C40D000
|
unkown
|
page read and write
|
||
|
7FF570F5E000
|
unkown
|
page readonly
|
||
|
CB3C000
|
unkown
|
page read and write
|
||
|
2C1F2A78000
|
heap
|
page read and write
|
||
|
2C1F6317000
|
heap
|
page read and write
|
||
|
2C1F2A8D000
|
heap
|
page read and write
|
||
|
7FF570BC4000
|
unkown
|
page readonly
|
||
|
C3A6000
|
unkown
|
page read and write
|
||
|
7FF570E3C000
|
unkown
|
page readonly
|
||
|
B10E000
|
stack
|
page read and write
|
||
|
996E000
|
stack
|
page read and write
|
||
|
2C1F4EF0000
|
trusted library allocation
|
page read and write
|
||
|
7E18000
|
unkown
|
page read and write
|
||
|
90C7000
|
unkown
|
page read and write
|
||
|
908F000
|
unkown
|
page read and write
|
||
|
91AF000
|
unkown
|
page read and write
|
||
|
7DF4858E1000
|
unkown
|
page execute read
|
||
|
2C1F2AA5000
|
heap
|
page read and write
|
||
|
13DB000
|
stack
|
page read and write
|
||
|
7FF570A3C000
|
unkown
|
page readonly
|
||
|
7FF570C42000
|
unkown
|
page readonly
|
||
|
2C1F4BB9000
|
heap
|
page read and write
|
||
|
B18D000
|
stack
|
page read and write
|
||
|
B2AB000
|
stack
|
page read and write
|
||
|
C58C000
|
unkown
|
page read and write
|
||
|
2C1F2AB7000
|
heap
|
page read and write
|
||
|
8D0E000
|
unkown
|
page read and write
|
||
|
2C1F2A64000
|
heap
|
page read and write
|
||
|
2C1F4AC3000
|
heap
|
page read and write
|
||
|
81D1000
|
unkown
|
page read and write
|
||
|
772A000
|
unkown
|
page read and write
|
||
|
C893000
|
unkown
|
page read and write
|
||
|
7FF570F89000
|
unkown
|
page readonly
|
||
|
3772000
|
unkown
|
page read and write
|
||
|
2C1F4B17000
|
heap
|
page read and write
|
||
|
10D90000
|
unkown
|
page read and write
|
||
|
B9BB000
|
stack
|
page read and write
|
||
|
2C1F4BC5000
|
heap
|
page read and write
|
||
|
7798000
|
unkown
|
page read and write
|
||
|
8433000
|
unkown
|
page read and write
|
||
|
C68B000
|
unkown
|
page read and write
|
||
|
CB34000
|
unkown
|
page read and write
|
||
|
C562000
|
unkown
|
page read and write
|
||
|
7FF570F17000
|
unkown
|
page readonly
|
||
|
7FF570E17000
|
unkown
|
page readonly
|
||
|
7FF570A21000
|
unkown
|
page readonly
|
||
|
4C6B000
|
unkown
|
page read and write
|
||
|
2C1F4B39000
|
heap
|
page read and write
|
||
|
7D00000
|
unkown
|
page read and write
|
||
|
C581000
|
unkown
|
page read and write
|
||
|
909F000
|
unkown
|
page read and write
|
||
|
8F81000
|
unkown
|
page read and write
|
||
|
2D50000
|
unkown
|
page read and write
|
||
|
4C99000
|
unkown
|
page read and write
|
||
|
4D01000
|
unkown
|
page read and write
|
||
|
4C40000
|
unkown
|
page read and write
|
||
|
3743000
|
stack
|
page read and write
|
||
|
2C1F2AF8000
|
heap
|
page read and write
|
||
|
A533000
|
unkown
|
page read and write
|
||
|
2C1F63AE000
|
heap
|
page read and write
|
||
|
81AE000
|
unkown
|
page read and write
|
||
|
91FD000
|
unkown
|
page read and write
|
||
|
862C000
|
unkown
|
page read and write
|
||
|
A4AF000
|
unkown
|
page read and write
|
||
|
76ED000
|
unkown
|
page read and write
|
||
|
91A1000
|
unkown
|
page read and write
|
||
|
C7CC000
|
unkown
|
page read and write
|
||
|
9236000
|
unkown
|
page read and write
|
||
|
380B000
|
unkown
|
page read and write
|
||
|
C6FE000
|
unkown
|
page read and write
|
||
|
335F000
|
stack
|
page read and write
|
||
|
90E2000
|
unkown
|
page read and write
|
||
|
10D7D000
|
unkown
|
page read and write
|
||
|
2C1F6375000
|
heap
|
page read and write
|
||
|
7FF570BD4000
|
unkown
|
page readonly
|
||
|
A42A000
|
unkown
|
page read and write
|
||
|
A3AA000
|
unkown
|
page read and write
|
||
|
84A1000
|
unkown
|
page read and write
|
||
|
C616000
|
unkown
|
page read and write
|
||
|
2C1F2AAA000
|
heap
|
page read and write
|
||
|
7714000
|
unkown
|
page read and write
|
||
|
12A9000
|
heap
|
page read and write
|
||
|
7FF570D0B000
|
unkown
|
page readonly
|
||
|
2C1F4B09000
|
heap
|
page read and write
|
||
|
A116000
|
stack
|
page read and write
|
||
|
830C000
|
unkown
|
page read and write
|
||
|
F516000
|
unkown
|
page read and write
|
||
|
2C1F4BAF000
|
heap
|
page read and write
|
||
|
3845000
|
unkown
|
page read and write
|
||
|
91DD000
|
unkown
|
page read and write
|
||
|
82D5000
|
unkown
|
page read and write
|
||
|
7FF570E7B000
|
unkown
|
page readonly
|
||
|
C50A000
|
unkown
|
page read and write
|
||
|
85AF000
|
unkown
|
page read and write
|
||
|
7FF57107C000
|
unkown
|
page readonly
|
||
|
EE6757B000
|
stack
|
page read and write
|
||
|
C24F000
|
stack
|
page read and write
|
||
|
8EE8000
|
unkown
|
page read and write
|
||
|
7741000
|
unkown
|
page read and write
|
||
|
861D000
|
unkown
|
page read and write
|
||
|
7E39000
|
unkown
|
page read and write
|
||
|
C436000
|
unkown
|
page read and write
|
||
|
90B8000
|
unkown
|
page read and write
|
||
|
C5AA000
|
unkown
|
page read and write
|
||
|
B7C0000
|
unkown
|
page read and write
|
||
|
C416000
|
unkown
|
page read and write
|
||
|
A404000
|
unkown
|
page read and write
|
||
|
7FF570AD5000
|
unkown
|
page readonly
|
||
|
12FD000
|
heap
|
page read and write
|
||
|
EE66EFE000
|
stack
|
page read and write
|
||
|
8E28000
|
unkown
|
page read and write
|
||
|
7FF570609000
|
unkown
|
page readonly
|
||
|
9096000
|
unkown
|
page read and write
|
||
|
7F40000
|
unkown
|
page readonly
|
||
|
91CC000
|
unkown
|
page read and write
|
||
|
F61E000
|
stack
|
page read and write
|
||
|
4D02000
|
unkown
|
page read and write
|
||
|
C65F000
|
unkown
|
page read and write
|
||
|
C5A5000
|
unkown
|
page read and write
|
||
|
7FF570FE2000
|
unkown
|
page readonly
|
||
|
8FB3000
|
unkown
|
page read and write
|
||
|
9EED000
|
stack
|
page read and write
|
||
|
8F94000
|
unkown
|
page read and write
|
||
|
2C1F4ACD000
|
heap
|
page read and write
|
||
|
7FF57112B000
|
unkown
|
page readonly
|
||
|
786D000
|
unkown
|
page read and write
|
||
|
916A000
|
unkown
|
page read and write
|
||
|
7FF570E1B000
|
unkown
|
page readonly
|
||
|
2C1F6321000
|
heap
|
page read and write
|
||
|
91D9000
|
unkown
|
page read and write
|
||
|
76D2000
|
unkown
|
page read and write
|
||
|
8309000
|
unkown
|
page read and write
|
||
|
7FF570C86000
|
unkown
|
page readonly
|
||
|
C3B2000
|
unkown
|
page read and write
|
||
|
3256000
|
stack
|
page read and write
|
||
|
A3FD000
|
unkown
|
page read and write
|
||
|
8F53000
|
unkown
|
page read and write
|
||
|
7FF570D75000
|
unkown
|
page readonly
|
||
|
C70D000
|
unkown
|
page read and write
|
||
|
844C000
|
unkown
|
page read and write
|
||
|
C4C2000
|
unkown
|
page read and write
|
||
|
7FF570D99000
|
unkown
|
page readonly
|
||
|
7FF570C83000
|
unkown
|
page readonly
|
||
|
2C1F4B53000
|
heap
|
page read and write
|
||
|
383A000
|
unkown
|
page read and write
|
||
|
7FF570FCE000
|
unkown
|
page readonly
|
||
|
C497000
|
unkown
|
page read and write
|
||
|
9F9E000
|
stack
|
page read and write
|
||
|
9266000
|
unkown
|
page read and write
|
||
|
C6D2000
|
unkown
|
page read and write
|
||
|
7FF570F22000
|
unkown
|
page readonly
|
||
|
7D32000
|
unkown
|
page read and write
|
||
|
85E9000
|
unkown
|
page read and write
|
||
|
7CF0000
|
unkown
|
page read and write
|
||
|
76E5000
|
unkown
|
page read and write
|
||
|
924C000
|
unkown
|
page read and write
|
||
|
2C1F4B2B000
|
heap
|
page read and write
|
||
|
8FD1000
|
unkown
|
page read and write
|
||
|
2C1F4AD8000
|
heap
|
page read and write
|
||
|
ABA8000
|
unkown
|
page read and write
|
||
|
10C38000
|
unkown
|
page read and write
|
||
|
37C3000
|
unkown
|
page read and write
|
||
|
2C1F4AF1000
|
heap
|
page read and write
|
||
|
89A0000
|
unkown
|
page readonly
|
||
|
2C1F4C0C000
|
heap
|
page read and write
|
||
|
9183000
|
unkown
|
page read and write
|
||
|
10CE6000
|
unkown
|
page read and write
|
||
|
10CEC000
|
unkown
|
page read and write
|
||
|
9B64000
|
unkown
|
page read and write
|
||
|
91C6000
|
unkown
|
page read and write
|
||
|
7FF5711D6000
|
unkown
|
page readonly
|
||
|
90C1000
|
unkown
|
page read and write
|
||
|
C642000
|
unkown
|
page read and write
|
||
|
2E13000
|
heap
|
page read and write
|
||
|
C604000
|
unkown
|
page read and write
|
||
|
8BA0000
|
unkown
|
page read and write
|
||
|
2D5B000
|
unkown
|
page read and write
|
||
|
10DB3000
|
unkown
|
page read and write
|
||
|
9214000
|
unkown
|
page read and write
|
||
|
34DB000
|
stack
|
page read and write
|
||
|
9EEF000
|
stack
|
page read and write
|
||
|
4D3C000
|
unkown
|
page read and write
|
||
|
C55A000
|
unkown
|
page read and write
|
||
|
8629000
|
unkown
|
page read and write
|
||
|
2C1F4B81000
|
heap
|
page read and write
|
||
|
9287000
|
unkown
|
page read and write
|
||
|
99C0000
|
unkown
|
page read and write
|
||
|
8249000
|
unkown
|
page read and write
|
||
|
CB3F000
|
unkown
|
page read and write
|
||
|
2C1F4AB5000
|
heap
|
page read and write
|
||
|
91D2000
|
unkown
|
page read and write
|
||
|
C4BA000
|
unkown
|
page read and write
|
||
|
7FF570F80000
|
unkown
|
page readonly
|
||
|
B62D000
|
stack
|
page read and write
|
||
|
7FF570E5D000
|
unkown
|
page readonly
|
||
|
91EE000
|
unkown
|
page read and write
|
||
|
8442000
|
unkown
|
page read and write
|
||
|
C9D1000
|
unkown
|
page read and write
|
||
|
2C1F2A50000
|
heap
|
page read and write
|
||
|
C58F000
|
unkown
|
page read and write
|
||
|
87AB000
|
stack
|
page read and write
|
||
|
A050000
|
unkown
|
page readonly
|
||
|
2C1F4B80000
|
heap
|
page read and write
|
||
|
939D000
|
stack
|
page read and write
|
||
|
9273000
|
unkown
|
page read and write
|
||
|
84A6000
|
unkown
|
page read and write
|
||
|
7FF57111C000
|
unkown
|
page readonly
|
||
|
91B5000
|
unkown
|
page read and write
|
||
|
4CDC000
|
unkown
|
page read and write
|
||
|
7D60000
|
unkown
|
page read and write
|
||
|
7F3E000
|
stack
|
page read and write
|
||
|
7FF571159000
|
unkown
|
page readonly
|
||
|
10CCA000
|
unkown
|
page read and write
|
||
|
2C1F2AB7000
|
heap
|
page read and write
|
||
|
7FF570F9C000
|
unkown
|
page readonly
|
||
|
C3EC000
|
unkown
|
page read and write
|
||
|
10C0E000
|
unkown
|
page read and write
|
||
|
7FF570FBB000
|
unkown
|
page readonly
|
||
|
10D16000
|
unkown
|
page read and write
|
||
|
7FF570DA4000
|
unkown
|
page readonly
|
||
|
3370000
|
unkown
|
page read and write
|
||
|
2C1F2A86000
|
heap
|
page read and write
|
||
|
3843000
|
unkown
|
page read and write
|
||
|
9145000
|
unkown
|
page read and write
|
||
|
C9ED000
|
unkown
|
page read and write
|
||
|
38D0000
|
unkown
|
page readonly
|
||
|
7FF570FEE000
|
unkown
|
page readonly
|
||
|
9A6D000
|
stack
|
page read and write
|
||
|
C647000
|
unkown
|
page read and write
|
||
|
F4C4000
|
unkown
|
page read and write
|
||
|
CA8F000
|
unkown
|
page read and write
|
||
|
C416000
|
unkown
|
page read and write
|
||
|
7FF570F47000
|
unkown
|
page readonly
|
||
|
12BA000
|
heap
|
page read and write
|
||
|
2C1F63A3000
|
heap
|
page read and write
|
||
|
1108000
|
unkown
|
page read and write
|
||
|
2C1F4AB5000
|
heap
|
page read and write
|
||
|
769E000
|
unkown
|
page read and write
|
||
|
4D70000
|
unkown
|
page read and write
|
||
|
CAC3000
|
unkown
|
page read and write
|
||
|
925A000
|
unkown
|
page read and write
|
||
|
CAC7000
|
unkown
|
page read and write
|
||
|
C6F5000
|
unkown
|
page read and write
|
||
|
13DA000
|
stack
|
page read and write
|
||
|
1251000
|
unkown
|
page readonly
|
||
|
7FF571098000
|
unkown
|
page readonly
|
||
|
4CD4000
|
unkown
|
page read and write
|
||
|
2C1F2AFC000
|
heap
|
page read and write
|
||
|
77A0000
|
unkown
|
page read and write
|
||
|
8500000
|
unkown
|
page read and write
|
||
|
2D54000
|
unkown
|
page read and write
|
||
|
2C1F4BD7000
|
heap
|
page read and write
|
||
|
10CEA000
|
unkown
|
page read and write
|
||
|
849C000
|
unkown
|
page read and write
|
||
|
1347000
|
heap
|
page read and write
|
||
|
CAC7000
|
unkown
|
page read and write
|
||
|
2C1F4BF9000
|
heap
|
page read and write
|
||
|
8F34000
|
unkown
|
page read and write
|
||
|
926F000
|
unkown
|
page read and write
|
||
|
2C1F4A85000
|
heap
|
page read and write
|
||
|
7FF570BCE000
|
unkown
|
page readonly
|
||
|
907B000
|
unkown
|
page read and write
|
||
|
2C1F2A45000
|
heap
|
page read and write
|
||
|
7FF570B90000
|
unkown
|
page readonly
|
||
|
826E000
|
unkown
|
page read and write
|
||
|
9262000
|
unkown
|
page read and write
|
||
|
107E9000
|
unkown
|
page read and write
|
||
|
CA85000
|
unkown
|
page read and write
|
||
|
911C000
|
unkown
|
page read and write
|
||
|
14DF000
|
stack
|
page read and write
|
||
|
7FF570CC8000
|
unkown
|
page readonly
|
||
|
10C42000
|
unkown
|
page read and write
|
||
|
2C1F4AA3000
|
heap
|
page read and write
|
||
|
7E50000
|
unkown
|
page readonly
|
||
|
7FF57117A000
|
unkown
|
page readonly
|
||
|
B00F000
|
stack
|
page read and write
|
||
|
EE6727E000
|
stack
|
page read and write
|
||
|
12B8000
|
heap
|
page read and write
|
||
|
83CF000
|
unkown
|
page read and write
|
||
|
2CC0000
|
unkown
|
page readonly
|
||
|
7905000
|
stack
|
page read and write
|
||
|
840B000
|
unkown
|
page read and write
|
||
|
9226000
|
unkown
|
page read and write
|
||
|
8FF5000
|
unkown
|
page read and write
|
||
|
7FF570EB6000
|
unkown
|
page readonly
|
||
|
2C1F4B81000
|
heap
|
page read and write
|
||
|
2C1F4BDF000
|
heap
|
page read and write
|
||
|
7FF570D06000
|
unkown
|
page readonly
|
||
|
7FF570F95000
|
unkown
|
page readonly
|
||
|
7D20000
|
unkown
|
page read and write
|
||
|
4CD0000
|
unkown
|
page read and write
|
||
|
77F3000
|
unkown
|
page read and write
|
||
|
2C1F4C1F000
|
heap
|
page read and write
|
||
|
9AEB000
|
stack
|
page read and write
|
||
|
2C1F4A83000
|
heap
|
page read and write
|
||
|
7FF570C96000
|
unkown
|
page readonly
|
||
|
8EA3000
|
unkown
|
page read and write
|
||
|
2C1F2A49000
|
heap
|
page read and write
|
||
|
831B000
|
unkown
|
page read and write
|
||
|
2C1F4B30000
|
heap
|
page read and write
|
||
|
7FF570F6B000
|
unkown
|
page readonly
|
||
|
7FF570B6A000
|
unkown
|
page readonly
|
||
|
96D0000
|
unkown
|
page readonly
|
||
|
C991000
|
unkown
|
page read and write
|
||
|
7FF570E52000
|
unkown
|
page readonly
|
||
|
4D10000
|
unkown
|
page read and write
|
||
|
8FB5000
|
unkown
|
page read and write
|
||
|
2C1F2AC2000
|
heap
|
page read and write
|
||
|
C6B1000
|
unkown
|
page read and write
|
||
|
CA7F000
|
unkown
|
page read and write
|
||
|
91CC000
|
unkown
|
page read and write
|
||
|
10BF0000
|
unkown
|
page read and write
|
||
|
1200000
|
unkown
|
page read and write
|
||
|
7FF570E21000
|
unkown
|
page readonly
|
||
|
8258000
|
unkown
|
page read and write
|
||
|
C473000
|
unkown
|
page read and write
|
||
|
C3FB000
|
unkown
|
page read and write
|
||
|
91A3000
|
unkown
|
page read and write
|
||
|
7FF570722000
|
unkown
|
page readonly
|
||
|
7FF570B9A000
|
unkown
|
page readonly
|
||
|
91F9000
|
unkown
|
page read and write
|
||
|
8ADE000
|
stack
|
page read and write
|
||
|
BB00000
|
unkown
|
page read and write
|
||
|
4CE9000
|
unkown
|
page read and write
|
||
|
C360000
|
unkown
|
page read and write
|
||
|
CB29000
|
unkown
|
page read and write
|
||
|
76F3000
|
unkown
|
page read and write
|
||
|
AD46000
|
unkown
|
page read and write
|
||
|
CAB1000
|
unkown
|
page read and write
|
||
|
C399000
|
unkown
|
page read and write
|
||
|
C484000
|
unkown
|
page read and write
|
||
|
838E000
|
unkown
|
page read and write
|
||
|
C597000
|
unkown
|
page read and write
|
||
|
8316000
|
unkown
|
page read and write
|
||
|
C5C3000
|
unkown
|
page read and write
|
||
|
81A4000
|
unkown
|
page read and write
|
||
|
8596000
|
unkown
|
page read and write
|
||
|
7DF4858B1000
|
unkown
|
page execute read
|
||
|
7E80000
|
unkown
|
page readonly
|
||
|
B18F000
|
stack
|
page read and write
|
||
|
A3A3000
|
unkown
|
page read and write
|
||
|
90C1000
|
unkown
|
page read and write
|
||
|
A390000
|
unkown
|
page read and write
|
||
|
90EE000
|
unkown
|
page read and write
|
||
|
C6B5000
|
unkown
|
page read and write
|
||
|
96E0000
|
unkown
|
page read and write
|
||
|
C85E000
|
unkown
|
page read and write
|
||
|
32DC000
|
stack
|
page read and write
|
||
|
37BF000
|
unkown
|
page read and write
|
||
|
2C1F4B1B000
|
heap
|
page read and write
|
||
|
2C1F4B19000
|
heap
|
page read and write
|
||
|
7E20000
|
unkown
|
page read and write
|
||
|
90CD000
|
unkown
|
page read and write
|
||
|
AB99000
|
unkown
|
page read and write
|
||
|
2C1F4A8F000
|
heap
|
page read and write
|
||
|
841F000
|
unkown
|
page read and write
|
||
|
843F000
|
unkown
|
page read and write
|
||
|
2C1F2A7F000
|
heap
|
page read and write
|
||
|
2C1F2A95000
|
heap
|
page read and write
|
||
|
859B000
|
unkown
|
page read and write
|
||
|
7FF57120C000
|
unkown
|
page readonly
|
||
|
923C000
|
unkown
|
page read and write
|
||
|
A29F000
|
stack
|
page read and write
|
||
|
2C1F4A84000
|
heap
|
page read and write
|
||
|
7FF5705E8000
|
unkown
|
page readonly
|
||
|
90CA000
|
unkown
|
page read and write
|
||
|
7FF570DB3000
|
unkown
|
page readonly
|
||
|
7FF57072D000
|
unkown
|
page readonly
|
||
|
2C1F2AC9000
|
heap
|
page read and write
|
||
|
82AD000
|
unkown
|
page read and write
|
||
|
F502000
|
unkown
|
page read and write
|
||
|
2C1F4A96000
|
heap
|
page read and write
|
||
|
7FF570707000
|
unkown
|
page readonly
|
||
|
CB0B000
|
unkown
|
page read and write
|
||
|
3459000
|
stack
|
page read and write
|
||
|
81A9000
|
unkown
|
page read and write
|
||
|
908F000
|
unkown
|
page read and write
|
||
|
7FF570C71000
|
unkown
|
page readonly
|
||
|
91C4000
|
unkown
|
page read and write
|
||
|
926A000
|
unkown
|
page read and write
|
||
|
8294000
|
unkown
|
page read and write
|
||
|
7FF57073A000
|
unkown
|
page readonly
|
||
|
8EC3000
|
unkown
|
page read and write
|
||
|
10DB6000
|
unkown
|
page read and write
|
||
|
2C1F4C0D000
|
heap
|
page read and write
|
||
|
F650000
|
heap
|
page read and write
|
||
|
2C1F2A41000
|
heap
|
page read and write
|
||
|
1870000
|
unkown
|
page readonly
|
||
|
2C1F4AD8000
|
heap
|
page read and write
|
||
|
10D16000
|
unkown
|
page read and write
|
||
|
90D7000
|
unkown
|
page read and write
|
||
|
1342000
|
heap
|
page read and write
|
||
|
841A000
|
unkown
|
page read and write
|
||
|
A510000
|
unkown
|
page read and write
|
||
|
2C1F2A88000
|
heap
|
page read and write
|
||
|
C397000
|
unkown
|
page read and write
|
||
|
CAEA000
|
unkown
|
page read and write
|
||
|
7FF570F8F000
|
unkown
|
page readonly
|
||
|
7BF0000
|
unkown
|
page read and write
|
||
|
B9BB000
|
stack
|
page read and write
|
||
|
91E6000
|
unkown
|
page read and write
|
||
|
A41A000
|
unkown
|
page read and write
|
||
|
8534000
|
unkown
|
page read and write
|
||
|
10856000
|
unkown
|
page read and write
|
||
|
9202000
|
unkown
|
page read and write
|
||
|
8ECC000
|
unkown
|
page read and write
|
||
|
8F47000
|
unkown
|
page read and write
|
||
|
2C1F4ED0000
|
trusted library allocation
|
page read and write
|
||
|
A44F000
|
unkown
|
page read and write
|
||
|
91C0000
|
unkown
|
page read and write
|
||
|
2C1F63B1000
|
heap
|
page read and write
|
||
|
10D36000
|
unkown
|
page read and write
|
||
|
C52A000
|
unkown
|
page read and write
|
||
|
2C1F63B2000
|
heap
|
page read and write
|
||
|
7FF5711FF000
|
unkown
|
page readonly
|
||
|
B1E0000
|
unkown
|
page read and write
|
||
|
2C1F4EC0000
|
trusted library allocation
|
page read and write
|
||
|
8299000
|
unkown
|
page read and write
|
||
|
2C1F2AED000
|
heap
|
page read and write
|
||
|
7DF4858C0000
|
unkown
|
page readonly
|
||
|
2C1F2ADD000
|
heap
|
page read and write
|
||
|
38C9000
|
stack
|
page read and write
|
||
|
916C000
|
unkown
|
page read and write
|
||
|
9075000
|
unkown
|
page read and write
|
||
|
834D000
|
unkown
|
page read and write
|
||
|
924D000
|
unkown
|
page read and write
|
||
|
91B6000
|
unkown
|
page read and write
|
||
|
33C0000
|
unkown
|
page readonly
|
||
|
2C1F2ACD000
|
heap
|
page read and write
|
||
|
7FF571210000
|
unkown
|
page readonly
|
||
|
2E10000
|
heap
|
page read and write
|
||
|
7FF571048000
|
unkown
|
page readonly
|
||
|
1321000
|
heap
|
page read and write
|
||
|
8B60000
|
unkown
|
page readonly
|
||
|
8389000
|
unkown
|
page read and write
|
||
|
BEB0000
|
unkown
|
page read and write
|
||
|
EE6717F000
|
stack
|
page read and write
|
||
|
2C1F6310000
|
heap
|
page read and write
|
||
|
7FF570C81000
|
unkown
|
page readonly
|
||
|
90F6000
|
unkown
|
page read and write
|
||
|
2C1F2A4E000
|
heap
|
page read and write
|
||
|
9319000
|
stack
|
page read and write
|
||
|
91F2000
|
unkown
|
page read and write
|
||
|
9258000
|
unkown
|
page read and write
|
||
|
C758000
|
unkown
|
page read and write
|
||
|
76F6000
|
unkown
|
page read and write
|
||
|
9015000
|
unkown
|
page read and write
|
||
|
C3DE000
|
unkown
|
page read and write
|
||
|
ABAE000
|
unkown
|
page read and write
|
||
|
C694000
|
unkown
|
page read and write
|
||
|
2C1F2AFB000
|
heap
|
page read and write
|
||
|
7FF570F3B000
|
unkown
|
page readonly
|
||
|
8F2A000
|
unkown
|
page read and write
|
||
|
1317000
|
heap
|
page read and write
|
||
|
2C1F4AAB000
|
heap
|
page read and write
|
||
|
10D29000
|
unkown
|
page read and write
|
||
|
F4A0000
|
unkown
|
page read and write
|
||
|
E3EF000
|
stack
|
page read and write
|
||
|
ABB9000
|
unkown
|
page read and write
|
||
|
C60C000
|
unkown
|
page read and write
|
||
|
3558000
|
stack
|
page read and write
|
||
|
C6AE000
|
unkown
|
page read and write
|
||
|
10D40000
|
unkown
|
page read and write
|
||
|
AE05000
|
unkown
|
page read and write
|
||
|
2C1F4BA4000
|
heap
|
page read and write
|
||
|
7794000
|
unkown
|
page read and write
|
||
|
2C1F2AF2000
|
heap
|
page read and write
|
||
|
8F14000
|
unkown
|
page read and write
|
||
|
CAF7000
|
unkown
|
page read and write
|
||
|
5600000
|
unkown
|
page write copy
|
||
|
81E0000
|
unkown
|
page read and write
|
||
|
2C1F4B2D000
|
heap
|
page read and write
|
||
|
CA46000
|
unkown
|
page read and write
|
||
|
76B9000
|
unkown
|
page read and write
|
||
|
10C7C000
|
unkown
|
page read and write
|
||
|
2C1F6399000
|
heap
|
page read and write
|
||
|
7FF570D46000
|
unkown
|
page readonly
|
||
|
CA06000
|
unkown
|
page read and write
|
||
|
9195000
|
unkown
|
page read and write
|
||
|
14D8000
|
stack
|
page read and write
|
||
|
7FF571196000
|
unkown
|
page readonly
|
||
|
7695000
|
unkown
|
page read and write
|
||
|
7FF570F31000
|
unkown
|
page readonly
|
||
|
AD2C000
|
unkown
|
page read and write
|
||
|
2C1F4C52000
|
heap
|
page read and write
|
||
|
9281000
|
unkown
|
page read and write
|
||
|
C4DF000
|
unkown
|
page read and write
|
||
|
82C1000
|
unkown
|
page read and write
|
||
|
F50F000
|
unkown
|
page read and write
|
||
|
7FF570C7D000
|
unkown
|
page readonly
|
||
|
2C1F6372000
|
heap
|
page read and write
|
||
|
2C1F2A87000
|
heap
|
page read and write
|
||
|
A3C8000
|
unkown
|
page read and write
|
||
|
C9D0000
|
unkown
|
page read and write
|
||
|
8B5E000
|
stack
|
page read and write
|
||
|
8357000
|
unkown
|
page read and write
|
||
|
2C1F2ABB000
|
heap
|
page read and write
|
||
|
7FF57119B000
|
unkown
|
page readonly
|
||
|
C744000
|
unkown
|
page read and write
|
||
|
7FF570CE2000
|
unkown
|
page readonly
|
||
|
2C1F2ABD000
|
heap
|
page read and write
|
||
|
C422000
|
unkown
|
page read and write
|
||
|
10C75000
|
unkown
|
page read and write
|
||
|
1356000
|
heap
|
page read and write
|
||
|
4C87000
|
unkown
|
page read and write
|
||
|
909B000
|
unkown
|
page read and write
|
||
|
2C1F4BD6000
|
heap
|
page read and write
|
||
|
7FF5710C5000
|
unkown
|
page readonly
|
||
|
2C1F2A57000
|
heap
|
page read and write
|
||
|
A408000
|
unkown
|
page read and write
|
||
|
7FF5710B4000
|
unkown
|
page readonly
|
||
|
8F22000
|
unkown
|
page read and write
|
||
|
C8CB000
|
unkown
|
page read and write
|
||
|
8F7C000
|
unkown
|
page read and write
|
||
|
90E4000
|
unkown
|
page read and write
|
||
|
82B2000
|
unkown
|
page read and write
|
||
|
7FF570C3B000
|
unkown
|
page readonly
|
||
|
12E6000
|
heap
|
page read and write
|
||
|
949D000
|
stack
|
page read and write
|
||
|
2C1F6391000
|
heap
|
page read and write
|
||
|
C541000
|
unkown
|
page read and write
|
||
|
10FE000
|
unkown
|
page read and write
|
||
|
857D000
|
unkown
|
page read and write
|
||
|
84BF000
|
unkown
|
page read and write
|
||
|
5733000
|
unkown
|
page read and write
|
||
|
7FF570C48000
|
unkown
|
page readonly
|
||
|
7FF570712000
|
unkown
|
page readonly
|
||
|
7FF57118E000
|
unkown
|
page readonly
|
||
|
2C1F4BAC000
|
heap
|
page read and write
|
||
|
7D38000
|
unkown
|
page read and write
|
||
|
145E000
|
stack
|
page read and write
|
||
|
A030000
|
unkown
|
page readonly
|
||
|
8EF8000
|
unkown
|
page read and write
|
||
|
A21F000
|
stack
|
page read and write
|
||
|
7FF5711D0000
|
unkown
|
page readonly
|
||
|
EE66F7E000
|
stack
|
page read and write
|
||
|
76D7000
|
unkown
|
page read and write
|
||
|
B6BC000
|
stack
|
page read and write
|
||
|
7774000
|
unkown
|
page read and write
|
||
|
4DA0000
|
unkown
|
page read and write
|
||
|
C3E6000
|
unkown
|
page read and write
|
||
|
4C43000
|
unkown
|
page read and write
|
||
|
2C1F2A98000
|
heap
|
page read and write
|
||
|
ADFC000
|
unkown
|
page read and write
|
||
|
C70A000
|
unkown
|
page read and write
|
||
|
7FF570E4A000
|
unkown
|
page readonly
|
||
|
8537000
|
unkown
|
page read and write
|
||
|
2C1F4AD3000
|
heap
|
page read and write
|
||
|
AB50000
|
unkown
|
page read and write
|
||
|
C812000
|
unkown
|
page read and write
|
||
|
7802000
|
unkown
|
page read and write
|
||
|
2C1F2AF2000
|
heap
|
page read and write
|
||
|
1220000
|
unkown
|
page read and write
|
||
|
77E4000
|
unkown
|
page read and write
|
||
|
76FA000
|
unkown
|
page read and write
|
||
|
929E000
|
unkown
|
page read and write
|
||
|
2C1F2A8D000
|
heap
|
page read and write
|
||
|
81CC000
|
unkown
|
page read and write
|
||
|
7FF570C11000
|
unkown
|
page readonly
|
||
|
9195000
|
unkown
|
page read and write
|
||
|
7DF4858D1000
|
unkown
|
page execute read
|
||
|
B200000
|
unkown
|
page read and write
|
||
|
2C1F2A07000
|
heap
|
page read and write
|
||
|
8587000
|
unkown
|
page read and write
|
||
|
1280000
|
heap
|
page read and write
|
||
|
8D10000
|
unkown
|
page read and write
|
||
|
7FF570BFB000
|
unkown
|
page readonly
|
||
|
82A3000
|
unkown
|
page read and write
|
||
|
A3C1000
|
unkown
|
page read and write
|
||
|
A44F000
|
unkown
|
page read and write
|
||
|
C793000
|
unkown
|
page read and write
|
||
|
9266000
|
unkown
|
page read and write
|
||
|
C3A4000
|
unkown
|
page read and write
|
||
|
7FF571028000
|
unkown
|
page readonly
|
||
|
EE66E77000
|
stack
|
page read and write
|
||
|
90FB000
|
unkown
|
page read and write
|
||
|
7FF571161000
|
unkown
|
page readonly
|
||
|
C632000
|
unkown
|
page read and write
|
||
|
C6E9000
|
unkown
|
page read and write
|
||
|
C49E000
|
unkown
|
page read and write
|
||
|
8217000
|
unkown
|
page read and write
|
||
|
CB15000
|
unkown
|
page read and write
|
||
|
2C1F2BD0000
|
heap
|
page read and write
|
||
|
7FF570DC3000
|
unkown
|
page readonly
|
||
|
3816000
|
unkown
|
page read and write
|
||
|
7739000
|
unkown
|
page read and write
|
||
|
A527000
|
unkown
|
page read and write
|
||
|
7FF570BB7000
|
unkown
|
page readonly
|
||
|
A31E000
|
stack
|
page read and write
|
||
|
91C0000
|
unkown
|
page read and write
|
||
|
A3EA000
|
unkown
|
page read and write
|
||
|
CA9E000
|
unkown
|
page read and write
|
||
|
A57E000
|
unkown
|
page read and write
|
||
|
81DB000
|
unkown
|
page read and write
|
||
|
7FF570739000
|
unkown
|
page readonly
|
||
|
911C000
|
unkown
|
page read and write
|
||
|
4DD2000
|
unkown
|
page read and write
|
||
|
AF8B000
|
stack
|
page read and write
|
||
|
90A6000
|
unkown
|
page read and write
|
||
|
2C1F4B81000
|
heap
|
page read and write
|
||
|
7802000
|
unkown
|
page read and write
|
||
|
2C1F4B30000
|
heap
|
page read and write
|
||
|
3790000
|
unkown
|
page read and write
|
||
|
2DD0000
|
unkown
|
page read and write
|
||
|
8F1D000
|
unkown
|
page read and write
|
||
|
7FF571081000
|
unkown
|
page readonly
|
||
|
2C1F2A7F000
|
heap
|
page read and write
|
||
|
7735000
|
unkown
|
page read and write
|
||
|
9060000
|
unkown
|
page read and write
|
||
|
7FF570EBB000
|
unkown
|
page readonly
|
||
|
8352000
|
unkown
|
page read and write
|
||
|
7FF5711FC000
|
unkown
|
page readonly
|
||
|
7FF570C1C000
|
unkown
|
page readonly
|
||
|
CA00000
|
unkown
|
page read and write
|
||
|
C4C5000
|
unkown
|
page read and write
|
||
|
7708000
|
unkown
|
page read and write
|
||
|
82B7000
|
unkown
|
page read and write
|
||
|
3750000
|
unkown
|
page read and write
|
||
|
904B000
|
unkown
|
page read and write
|
||
|
833E000
|
unkown
|
page read and write
|
||
|
9055000
|
unkown
|
page read and write
|
||
|
A586000
|
unkown
|
page read and write
|
||
|
7FF57072A000
|
unkown
|
page readonly
|
||
|
778D000
|
unkown
|
page read and write
|
||
|
2C1F6550000
|
trusted library allocation
|
page read and write
|
||
|
A452000
|
unkown
|
page read and write
|
||
|
856F000
|
unkown
|
page read and write
|
||
|
2C1F4B01000
|
heap
|
page read and write
|
||
|
1287000
|
heap
|
page read and write
|
||
|
2C1F4A94000
|
heap
|
page read and write
|
||
|
7FF570E84000
|
unkown
|
page readonly
|
||
|
1267000
|
heap
|
page read and write
|
||
|
A4F4000
|
unkown
|
page read and write
|
||
|
2C1F4B1D000
|
heap
|
page read and write
|
||
|
A447000
|
unkown
|
page read and write
|
||
|
8F1F000
|
unkown
|
page read and write
|
||
|
4C49000
|
unkown
|
page read and write
|
||
|
3823000
|
unkown
|
page read and write
|
||
|
C37C000
|
unkown
|
page read and write
|
||
|
4C40000
|
unkown
|
page read and write
|
||
|
4D3D000
|
unkown
|
page read and write
|
||
|
9127000
|
unkown
|
page read and write
|
||
|
4D60000
|
unkown
|
page read and write
|
||
|
8492000
|
unkown
|
page read and write
|
||
|
821C000
|
unkown
|
page read and write
|
||
|
7FF570D36000
|
unkown
|
page readonly
|
||
|
CA22000
|
unkown
|
page read and write
|
||
|
83B1000
|
unkown
|
page read and write
|
||
|
9212000
|
unkown
|
page read and write
|
||
|
3847000
|
unkown
|
page read and write
|
||
|
129B000
|
heap
|
page read and write
|
||
|
2C1F2A78000
|
heap
|
page read and write
|
||
|
10C97000
|
unkown
|
page read and write
|
||
|
2C1F4AC5000
|
heap
|
page read and write
|
||
|
2E10000
|
heap
|
page read and write
|
||
|
96C0000
|
unkown
|
page readonly
|
||
|
10D08000
|
unkown
|
page read and write
|
||
|
8325000
|
unkown
|
page read and write
|
||
|
9197000
|
unkown
|
page read and write
|
||
|
9130000
|
unkown
|
page read and write
|
||
|
2C1F4B5C000
|
heap
|
page read and write
|
||
|
C9D2000
|
unkown
|
page read and write
|
||
|
4D20000
|
unkown
|
page read and write
|
||
|
7FF571037000
|
unkown
|
page readonly
|
||
|
910B000
|
unkown
|
page read and write
|
||
|
7FF561728000
|
unkown
|
page readonly
|
||
|
9296000
|
unkown
|
page read and write
|
||
|
85B4000
|
unkown
|
page read and write
|
||
|
8FF3000
|
unkown
|
page read and write
|
||
|
C682000
|
unkown
|
page read and write
|
||
|
C5C1000
|
unkown
|
page read and write
|
||
|
91AD000
|
unkown
|
page read and write
|
||
|
7FF570738000
|
unkown
|
page readonly
|
||
|
8FA4000
|
unkown
|
page read and write
|
||
|
7FF570FEB000
|
unkown
|
page readonly
|
||
|
7FF570DB1000
|
unkown
|
page readonly
|
||
|
8B8A000
|
unkown
|
page read and write
|
||
|
8FD8000
|
unkown
|
page read and write
|
||
|
9124000
|
unkown
|
page read and write
|
||
|
2C1F2A00000
|
heap
|
page read and write
|
||
|
9020000
|
unkown
|
page read and write
|
||
|
C586000
|
unkown
|
page read and write
|
||
|
2C1F4BCB000
|
heap
|
page read and write
|
||
|
ABA8000
|
unkown
|
page read and write
|
||
|
C6FB000
|
unkown
|
page read and write
|
||
|
8F0E000
|
unkown
|
page read and write
|
||
|
C558000
|
unkown
|
page read and write
|
||
|
1240000
|
heap
|
page read and write
|
||
|
7FF571182000
|
unkown
|
page readonly
|
||
|
7760000
|
unkown
|
page read and write
|
||
|
31DE000
|
stack
|
page read and write
|
||
|
10D5D000
|
unkown
|
page read and write
|
||
|
8244000
|
unkown
|
page read and write
|
||
|
C9DC000
|
unkown
|
page read and write
|
||
|
7BF0000
|
unkown
|
page read and write
|
||
|
A3B9000
|
unkown
|
page read and write
|
||
|
2C1F4C54000
|
heap
|
page read and write
|
||
|
4DD0000
|
unkown
|
page read and write
|
||
|
7FF57109E000
|
unkown
|
page readonly
|
||
|
2C1F4B84000
|
heap
|
page read and write
|
||
|
7FF570BED000
|
unkown
|
page readonly
|
||
|
B93E000
|
stack
|
page read and write
|
||
|
8235000
|
unkown
|
page read and write
|
||
|
CAD5000
|
unkown
|
page read and write
|
||
|
A51A000
|
unkown
|
page read and write
|
||
|
76AE000
|
unkown
|
page read and write
|
||
|
1302000
|
heap
|
page read and write
|
||
|
37BB000
|
unkown
|
page read and write
|
||
|
91FE000
|
unkown
|
page read and write
|
||
|
C3DB000
|
unkown
|
page read and write
|
||
|
986B000
|
stack
|
page read and write
|
||
|
37D6000
|
unkown
|
page read and write
|
||
|
7695000
|
unkown
|
page read and write
|
||
|
10D61000
|
unkown
|
page read and write
|
||
|
A01B000
|
stack
|
page read and write
|
||
|
C4F0000
|
unkown
|
page read and write
|
||
|
8FA0000
|
unkown
|
page read and write
|
||
|
2C1F4AA6000
|
heap
|
page read and write
|
||
|
2C1F4AAE000
|
heap
|
page read and write
|
||
|
7FF570C8D000
|
unkown
|
page readonly
|
||
|
9288000
|
unkown
|
page read and write
|
||
|
2C1F63B5000
|
heap
|
page read and write
|
||
|
2C1F2A5A000
|
heap
|
page read and write
|
||
|
8FF7000
|
unkown
|
page read and write
|
||
|
3770000
|
unkown
|
page read and write
|
||
|
91E2000
|
unkown
|
page read and write
|
||
|
2C1F2D80000
|
heap
|
page read and write
|
||
|
2C1F4C52000
|
heap
|
page read and write
|
||
|
7FF570A3E000
|
unkown
|
page readonly
|
||
|
C428000
|
unkown
|
page read and write
|
||
|
85BE000
|
unkown
|
page read and write
|
||
|
853C000
|
unkown
|
page read and write
|
||
|
8636000
|
unkown
|
page read and write
|
||
|
2C1F4AC8000
|
heap
|
page read and write
|
||
|
CA26000
|
unkown
|
page read and write
|
||
|
A424000
|
unkown
|
page read and write
|
||
|
B739000
|
stack
|
page read and write
|
||
|
7799000
|
unkown
|
page read and write
|
||
|
83D4000
|
unkown
|
page read and write
|
||
|
C445000
|
unkown
|
page read and write
|
||
|
2C1F4BC6000
|
heap
|
page read and write
|
||
|
10DD7000
|
unkown
|
page read and write
|
||
|
C594000
|
unkown
|
page read and write
|
||
|
2C1F4AEF000
|
heap
|
page read and write
|
||
|
7FF570D0F000
|
unkown
|
page readonly
|
||
|
832F000
|
unkown
|
page read and write
|
||
|
922C000
|
unkown
|
page read and write
|
||
|
7FF570F91000
|
unkown
|
page readonly
|
||
|
76A8000
|
unkown
|
page read and write
|
||
|
3751000
|
unkown
|
page read and write
|
||
|
7E40000
|
unkown
|
page read and write
|
||
|
8F3E000
|
unkown
|
page read and write
|
||
|
91B7000
|
unkown
|
page read and write
|
||
|
882B000
|
stack
|
page read and write
|
||
|
2C1F6322000
|
heap
|
page read and write
|
||
|
C990000
|
unkown
|
page read and write
|
||
|
7FF570BA4000
|
unkown
|
page readonly
|
||
|
9106000
|
unkown
|
page read and write
|
||
|
C715000
|
unkown
|
page read and write
|
||
|
9184000
|
unkown
|
page read and write
|
||
|
2C1F2A8D000
|
heap
|
page read and write
|
||
|
8591000
|
unkown
|
page read and write
|
||
|
7FF5710CD000
|
unkown
|
page readonly
|
||
|
85B9000
|
unkown
|
page read and write
|
||
|
2C1F2AAB000
|
heap
|
page read and write
|
||
|
10CC4000
|
unkown
|
page read and write
|
||
|
C3FF000
|
unkown
|
page read and write
|
||
|
375F000
|
unkown
|
page read and write
|
||
|
8ECC000
|
unkown
|
page read and write
|
||
|
F4DB000
|
unkown
|
page read and write
|
||
|
10DC9000
|
unkown
|
page read and write
|
||
|
832A000
|
unkown
|
page read and write
|
||
|
2C1F4F00000
|
trusted library allocation
|
page read and write
|
||
|
2C1F6391000
|
heap
|
page read and write
|
||
|
900F000
|
unkown
|
page read and write
|
||
|
902F000
|
unkown
|
page read and write
|
||
|
10C1E000
|
unkown
|
page read and write
|
||
|
2C1F2A7A000
|
heap
|
page read and write
|
||
|
95AD000
|
unkown
|
page read and write
|
||
|
2C1F631A000
|
heap
|
page read and write
|
||
|
8255000
|
unkown
|
page read and write
|
||
|
4D13000
|
unkown
|
page read and write
|
||
|
8F8A000
|
unkown
|
page read and write
|
||
|
CB65000
|
unkown
|
page read and write
|
||
|
CAF0000
|
unkown
|
page read and write
|
||
|
7FF570EE2000
|
unkown
|
page readonly
|
||
|
85EB000
|
unkown
|
page read and write
|
||
|
A50D000
|
unkown
|
page read and write
|
||
|
C61A000
|
unkown
|
page read and write
|
||
|
7FF570F38000
|
unkown
|
page readonly
|
||
|
CAE8000
|
unkown
|
page read and write
|
||
|
2C1F4B40000
|
heap
|
page read and write
|
||
|
847E000
|
unkown
|
page read and write
|
||
|
76FC000
|
unkown
|
page read and write
|
||
|
8272000
|
unkown
|
page read and write
|
||
|
CAEC000
|
unkown
|
page read and write
|
||
|
926A000
|
unkown
|
page read and write
|
||
|
8523000
|
unkown
|
page read and write
|
||
|
10CBC000
|
unkown
|
page read and write
|
||
|
8262000
|
unkown
|
page read and write
|
||
|
2C1F4BC7000
|
heap
|
page read and write
|
||
|
10CE2000
|
unkown
|
page read and write
|
||
|
35D0000
|
unkown
|
page readonly
|
||
|
4D09000
|
unkown
|
page read and write
|
||
|
8343000
|
unkown
|
page read and write
|
||
|
4C6E000
|
unkown
|
page read and write
|
||
|
2C1F6313000
|
heap
|
page read and write
|
||
|
84F6000
|
unkown
|
page read and write
|
||
|
1104000
|
unkown
|
page read and write
|
||
|
9003000
|
unkown
|
page read and write
|
||
|
2C1F4A94000
|
heap
|
page read and write
|
||
|
F61F000
|
stack
|
page read and write
|
||
|
381F000
|
unkown
|
page read and write
|
||
|
ACE7000
|
unkown
|
page read and write
|
||
|
2C1F2AE9000
|
heap
|
page read and write
|
||
|
7FF570C50000
|
unkown
|
page readonly
|
||
|
C639000
|
unkown
|
page read and write
|
||
|
8EDB000
|
unkown
|
page read and write
|
||
|
7FF5710CA000
|
unkown
|
page readonly
|
||
|
9E6E000
|
stack
|
page read and write
|
||
|
7FF5710FB000
|
unkown
|
page readonly
|
||
|
91EA000
|
unkown
|
page read and write
|
||
|
128B000
|
heap
|
page read and write
|
||
|
2C1F4A86000
|
heap
|
page read and write
|
||
|
CB09000
|
unkown
|
page read and write
|
||
|
8366000
|
unkown
|
page read and write
|
||
|
A40F000
|
unkown
|
page read and write
|
||
|
A31F000
|
stack
|
page read and write
|
||
|
1245000
|
heap
|
page read and write
|
||
|
C6DC000
|
unkown
|
page read and write
|
||
|
90E9000
|
unkown
|
page read and write
|
||
|
82DF000
|
unkown
|
page read and write
|
||
|
8F49000
|
unkown
|
page read and write
|
||
|
920C000
|
unkown
|
page read and write
|
||
|
8519000
|
unkown
|
page read and write
|
||
|
9234000
|
unkown
|
page read and write
|
||
|
1220000
|
unkown
|
page read and write
|
||
|
4D07000
|
unkown
|
page read and write
|
||
|
2C1F2A8D000
|
heap
|
page read and write
|
||
|
775C000
|
unkown
|
page read and write
|
||
|
7FF570D4B000
|
unkown
|
page readonly
|
||
|
3620000
|
unkown
|
page read and write
|
||
|
2C1F2AAD000
|
heap
|
page read and write
|
||
|
925A000
|
unkown
|
page read and write
|
||
|
10C14000
|
unkown
|
page read and write
|
||
|
8FF9000
|
unkown
|
page read and write
|
||
|
10C2C000
|
unkown
|
page read and write
|
||
|
C428000
|
unkown
|
page read and write
|
||
|
919B000
|
unkown
|
page read and write
|
||
|
CAAD000
|
unkown
|
page read and write
|
||
|
823F000
|
unkown
|
page read and write
|
||
|
145D000
|
stack
|
page read and write
|
||
|
2C1F4AF7000
|
heap
|
page read and write
|
||
|
10D8A000
|
unkown
|
page read and write
|
||
|
2C1F4B56000
|
heap
|
page read and write
|
||
|
7856000
|
unkown
|
page read and write
|
||
|
84F4000
|
unkown
|
page read and write
|
||
|
7FF570F73000
|
unkown
|
page readonly
|
||
|
8528000
|
unkown
|
page read and write
|
||
|
90D6000
|
unkown
|
page read and write
|
||
|
82DA000
|
unkown
|
page read and write
|
||
|
7FF571166000
|
unkown
|
page readonly
|
||
|
7FF570DD6000
|
unkown
|
page readonly
|
||
|
8190000
|
unkown
|
page read and write
|
||
|
C3CB000
|
unkown
|
page read and write
|
||
|
7FF570E8F000
|
unkown
|
page readonly
|
||
|
3559000
|
stack
|
page read and write
|
||
|
2C1F4AD0000
|
heap
|
page read and write
|
||
|
81BD000
|
unkown
|
page read and write
|
||
|
ADF4000
|
unkown
|
page read and write
|
||
|
872F000
|
stack
|
page read and write
|
||
|
B62F000
|
stack
|
page read and write
|
||
|
CAA5000
|
unkown
|
page read and write
|
||
|
7FF571178000
|
unkown
|
page readonly
|
||
|
780E000
|
unkown
|
page read and write
|
||
|
AB54000
|
unkown
|
page read and write
|
||
|
3841000
|
unkown
|
page read and write
|
||
|
7FF570BF6000
|
unkown
|
page readonly
|
||
|
7FF571000000
|
unkown
|
page readonly
|
||
|
C64D000
|
unkown
|
page read and write
|
||
|
107A8000
|
unkown
|
page read and write
|
||
|
C7C4000
|
unkown
|
page read and write
|
||
|
C701000
|
unkown
|
page read and write
|
||
|
2C1F639D000
|
heap
|
page read and write
|
||
|
AD69000
|
unkown
|
page read and write
|
||
|
2C1F4C0C000
|
heap
|
page read and write
|
||
|
9026000
|
unkown
|
page read and write
|
||
|
91A1000
|
unkown
|
page read and write
|
||
|
2C1F637D000
|
heap
|
page read and write
|
||
|
774A000
|
unkown
|
page read and write
|
||
|
2C1F4AFA000
|
heap
|
page read and write
|
||
|
C9F4000
|
unkown
|
page read and write
|
||
|
1243000
|
heap
|
page read and write
|
||
|
7FF57101C000
|
unkown
|
page readonly
|
||
|
2C1F4AF7000
|
heap
|
page read and write
|
||
|
850A000
|
unkown
|
page read and write
|
||
|
AB87000
|
unkown
|
page read and write
|
||
|
8FBB000
|
unkown
|
page read and write
|
||
|
7FF5710C1000
|
unkown
|
page readonly
|
||
|
C643000
|
unkown
|
page read and write
|
||
|
7FF57110F000
|
unkown
|
page readonly
|
||
|
7FF57112F000
|
unkown
|
page readonly
|
||
|
8541000
|
unkown
|
page read and write
|
||
|
9090000
|
unkown
|
page read and write
|
||
|
C6D7000
|
unkown
|
page read and write
|
||
|
2C1F2D53000
|
heap
|
page read and write
|
||
|
F657000
|
heap
|
page read and write
|
||
|
8E91000
|
unkown
|
page read and write
|
||
|
C3AB000
|
unkown
|
page read and write
|
||
|
7D40000
|
unkown
|
page readonly
|
||
|
12C2000
|
heap
|
page read and write
|
||
|
2C1F4A8A000
|
heap
|
page read and write
|
||
|
8ED7000
|
unkown
|
page read and write
|
||
|
2C1F4AD9000
|
heap
|
page read and write
|
||
|
8488000
|
unkown
|
page read and write
|
||
|
9499000
|
stack
|
page read and write
|
||
|
2C1F631B000
|
heap
|
page read and write
|
||
|
1335000
|
heap
|
page read and write
|
||
|
7810000
|
unkown
|
page read and write
|
||
|
C4B4000
|
unkown
|
page read and write
|
||
|
7FF571149000
|
unkown
|
page readonly
|
||
|
2C1F2A74000
|
heap
|
page read and write
|
||
|
952D000
|
stack
|
page read and write
|
||
|
8F9A000
|
unkown
|
page read and write
|
||
|
189E000
|
unkown
|
page readonly
|
||
|
B10E000
|
stack
|
page read and write
|
||
|
7FF5711C6000
|
unkown
|
page readonly
|
||
|
2C1F2A78000
|
heap
|
page read and write
|
||
|
2C1F4C54000
|
heap
|
page read and write
|
||
|
9142000
|
unkown
|
page read and write
|
||
|
7824000
|
unkown
|
page read and write
|
||
|
A060000
|
unkown
|
page readonly
|
||
|
1106000
|
unkown
|
page read and write
|
||
|
8F19000
|
unkown
|
page read and write
|
||
|
A501000
|
unkown
|
page read and write
|
||
|
3640000
|
unkown
|
page read and write
|
||
|
BF39000
|
stack
|
page read and write
|
||
|
9001000
|
unkown
|
page read and write
|
||
|
9186000
|
unkown
|
page read and write
|
||
|
A3AA000
|
unkown
|
page read and write
|
||
|
91E8000
|
unkown
|
page read and write
|
||
|
2C1F4A8C000
|
heap
|
page read and write
|
||
|
84B0000
|
unkown
|
page read and write
|
||
|
2C1F639B000
|
heap
|
page read and write
|
||
|
AB8E000
|
unkown
|
page read and write
|
||
|
2C1F4B59000
|
heap
|
page read and write
|
||
|
5749000
|
unkown
|
page read and write
|
||
|
2C1F4BEA000
|
heap
|
page read and write
|
||
|
9281000
|
unkown
|
page read and write
|
||
|
A40D000
|
unkown
|
page read and write
|
||
|
8F9E000
|
unkown
|
page read and write
|
||
|
AD5D000
|
unkown
|
page read and write
|
||
|
3825000
|
unkown
|
page read and write
|
||
|
9011000
|
unkown
|
page read and write
|
||
|
C6B3000
|
unkown
|
page read and write
|
||
|
B32F000
|
stack
|
page read and write
|
||
|
76A8000
|
unkown
|
page read and write
|
||
|
9243000
|
unkown
|
page read and write
|
||
|
7FF5711F7000
|
unkown
|
page readonly
|
||
|
10C78000
|
unkown
|
page read and write
|
||
|
91ED000
|
unkown
|
page read and write
|
||
|
7DF4858C1000
|
unkown
|
page execute read
|
||
|
9193000
|
unkown
|
page read and write
|
||
|
A44C000
|
unkown
|
page read and write
|
||
|
2C1F2AF7000
|
heap
|
page read and write
|
||
|
7FF570F2A000
|
unkown
|
page readonly
|
||
|
10C08000
|
unkown
|
page read and write
|
||
|
7FF570FD1000
|
unkown
|
page readonly
|
||
|
910B000
|
unkown
|
page read and write
|
||
|
EE6767F000
|
stack
|
page read and write
|
||
|
10D4A000
|
unkown
|
page read and write
|
||
|
2C1F4B33000
|
heap
|
page read and write
|
||
|
CB18000
|
unkown
|
page read and write
|
||
|
2C1F4B2F000
|
heap
|
page read and write
|
||
|
7FF570C23000
|
unkown
|
page readonly
|
||
|
4CD6000
|
unkown
|
page read and write
|
||
|
8F62000
|
unkown
|
page read and write
|
||
|
BFBA000
|
stack
|
page read and write
|
||
|
7FF570C4E000
|
unkown
|
page readonly
|
||
|
1871000
|
unkown
|
page readonly
|
||
|
2C1F4C52000
|
heap
|
page read and write
|
||
|
2C1F4B9F000
|
heap
|
page read and write
|
||
|
CB5D000
|
unkown
|
page read and write
|
||
|
9067000
|
unkown
|
page read and write
|
||
|
2C1F4B2B000
|
heap
|
page read and write
|
||
|
CADC000
|
unkown
|
page read and write
|
||
|
90D4000
|
unkown
|
page read and write
|
||
|
8291000
|
unkown
|
page read and write
|
||
|
8609000
|
unkown
|
page read and write
|
||
|
7FF5710D5000
|
unkown
|
page readonly
|
||
|
F20000
|
heap
|
page read and write
|
||
|
7FF56172E000
|
unkown
|
page readonly
|
||
|
772A000
|
unkown
|
page read and write
|
||
|
2C1F63B6000
|
heap
|
page read and write
|
||
|
9221000
|
unkown
|
page read and write
|
||
|
CB45000
|
unkown
|
page read and write
|
||
|
C467000
|
unkown
|
page read and write
|
||
|
3759000
|
unkown
|
page read and write
|
||
|
C378000
|
unkown
|
page read and write
|
||
|
7DF4858D0000
|
unkown
|
page readonly
|
||
|
7FF5711E0000
|
unkown
|
page readonly
|
||
|
4CF7000
|
unkown
|
page read and write
|
||
|
A578000
|
unkown
|
page read and write
|
||
|
2C1F4ABF000
|
heap
|
page read and write
|
||
|
9219000
|
unkown
|
page read and write
|
||
|
2C1F2A65000
|
heap
|
page read and write
|
||
|
8B5C000
|
stack
|
page read and write
|
||
|
C3B9000
|
unkown
|
page read and write
|
||
|
8F6C000
|
unkown
|
page read and write
|
||
|
7910000
|
unkown
|
page read and write
|
||
|
9180000
|
unkown
|
page read and write
|
||
|
2C1F4B09000
|
heap
|
page read and write
|
||
|
9A6F000
|
stack
|
page read and write
|
||
|
1245000
|
heap
|
page read and write
|
||
|
374B000
|
stack
|
page read and write
|
||
|
7FF570B8D000
|
unkown
|
page readonly
|
||
|
8BA0000
|
unkown
|
page read and write
|
||
|
851E000
|
unkown
|
page read and write
|
||
|
83A7000
|
unkown
|
page read and write
|
||
|
2C1F4A8D000
|
heap
|
page read and write
|
||
|
84C9000
|
unkown
|
page read and write
|
||
|
10C49000
|
unkown
|
page read and write
|
||
|
C2DE000
|
stack
|
page read and write
|
||
|
9294000
|
unkown
|
page read and write
|
||
|
C99A000
|
unkown
|
page read and write
|
||
|
AB74000
|
unkown
|
page read and write
|
||
|
7FF570FC4000
|
unkown
|
page readonly
|
||
|
C547000
|
unkown
|
page read and write
|
||
|
2C1F4B1B000
|
heap
|
page read and write
|
||
|
7FF571120000
|
unkown
|
page readonly
|
||
|
C3CF000
|
unkown
|
page read and write
|
||
|
C721000
|
unkown
|
page read and write
|
||
|
CAE5000
|
unkown
|
page read and write
|
||
|
7FF570FFB000
|
unkown
|
page readonly
|
||
|
902B000
|
unkown
|
page read and write
|
||
|
A3A7000
|
unkown
|
page read and write
|
||
|
2C1F4BCD000
|
heap
|
page read and write
|
||
|
847A000
|
unkown
|
page read and write
|
||
|
99E0000
|
unkown
|
page read and write
|
||
|
7FF571052000
|
unkown
|
page readonly
|
||
|
8401000
|
unkown
|
page read and write
|
||
|
A3BF000
|
unkown
|
page read and write
|
||
|
8415000
|
unkown
|
page read and write
|
||
|
2C1F4B3D000
|
heap
|
page read and write
|
||
|
900B000
|
unkown
|
page read and write
|
||
|
AD39000
|
unkown
|
page read and write
|
||
|
7FF571205000
|
unkown
|
page readonly
|
||
|
10DBB000
|
unkown
|
page read and write
|
||
|
10CE6000
|
unkown
|
page read and write
|
||
|
8F2C000
|
unkown
|
page read and write
|
||
|
9262000
|
unkown
|
page read and write
|
||
|
9121000
|
unkown
|
page read and write
|
||
|
4CF9000
|
unkown
|
page read and write
|
||
|
3767000
|
unkown
|
page read and write
|
||
|
7FF5711A2000
|
unkown
|
page readonly
|
||
|
82C6000
|
unkown
|
page read and write
|
||
|
2C1F4AB5000
|
heap
|
page read and write
|
||
|
819F000
|
unkown
|
page read and write
|
||
|
37C9000
|
unkown
|
page read and write
|
||
|
CA9C000
|
unkown
|
page read and write
|
||
|
C9DC000
|
unkown
|
page read and write
|
||
|
918F000
|
unkown
|
page read and write
|
||
|
7FF570BAE000
|
unkown
|
page readonly
|
||
|
2C1F4B4F000
|
heap
|
page read and write
|
||
|
F10000
|
unkown
|
page readonly
|
||
|
87AF000
|
stack
|
page read and write
|
||
|
C5D3000
|
unkown
|
page read and write
|
||
|
2CA0000
|
unkown
|
page read and write
|
||
|
3780000
|
unkown
|
page read and write
|
||
|
7878000
|
unkown
|
page read and write
|
||
|
2C1F2A85000
|
heap
|
page read and write
|
||
|
A3C4000
|
unkown
|
page read and write
|
||
|
C407000
|
unkown
|
page read and write
|
||
|
9144000
|
unkown
|
page read and write
|
||
|
90A4000
|
unkown
|
page read and write
|
||
|
7DE0000
|
unkown
|
page readonly
|
||
|
A19F000
|
stack
|
page read and write
|
||
|
107D2000
|
unkown
|
page read and write
|
||
|
2C1F2AA1000
|
heap
|
page read and write
|
||
|
C4CD000
|
unkown
|
page read and write
|
||
|
1874000
|
unkown
|
page readonly
|
||
|
2C1F4BE1000
|
heap
|
page read and write
|
||
|
10C10000
|
unkown
|
page read and write
|
||
|
1240000
|
heap
|
page read and write
|
||
|
AB10000
|
unkown
|
page read and write
|
||
|
8320000
|
unkown
|
page read and write
|
||
|
91E8000
|
unkown
|
page read and write
|
||
|
7FF5711B2000
|
unkown
|
page readonly
|
||
|
7832000
|
unkown
|
page read and write
|
||
|
2C1F2A83000
|
heap
|
page read and write
|
||
|
CA27000
|
unkown
|
page read and write
|
||
|
77F1000
|
unkown
|
page read and write
|
||
|
7FF571133000
|
unkown
|
page readonly
|
||
|
EE671FF000
|
stack
|
page read and write
|
||
|
7DC0000
|
unkown
|
page readonly
|
||
|
380B000
|
unkown
|
page read and write
|
||
|
2C1F29F0000
|
heap
|
page read and write
|
||
|
9178000
|
unkown
|
page read and write
|
||
|
81C2000
|
unkown
|
page read and write
|
||
|
9017000
|
unkown
|
page read and write
|
||
|
7FF570FE9000
|
unkown
|
page readonly
|
||
|
7FF570CCC000
|
unkown
|
page readonly
|
||
|
2C1F4AC4000
|
heap
|
page read and write
|
||
|
83B6000
|
unkown
|
page read and write
|
||
|
2C1F63AE000
|
heap
|
page read and write
|
||
|
7907000
|
stack
|
page read and write
|
||
|
7FF570A29000
|
unkown
|
page readonly
|
||
|
927F000
|
unkown
|
page read and write
|
||
|
8FA9000
|
unkown
|
page read and write
|
||
|
8F12000
|
unkown
|
page read and write
|
||
|
CB3D000
|
unkown
|
page read and write
|
||
|
2C1F63B1000
|
heap
|
page read and write
|
||
|
82A8000
|
unkown
|
page read and write
|
||
|
7FF57106B000
|
unkown
|
page readonly
|
||
|
C910000
|
unkown
|
page read and write
|
||
|
BAFF000
|
stack
|
page read and write
|
||
|
2C1F2A9A000
|
heap
|
page read and write
|
||
|
1283000
|
heap
|
page read and write
|
||
|
7E18000
|
unkown
|
page read and write
|
||
|
85F0000
|
unkown
|
page read and write
|
||
|
81EA000
|
unkown
|
page read and write
|
||
|
C4AE000
|
unkown
|
page read and write
|
||
|
84FB000
|
unkown
|
page read and write
|
||
|
8514000
|
unkown
|
page read and write
|
||
|
8BE0000
|
unkown
|
page read and write
|
||
|
91EA000
|
unkown
|
page read and write
|
||
|
9B62000
|
unkown
|
page read and write
|
||
|
2C1F4B35000
|
heap
|
page read and write
|
||
|
10CF6000
|
unkown
|
page read and write
|
||
|
7FF570D81000
|
unkown
|
page readonly
|
||
|
C62B000
|
unkown
|
page read and write
|
||
|
2C1F4C20000
|
heap
|
page read and write
|
||
|
C757000
|
unkown
|
page read and write
|
||
|
928B000
|
unkown
|
page read and write
|
||
|
2C1F4B40000
|
heap
|
page read and write
|
||
|
90D1000
|
unkown
|
page read and write
|
||
|
7697000
|
unkown
|
page read and write
|
||
|
107A2000
|
unkown
|
page read and write
|
||
|
C655000
|
unkown
|
page read and write
|
||
|
7FF5701A7000
|
unkown
|
page readonly
|
||
|
CA52000
|
unkown
|
page read and write
|
||
|
8573000
|
unkown
|
page read and write
|
||
|
37BB000
|
unkown
|
page read and write
|
||
|
9217000
|
unkown
|
page read and write
|
||
|
7F80000
|
unkown
|
page read and write
|
||
|
C4BC000
|
unkown
|
page read and write
|
||
|
7FF570C9E000
|
unkown
|
page readonly
|
||
|
9124000
|
unkown
|
page read and write
|
||
|
2C1F2C80000
|
trusted library allocation
|
page read and write
|
||
|
2C1F2A8D000
|
heap
|
page read and write
|
||
|
2E1E000
|
heap
|
page read and write
|
||
|
9080000
|
unkown
|
page read and write
|
||
|
4C30000
|
unkown
|
page read and write
|
||
|
2C1F4AC2000
|
heap
|
page read and write
|
||
|
2C1F4BA7000
|
heap
|
page read and write
|
||
|
C4DB000
|
unkown
|
page read and write
|
||
|
AD4F000
|
unkown
|
page read and write
|
||
|
1260000
|
heap
|
page read and write
|
||
|
7FF57105B000
|
unkown
|
page readonly
|
||
|
C4CA000
|
unkown
|
page read and write
|
||
|
A3B4000
|
unkown
|
page read and write
|
||
|
9234000
|
unkown
|
page read and write
|
||
|
C99A000
|
unkown
|
page read and write
|
||
|
4CFE000
|
unkown
|
page read and write
|
There are 1686 hidden memdumps, click here to show them.
DOM / HTML
|
URL
|
Malicious
|
|
|---|---|---|
|
https://main.d3engbxc9elyir.amplifyapp.com/
|
||
|
https://main.d3engbxc9elyir.amplifyapp.com/
|