| 1 | INDX( )1(8è8..176 T14deow8Á¸{ |
|---|
| 2 | >ÎÔ¸{ |
|---|
| 3 | >ÎÔ¸{ |
|---|
| 4 | >ÎÔ¸{ |
|---|
| 5 | >ÎÔpipeline_cache8Á¸{ |
|---|
| 6 | >ÎÔ¸{ |
|---|
| 7 | >ÎÔ¸{ |
|---|
| 8 | >ÎÔ¸{ |
|---|
| 9 | >ÎÔPIPELI~18Á¸{ |
|---|
| 10 | >ÎÔ¸{ |
|---|
| 11 | >ÎÔ¸{ |
|---|
| 12 | >ÎÔ¸{ |
|---|
| 13 | >ÎÔPIPELI~1@hR8Á¸{ |
|---|
| 14 | >ÎÔ¸{ |
|---|
| 15 | >ÎÔ¸{ |
|---|
| 16 | >ÎÔ¸{ |
|---|
| 17 | >ÎÔPIPELI~18Á¸{ |
|---|
| 18 | >ÎÔ¸{ |
|---|
| 19 | >ÎÔ¸{ |
|---|
| 20 | >ÎÔ¸{ |
|---|
| 21 | >ÎÔPIPELI~14: SizeOfImage: 0x1aa000 (1744896)
|
|---|
| 22 | 1518.1514: Resource Dir: 0x14e000 LB 0x5a028
|
|---|
| 23 | 1518.1514: [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
|
|---|
| 24 | 1518.1514: [Raw version resource data: 0x14e0f0 LB 0x380, codepage 0x0 (reserved 0x0)]
|
|---|
| 25 | 1518.1514: ProductName: Microsoft® Windows® Operating System
|
|---|
| 26 | 1518.1514: ProductVersion: 6.1.7601.23796
|
|---|
| 27 | 1511514: FileVersion: 6.1.7601.23796 (win7sp1_ldr.170427-1518)
|
|---|
| 28 | 1518.1514: FileDescription: NT Layer DLL
|
|---|
| 29 | 1518.1514: \SystemRoot\System32\kernel32.dll:
|
|---|
| 30 | 1518.1514: CreationTime: 2017-05-21T11:22:36.338680700Z
|
|---|
| 31 | 1518.1514: LastWriteTime: 2017-04-28T01:10:02.307000000Z
|
|---|
| 32 | 1518.1514: ChangeTime: 2017-05-21T17:47:44.874070100Z
|
|---|
| 33 | 1518.1514: FileAttributes: 0x20
|
|---|
| 34 | 1518.1514: Size: 0x11c000
|
|---|
| 35 | 1518.1514: NT Headers: 0xe0
|
|---|
| 36 | 1518.1514: Timestamp: 0x59029713
|
|---|
| 37 | 1518514: Machine: 0x8664 - amd64
|
|---|
| 38 | 1518.1514: Timestamp: 0x59029713
|
|---|
| 39 | 1518.1514: Image Version: 6.1
|
|---|
| 40 | 1518.1514: SizeOfImage: 0x11f000 (1175552)
|
|---|
| 41 | 1518.1514: Resource Dir: 0x116000 LB 0x528
|
|---|
| 42 | 1518.1514: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
|
|---|
| 43 | 1518.1514: [Raw version resource data: 0x1160b0 LB 0x3a4, codepage 0x0 (reserved 0x0)]
|
|---|
| 44 | 1518.1514: ProductName: Microsoft® Windows® Operating System
|
|---|
| 45 | 1518.1514: ProductVersion: 6.1.01.23796
|
|---|
| 46 | 1518.1514: FileVersion: 6.1.7601.23796 (win7sp1_ldr.170427-1518)
|
|---|
| 47 | 1518.1514: FileDescription: Windows NT BASE API Client DLL
|
|---|
| 48 | 1518.1514: \SystemRoot\System32\KernelBase.dll:
|
|---|
| 49 | 1518.1514: CreationTime: 2017-05-21T11:22:36.404684500Z
|
|---|
| 50 | 1518.1514: LastWriteTime: 2017-04-28T01:10:02.307000000Z
|
|---|
| 51 | 1518.1514: ChangeTime: 2017-05-21T17:47:44.733669900Z
|
|---|
| 52 | 1518.1514: FileAttributes: 0x20
|
|---|
| 53 | 1518.1514: Size: 0x66800
|
|---|
| 54 | 1518.1514: NT Headers: 0xe8
|
|---|
| 55 | 1518.1514: imestamp: 0x59029714
|
|---|
| 56 | 1518.1514: Machine: 0x8664 - amd64
|
|---|
| 57 | 1518.1514: Timestamp: 0x59029714
|
|---|
| 58 | 1518.1514: Image Version: 6.1
|
|---|
| 59 | 1518.1514: SizeOfImage: 0x6a000 (434176)
|
|---|
| 60 | 1518.1514: Resource Dir: 0x68000 LB 0x530
|
|---|
| 61 | 1518.1514: [Version info resource found at 0x90! (ID/Name: 0x1; SubID/SubName: 0x409)]
|
|---|
| 62 | 1518.1514: [Raw version resource data: 0x680b0 LB 0x3ac, codepage 0x0 (reserved 0x0)]
|
|---|
| 63 | 1518.1514: ProductName: Microsoft® Windows® Operating System
|
|---|
| 64 | 1518.15: ProductVersion: 6.1.7601.23796
|
|---|
| 65 | 1518.1514: FileVersion: 6.1.7601.23796 (win7sp1_ldr.170427-1518)
|
|---|
| 66 | 1518.1514: FileDescription: Windows NT BASE API Client DLL
|
|---|
| 67 | 1518.1514: \SystemRoot\System32\apisetschema.dll:
|
|---|
| 68 | 1518.1514: CreationTime: 2017-05-21T11:22:35.437629100Z
|
|---|
| 69 | 1518.1514: LastWriteTime: 2017-04-28T01:09:58.126000000Z
|
|---|
| 70 | 1518.1514: ChangeTime: 2017-05-21T17:47:44.312469100Z
|
|---|
| 71 | 1518.1514: FileAttributes: 0x20
|
|---|
| 72 | 1518.1514: Size: 0x1a00
|
|---|
| 73 | 1518.1514: NT Hears: 0xc0
|
|---|
| 74 | 1518.1514: Timestamp: 0x590296af
|
|---|
| 75 | 1518.1514: Machine: 0x8664 - amd64
|
|---|
| 76 | 1518.1514: Timestamp: 0x590296af
|
|---|
| 77 | 1518.1514: Image Version: 6.1
|
|---|
| 78 | 1518.1514: SizeOfImage: 0x50000 (327680)
|
|---|
| 79 | 1518.1514: Resource Dir: 0x30000 LB 0x3f8
|
|---|
| 80 | 1518.1514: [Version info resource found at 0x48! (ID/Name: 0x1; SubID/SubName: 0x409)]
|
|---|
| 81 | 1518.1514: [Raw version resource data: 0x30060 LB 0x398, codepage 0x0 (reserved 0x0)]
|
|---|
| 82 | 1518.1514: ProductName: Microsoft® Winds® Operating System
|
|---|
| 83 | 1518.1514: ProductVersion: 6.1.7601.23796
|
|---|
| 84 | 1518.1514: FileVersion: 6.1.7601.23796 (win7sp1_ldr.170427-1518)
|
|---|
| 85 | 1518.1514: FileDescription: ApiSet Schema DLL
|
|---|
| 86 | 1518.1514: NtOpenDirectoryObject failed on \Driver: 0xc0000022
|
|---|
| 87 | 1518.1514: supR3HardenedWinFindAdversaries: 0x400
|
|---|
| 88 | 1518.1514: \SystemRoot\System32\drivers\MpFilter.sys:
|
|---|
| 89 | 1518.1514: CreationTime: 2016-08-25T07:46:12.000000000Z
|
|---|
| 90 | 1518.1514: LastWriteTime: 2016-08-25T07:46:12.000000000Z
|
|---|
| 91 | 1518.1514: ChangeTime: 2016-12-02T18:51:04.807126700Z
|
|---|
| 92 | 1518.1514: FileAttributes: 0x20
|
|---|
| 93 | 1518.1514: Size: 0x48058
|
|---|
| 94 | 1518.1514: NT Headers: 0xe8
|
|---|
| 95 | 1518.1514: Timestamp: 0x57a90f3d
|
|---|
| 96 | 1518.1514: Machine: 0x8664 - amd64
|
|---|
| 97 | 1518.1514: Timestamp: 0x57a90f3d
|
|---|
| 98 | 1518.1514: Image Version: 10.0
|
|---|
| 99 | 1518.1514: SizeOfImage: 0x48000 (294912)
|
|---|
| 100 | 1518.1514: Resource Dir: 0x45000 LB 0x1090
|
|---|
| 101 | 1518.1514: [Version info resource found at 0xd8! (ID/Name: 0x1; SubID/SubName: 0x409)]
|
|---|
| 102 | 1518.1514: [Raw version resource data: 0x45110 LB 0x37c, codepage 0x0 (reserved 0x0)]
|
|---|
| 103 | 1518.1514: ProductName: Microsoft Malware Protection
|
|---|
| 104 | 1518.1514: ProductVersion: 4.10.0202.0
|
|---|
| 105 | 1518.1514: FileVersion: 4.10.0202.0
|
|---|
| 106 | 1518.1514: FileDescription: Microsoft antimalware file system filter driver
|
|---|
| 107 | 1518.1514: \SystemRoot\System32\drivers\NisDrvWFP.sys:
|
|---|
| 108 | 1518.1514: CreationTime: 2010-10-24T17:25:38.000000000Z
|
|---|
| 109 | 1518.1514: LastWriteTime: 2016-08-25T07:46:12.000000000Z
|
|---|
| 110 | 1518.1514: ChangeTime: 2016-12-02T18:51:04.764124200Z
|
|---|
| 111 | 1518.1514: FileAttributes: 0x20
|
|---|
| 112 | 1518.1514: Size: 0x212f8
|
|---|
| 113 | 1518.1514: NT Headers: 0xe8
|
|---|
| 114 | 1518.1514: Timestamp: 0x57a90f42
|
|---|
| 115 | 1518.1514: Machine: 0x8664 - amd64
|
|---|
| 116 | 1518.1514: Timestamp: 0x57a90f42
|
|---|
| 117 | 1518.1514: Image Version: 10.0
|
|---|
| 118 | 1518.1514: SizeOfImage: 0x20000 (131072)
|
|---|
| 119 | 1518.1514: Resource Dir: 0x1d000 LB 0x1b90
|
|---|
| 120 | 1518.1514: [Version info resource found at 0x120! (ID/Name: 0x1; SubID/SubName: 0x409)]
|
|---|
| 121 | 1518.1514: [Raw version resource data: 0x1e728 LB 0x380, codepage 0x0 (reserved 0x0)]
|
|---|
| 122 | 1518.1514: ProductName: Microsoft Malware Protection
|
|---|
| 123 | 1518.1514: ProductVersion: 4.10.0202.0
|
|---|
| 124 | 1518.1514: FileVersion: 4.10.0202.0
|
|---|
| 125 | 1518.1514: FileDescription: Microsoft Network Realtime Inspection Driver
|
|---|
| 126 | 1518.1514: supR3HardenedWinInitAppBin(0x0): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
|
|---|
| 127 | 1518.1514: Calling main()
|
|---|
| 128 | 1518.1514: SUPR3HardenedMain: pszProgName=VirtualBoxVM fFlags=0x2
|
|---|
| 129 | 1518.1514: supR3HardenedWinInitAppBin(0x2): '\Device\HarddiskVolume2\Program Files\Oracle\VirtualBox'
|
|---|
| 130 | 1518.1514: SUPR3HardenedMain: Respawn #1
|
|---|
| 131 | 1518.1514: System32: \Device\HarddiskVolume2\Windows\System32
|
|---|
| 132 | 1518.1514: WinSxS: \Device\HarddiskVolume2\Windows\winsxs
|
|---|
| 133 | 1518.1514: KnownDllPath: C:\Windows\system32
|
|---|
| 134 |
|
|---|