Files
|
File Path
|
Type
|
Category
|
Malicious
|
|
|---|---|---|---|---|
|
5q4psw.msi
|
Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation
Database, Subject: Adobe Acrobat PDF Browser Plugin 4.8.25, Author: Adobe Inc., Keywords: Installer, Comments: Adobe Acrobat
PDF Browser Plugin, Template: Intel;1033, Revision Number: {D557C495-7A3E-4038-8369-B6EDCD5EFABE}, Create Time/Date: Tue May
30 14:26:08 2023, Last Saved Time/Date: Tue May 30 14:26:08 2023, Number of Pages: 200, Number of Words: 10, Name of Creating
Application: Windows Installer XML Toolset (3.11.2.4516), Security: 2
|
initial sample
|
 |
|
|
C:\Config.Msi\55f8bb.rbs
|
data
|
modified
|
||
|
C:\Users\user\AppData\Local\AdobeAcrobatPDFBrowserPlugin\main.dll
|
PE32 executable (DLL) (console) Intel 80386 (stripped to external PDB), for MS Windows
|
dropped
|
||
|
C:\Users\user\AppData\Local\AdobeAcrobatPDFBrowserPlugin\notify.vbs
|
ASCII text, with CRLF line terminators
|
dropped
|
||
|
C:\Windows\Installer\55f8ba.msi
|
Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation
Database, Subject: Adobe Acrobat PDF Browser Plugin 4.8.25, Author: Adobe Inc., Keywords: Installer, Comments: Adobe Acrobat
PDF Browser Plugin, Template: Intel;1033, Revision Number: {D557C495-7A3E-4038-8369-B6EDCD5EFABE}, Create Time/Date: Tue May
30 14:26:08 2023, Last Saved Time/Date: Tue May 30 14:26:08 2023, Number of Pages: 200, Number of Words: 10, Name of Creating
Application: Windows Installer XML Toolset (3.11.2.4516), Security: 2
|
dropped
|
||
|
C:\Windows\Installer\55f8bc.msi
|
Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation
Database, Subject: Adobe Acrobat PDF Browser Plugin 4.8.25, Author: Adobe Inc., Keywords: Installer, Comments: Adobe Acrobat
PDF Browser Plugin, Template: Intel;1033, Revision Number: {D557C495-7A3E-4038-8369-B6EDCD5EFABE}, Create Time/Date: Tue May
30 14:26:08 2023, Last Saved Time/Date: Tue May 30 14:26:08 2023, Number of Pages: 200, Number of Words: 10, Name of Creating
Application: Windows Installer XML Toolset (3.11.2.4516), Security: 2
|
dropped
|
||
|
C:\Windows\Installer\MSIFB1B.tmp
|
data
|
dropped
|
||
|
C:\Windows\Installer\SourceHash{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
Composite Document File V2 Document, Cannot read section info
|
dropped
|
||
|
C:\Windows\Installer\inprogressinstallinfo.ipi
|
Composite Document File V2 Document, Cannot read section info
|
dropped
|
||
|
C:\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.log
|
Unicode text, UTF-8 (with BOM) text, with CRLF line terminators
|
dropped
|
||
|
C:\Windows\Temp\~DF092DC5D1FEAA268C.TMP
|
Composite Document File V2 Document, Cannot read section info
|
dropped
|
||
|
C:\Windows\Temp\~DF3AFD14CAA7749B80.TMP
|
Composite Document File V2 Document, Cannot read section info
|
dropped
|
||
|
C:\Windows\Temp\~DF3F77F918320563FF.TMP
|
data
|
dropped
|
||
|
C:\Windows\Temp\~DF4A6271EF11B37377.TMP
|
data
|
dropped
|
||
|
C:\Windows\Temp\~DF5555397D86C72808.TMP
|
Composite Document File V2 Document, Cannot read section info
|
dropped
|
||
|
C:\Windows\Temp\~DFA48F4C3EB3ED2F6F.TMP
|
data
|
dropped
|
||
|
C:\Windows\Temp\~DFB2E09CA8BE461258.TMP
|
data
|
dropped
|
||
|
C:\Windows\Temp\~DFB404815109B1126A.TMP
|
Composite Document File V2 Document, Cannot read section info
|
dropped
|
||
|
C:\Windows\Temp\~DFC45B0184A39B8DFE.TMP
|
data
|
dropped
|
||
|
C:\Windows\Temp\~DFCBDFB5D5B5D930C1.TMP
|
data
|
dropped
|
||
|
C:\Windows\Temp\~DFD8BC86747873A537.TMP
|
Composite Document File V2 Document, Cannot read section info
|
dropped
|
||
|
C:\Windows\Temp\~DFFD09074CA4B5BB91.TMP
|
data
|
dropped
|
||
|
C:\Config.Msi\66172c.rbs
|
data
|
modified
|
||
|
C:\System Volume Information\SPP\OnlineMetadataCache\{95bd4ba6-e44e-4e3d-aced-35775530fd8d}_OnDiskSnapshotProp
|
data
|
dropped
|
||
|
C:\System Volume Information\SPP\metadata-2
|
SysEx File - Twister
|
dropped
|
||
|
C:\System Volume Information\SPP\snapshot-2
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\~DF081EC1EE06C4DD73.TMP
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\~DF26027B870D05A567.TMP
|
data
|
dropped
|
||
|
C:\Users\user\AppData\Local\Temp\~DFD45D14352E4E4A80.TMP
|
data
|
dropped
|
||
|
C:\Windows\Installer\66172a.msi
|
Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation
Database, Subject: Adobe Acrobat PDF Browser Plugin 4.8.25, Author: Adobe Inc., Keywords: Installer, Comments: Adobe Acrobat
PDF Browser Plugin, Template: Intel;1033, Revision Number: {D557C495-7A3E-4038-8369-B6EDCD5EFABE}, Create Time/Date: Tue May
30 14:26:08 2023, Last Saved Time/Date: Tue May 30 14:26:08 2023, Number of Pages: 200, Number of Words: 10, Name of Creating
Application: Windows Installer XML Toolset (3.11.2.4516), Security: 2
|
dropped
|
||
|
C:\Windows\Installer\66172b.ipi
|
Composite Document File V2 Document, Cannot read section info
|
dropped
|
||
|
C:\Windows\Installer\66172d.msi
|
Composite Document File V2 Document, Little Endian, Os: Windows, Version 6.2, MSI Installer, Code page: 1252, Title: Installation
Database, Subject: Adobe Acrobat PDF Browser Plugin 4.8.25, Author: Adobe Inc., Keywords: Installer, Comments: Adobe Acrobat
PDF Browser Plugin, Template: Intel;1033, Revision Number: {D557C495-7A3E-4038-8369-B6EDCD5EFABE}, Create Time/Date: Tue May
30 14:26:08 2023, Last Saved Time/Date: Tue May 30 14:26:08 2023, Number of Pages: 200, Number of Words: 10, Name of Creating
Application: Windows Installer XML Toolset (3.11.2.4516), Security: 2
|
dropped
|
||
|
C:\Windows\Installer\MSIABDA.tmp
|
data
|
dropped
|
There are 23 hidden files, click here to show them.
Processes
|
Path
|
Cmdline
|
Malicious
|
|
|---|---|---|---|
|
C:\Windows\System32\rundll32.exe
|
rundll32.exe C:\Users\user\AppData\Local\AdobeAcrobatPDFBrowserPlugin\main.dll,next
|
|
|
|
C:\Windows\SysWOW64\rundll32.exe
|
rundll32.exe C:\Users\user\AppData\Local\AdobeAcrobatPDFBrowserPlugin\main.dll,next
|
|
|
|
C:\Windows\SysWOW64\wermgr.exe
|
C:\Windows\SysWOW64\wermgr.exe
|
|
|
|
C:\Windows\System32\msiexec.exe
|
"C:\Windows\System32\msiexec.exe" /i "C:\Users\user\Desktop\5q4psw.msi"
|
||
|
C:\Windows\System32\msiexec.exe
|
C:\Windows\system32\msiexec.exe /V
|
||
|
C:\Windows\System32\wscript.exe
|
wscript.exe C:\Users\user\AppData\Local\AdobeAcrobatPDFBrowserPlugin\notify.vbs
|
URLs
|
Name
|
IP
|
Malicious
|
|
|---|---|---|---|
|
https://streams.videolan.org/upload/
|
unknown
|
IPs
|
IP
|
Domain
|
Country
|
Malicious
|
|
|---|---|---|---|---|
|
2.82.8.80
|
unknown
|
Portugal
|
|
|
|
70.160.67.203
|
unknown
|
United States
|
|
|
|
75.143.236.149
|
unknown
|
United States
|
|
|
|
83.110.223.61
|
unknown
|
United Arab Emirates
|
|
|
|
86.195.14.72
|
unknown
|
France
|
|
|
|
84.215.202.8
|
unknown
|
Norway
|
|
|
|
184.182.66.109
|
unknown
|
United States
|
|
|
|
105.184.103.97
|
unknown
|
South Africa
|
|
|
|
92.186.69.229
|
unknown
|
France
|
|
|
|
174.4.89.3
|
unknown
|
Canada
|
|
|
|
161.142.103.187
|
unknown
|
Malaysia
|
|
|
|
114.143.176.236
|
unknown
|
India
|
|
|
|
14.192.241.76
|
unknown
|
Malaysia
|
|
|
|
173.88.135.179
|
unknown
|
United States
|
|
|
|
84.108.200.161
|
unknown
|
Israel
|
|
|
|
47.34.30.133
|
unknown
|
United States
|
|
|
|
183.87.163.165
|
unknown
|
India
|
|
|
|
124.149.143.189
|
unknown
|
Australia
|
|
|
|
184.181.75.148
|
unknown
|
United States
|
|
|
|
84.35.26.14
|
unknown
|
Netherlands
|
|
|
|
73.29.92.128
|
unknown
|
United States
|
|
|
|
68.203.69.96
|
unknown
|
United States
|
|
|
|
82.131.141.209
|
unknown
|
Hungary
|
|
|
|
64.121.161.102
|
unknown
|
United States
|
|
|
|
178.175.187.254
|
unknown
|
Moldova Republic of
|
|
|
|
96.56.197.26
|
unknown
|
United States
|
|
|
|
186.64.67.30
|
unknown
|
Argentina
|
|
|
|
188.28.19.84
|
unknown
|
United Kingdom
|
|
|
|
125.99.76.102
|
unknown
|
India
|
|
|
|
81.101.185.146
|
unknown
|
United Kingdom
|
|
|
|
86.176.144.234
|
unknown
|
United Kingdom
|
|
|
|
59.28.84.65
|
unknown
|
Korea Republic of
|
|
|
|
76.86.31.59
|
unknown
|
United States
|
|
|
|
147.147.30.126
|
unknown
|
United Kingdom
|
|
|
|
96.87.28.170
|
unknown
|
United States
|
|
|
|
75.109.111.89
|
unknown
|
United States
|
|
|
|
78.92.133.215
|
unknown
|
Hungary
|
|
|
|
124.122.47.148
|
unknown
|
Thailand
|
|
|
|
88.126.94.4
|
unknown
|
France
|
|
|
|
51.14.29.227
|
unknown
|
United Kingdom
|
|
|
|
85.57.212.13
|
unknown
|
Spain
|
|
|
|
47.205.25.170
|
unknown
|
United States
|
|
|
|
95.45.50.93
|
unknown
|
Ireland
|
|
|
|
80.12.88.148
|
unknown
|
France
|
|
|
|
81.111.108.123
|
unknown
|
United Kingdom
|
|
|
|
69.133.162.35
|
unknown
|
United States
|
|
|
|
86.132.236.117
|
unknown
|
United Kingdom
|
|
|
|
151.62.238.176
|
unknown
|
Italy
|
|
|
|
70.112.206.5
|
unknown
|
United States
|
|
|
|
41.228.224.161
|
unknown
|
Tunisia
|
|
|
|
205.237.67.69
|
unknown
|
Canada
|
|
|
|
102.159.188.125
|
unknown
|
Tunisia
|
|
|
|
151.65.167.77
|
unknown
|
Italy
|
|
|
|
76.178.148.107
|
unknown
|
United States
|
|
|
|
89.36.206.69
|
unknown
|
Italy
|
|
|
|
69.242.31.249
|
unknown
|
United States
|
|
|
|
85.104.105.67
|
unknown
|
Turkey
|
|
|
|
94.207.104.225
|
unknown
|
United Arab Emirates
|
|
|
|
193.253.100.236
|
unknown
|
France
|
|
|
|
76.16.49.134
|
unknown
|
United States
|
|
|
|
201.244.108.183
|
unknown
|
Colombia
|
|
|
|
103.42.86.42
|
unknown
|
India
|
|
|
|
78.18.105.11
|
unknown
|
Ireland
|
|
|
|
80.6.50.34
|
unknown
|
United Kingdom
|
|
|
|
103.144.201.56
|
unknown
|
unknown
|
|
|
|
27.0.48.233
|
unknown
|
India
|
|
|
|
70.28.50.223
|
unknown
|
Canada
|
|
|
|
98.145.23.67
|
unknown
|
United States
|
|
|
|
82.125.44.236
|
unknown
|
France
|
|
|
|
81.229.117.95
|
unknown
|
Sweden
|
|
|
|
89.129.109.27
|
unknown
|
Spain
|
|
|
|
122.186.210.254
|
unknown
|
India
|
|
|
|
79.77.142.22
|
unknown
|
United Kingdom
|
|
|
|
90.78.147.141
|
unknown
|
France
|
|
|
|
122.184.143.86
|
unknown
|
India
|
|
|
|
186.75.95.6
|
unknown
|
Panama
|
|
|
|
50.68.186.195
|
unknown
|
Canada
|
|
|
|
12.172.173.82
|
unknown
|
United States
|
|
|
|
213.64.33.61
|
unknown
|
Sweden
|
|
|
|
79.168.224.165
|
unknown
|
Portugal
|
|
|
|
176.142.207.63
|
unknown
|
France
|
|
|
|
86.173.2.12
|
unknown
|
United Kingdom
|
|
|
|
92.154.17.149
|
unknown
|
France
|
|
|
|
78.160.146.127
|
unknown
|
Turkey
|
|
|
|
58.186.75.42
|
unknown
|
Viet Nam
|
|
|
|
223.166.13.95
|
unknown
|
China
|
|
|
|
65.95.141.84
|
unknown
|
Canada
|
|
|
|
50.68.204.71
|
unknown
|
Canada
|
|
|
|
71.38.155.217
|
unknown
|
United States
|
|
|
|
220.240.164.182
|
unknown
|
Australia
|
|
|
|
103.123.223.133
|
unknown
|
India
|
|
|
|
24.198.114.130
|
unknown
|
United States
|
|
|
|
2.36.64.159
|
unknown
|
Italy
|
|
|
|
198.2.51.242
|
unknown
|
United States
|
|
|
|
92.9.45.20
|
unknown
|
United Kingdom
|
|
|
|
113.11.92.30
|
unknown
|
Bangladesh
|
|
|
|
109.50.149.241
|
unknown
|
Portugal
|
|
|
|
69.119.123.159
|
unknown
|
United States
|
|
|
|
172.115.17.50
|
unknown
|
United States
|
|
|
|
147.219.4.194
|
unknown
|
United States
|
|
There are 90 hidden IPs, click here to show them.
Registry
|
Path
|
Value
|
Malicious
|
|
|---|---|---|---|
|
HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000
|
Owner
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000
|
SessionHash
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\RestartManager\Session0000
|
Sequence
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders
|
C:\Config.Msi\
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Rollback\Scripts
|
C:\Config.Msi\55f8bb.rbs
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Rollback\Scripts
|
C:\Config.Msi\55f8bb.rbsLow
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Components\DF2B5B287322BA24F9303B9BAE3B0000
|
DCF90BD2E8D742C4FBD5BFB52DD5767B
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Folders
|
C:\Users\user\AppData\Local\AdobeAcrobatPDFBrowserPlugin\
|
||
|
HKEY_CURRENT_USER\Software\AdobeAcrobatPDFBrowserPlugin
|
AdobeAcrobatPDFBrowserPlugin
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
LocalPackage
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
AuthorizedCDFPrefix
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
Comments
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
Contact
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
DisplayVersion
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
HelpLink
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
HelpTelephone
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
InstallDate
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
InstallLocation
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
InstallSource
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
ModifyPath
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
Publisher
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
Readme
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
Size
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
EstimatedSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
UninstallString
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
URLInfoAbout
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
URLUpdateInfo
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
VersionMajor
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
VersionMinor
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
WindowsInstaller
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
Version
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
Language
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
AuthorizedCDFPrefix
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
Comments
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
Contact
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
DisplayVersion
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
HelpLink
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
HelpTelephone
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
InstallDate
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
InstallLocation
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
InstallSource
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
ModifyPath
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
Publisher
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
Readme
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
Size
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
EstimatedSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
UninstallString
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
URLInfoAbout
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
URLUpdateInfo
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
VersionMajor
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
VersionMinor
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
WindowsInstaller
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
Version
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
Language
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UpgradeCodes\100000007322BA24F9303B9BAE3B502B
|
DCF90BD2E8D742C4FBD5BFB52DD5767B
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
DisplayName
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
DisplayName
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Features\DCF90BD2E8D742C4FBD5BFB52DD5767B
|
MainProgram
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\Features
|
MainProgram
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Features\DCF90BD2E8D742C4FBD5BFB52DD5767B
|
Complete
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\Features
|
Complete
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-3853321935-2125563209-4053062332-1002\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\Patches
|
AllPatches
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B
|
ProductName
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B
|
PackageCode
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B
|
Language
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B
|
Version
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B
|
Assignment
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B
|
AdvertiseFlags
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B
|
InstanceType
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B
|
AuthorizedLUAApp
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B
|
DeploymentFlags
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\UpgradeCodes\100000007322BA24F9303B9BAE3B502B
|
DCF90BD2E8D742C4FBD5BFB52DD5767B
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\SourceList
|
PackageName
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\SourceList\Net
|
1
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\SourceList\Media
|
1
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B
|
Clients
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Installer\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\SourceList
|
LastUsedSource
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Onhybhcunyojm
|
32351a59
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Onhybhcunyojm
|
7aaca17
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Onhybhcunyojm
|
5ebea6b
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Onhybhcunyojm
|
bd578d0e
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Onhybhcunyojm
|
c05fc284
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Onhybhcunyojm
|
78e3a5e1
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Onhybhcunyojm
|
bf16ad72
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Onhybhcunyojm
|
4d7c75af
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Onhybhcunyojm
|
32351a59
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Onhybhcunyojm
|
32351a59
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\VssapiPublisher
|
IDENTIFY (Enter)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\VssapiPublisher
|
IDENTIFY (Leave)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\VssapiPublisher
|
PREPAREBACKUP (Enter)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\VssapiPublisher
|
PREPAREBACKUP (Leave)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\VssapiPublisher
|
GETSTATE (Enter)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\VssapiPublisher
|
GETSTATE (Leave)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\VssapiPublisher
|
DOSNAPSHOT (Enter)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\VssapiPublisher
|
DOSNAPSHOT (Leave)
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\InProgress
|
NULL
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Rollback\Scripts
|
C:\Config.Msi\66172c.rbs
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\Rollback\Scripts
|
C:\Config.Msi\66172c.rbsLow
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Components\DF2B5B287322BA24F9303B9BAE3B0000
|
DCF90BD2E8D742C4FBD5BFB52DD5767B
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
LocalPackage
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
AuthorizedCDFPrefix
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
Comments
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
Contact
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
DisplayVersion
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
HelpLink
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
HelpTelephone
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
InstallDate
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
InstallLocation
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
InstallSource
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
ModifyPath
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
Publisher
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
Readme
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
Size
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
EstimatedSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
UninstallString
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
URLInfoAbout
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
URLUpdateInfo
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
VersionMajor
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
VersionMinor
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
WindowsInstaller
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
Version
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
Language
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
AuthorizedCDFPrefix
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
Comments
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
Contact
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
DisplayVersion
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
HelpLink
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
HelpTelephone
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
InstallDate
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
InstallLocation
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
InstallSource
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
ModifyPath
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
Publisher
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
Readme
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
Size
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
EstimatedSize
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
UninstallString
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
URLInfoAbout
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
URLUpdateInfo
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
VersionMajor
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
VersionMinor
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
WindowsInstaller
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
Version
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
Language
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\InstallProperties
|
DisplayName
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall\{2DB09FCD-7D8E-4C24-BF5D-FB5BD25D67B7}
|
DisplayName
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\Features
|
MainProgram
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\Features
|
Complete
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Installer\UserData\S-1-5-21-966771315-3019405637-367336477-1006\Products\DCF90BD2E8D742C4FBD5BFB52DD5767B\Patches
|
AllPatches
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SystemRestore
|
SrCreateRp (Enter)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SPP
|
SppCreate (Enter)
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SPP
|
LastIndex
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SPP
|
SppGatherWriterMetadata (Enter)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SPP
|
SppGatherWriterMetadata (Leave)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SPP
|
SppAddInterestingComponents (Enter)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SPP
|
SppAddInterestingComponents (Leave)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SPP
|
SppCreate (Leave)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SystemRestore
|
SrCreateRp (Leave)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SystemRestore
|
SrCreateRp (Enter)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SPP
|
SppCreate (Enter)
|
||
|
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SPP
|
LastIndex
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SPP
|
SppGatherWriterMetadata (Enter)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\VssapiPublisher
|
IDENTIFY (Enter)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\VssapiPublisher
|
IDENTIFY (Leave)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SPP
|
SppGatherWriterMetadata (Leave)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SPP
|
SppAddInterestingComponents (Enter)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SPP
|
SppAddInterestingComponents (Leave)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\VssapiPublisher
|
PREPAREBACKUP (Enter)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\VssapiPublisher
|
PREPAREBACKUP (Leave)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SPP
|
SppCreate (Leave)
|
||
|
HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\services\VSS\Diag\SystemRestore
|
SrCreateRp (Leave)
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Wepnwwwxkll
|
a86a1114
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Wepnwwwxkll
|
9df5c15a
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Wepnwwwxkll
|
9fb4e126
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Wepnwwwxkll
|
27088643
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Wepnwwwxkll
|
5a00c9c9
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Wepnwwwxkll
|
e2bcaeac
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Wepnwwwxkll
|
2549a63f
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Wepnwwwxkll
|
d7237ee2
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Wepnwwwxkll
|
a86a1114
|
||
|
HKEY_CURRENT_USER\Software\Microsoft\Wepnwwwxkll
|
a86a1114
|
There are 171 hidden registries, click here to show them.
Memdumps
|
Base Address
|
Regiontype
|
Protect
|
Malicious
|
|
|---|---|---|---|---|
|
360A000
|
heap
|
page read and write
|
|
|
|
5230000
|
heap
|
page read and write
|
|
|
|
C0E90F9000
|
stack
|
page read and write
|
||
|
7467000
|
heap
|
page read and write
|
||
|
2291CA2A000
|
heap
|
page read and write
|
||
|
1F773AD0000
|
trusted library allocation
|
page read and write
|
||
|
679F000
|
heap
|
page read and write
|
||
|
66FC000
|
heap
|
page read and write
|
||
|
6EA3000
|
heap
|
page read and write
|
||
|
2291CA24000
|
heap
|
page read and write
|
||
|
3457000
|
heap
|
page read and write
|
||
|
1F772D40000
|
trusted library allocation
|
page read and write
|
||
|
340E000
|
stack
|
page read and write
|
||
|
677D000
|
heap
|
page read and write
|
||
|
2291CA56000
|
heap
|
page read and write
|
||
|
5253000
|
heap
|
page read and write
|
||
|
36FA000
|
heap
|
page read and write
|
||
|
73AB000
|
heap
|
page read and write
|
||
|
3560000
|
heap
|
page read and write
|
||
|
67AB000
|
heap
|
page read and write
|
||
|
66FC000
|
heap
|
page read and write
|
||
|
670C000
|
heap
|
page read and write
|
||
|
6EA1000
|
heap
|
page read and write
|
||
|
4FB1000
|
direct allocation
|
page execute read
|
||
|
6708000
|
heap
|
page read and write
|
||
|
6708000
|
heap
|
page read and write
|
||
|
6708000
|
heap
|
page read and write
|
||
|
30B43EF000
|
stack
|
page read and write
|
||
|
66FC000
|
heap
|
page read and write
|
||
|
36F0000
|
heap
|
page read and write
|
||
|
2291CA56000
|
heap
|
page read and write
|
||
|
689C000
|
heap
|
page read and write
|
||
|
66FC000
|
heap
|
page read and write
|
||
|
1F772E15000
|
heap
|
page read and write
|
||
|
677D000
|
heap
|
page read and write
|
||
|
679F000
|
heap
|
page read and write
|
||
|
6708000
|
heap
|
page read and write
|
||
|
3550000
|
heap
|
page read and write
|
||
|
2291CA24000
|
heap
|
page read and write
|
||
|
78B1000
|
heap
|
page read and write
|
||
|
348F000
|
stack
|
page read and write
|
||
|
677C000
|
heap
|
page read and write
|
||
|
3444000
|
heap
|
page read and write
|
||
|
1F773AB0000
|
trusted library allocation
|
page read and write
|
||
|
2291CA3D000
|
heap
|
page read and write
|
||
|
61EC000
|
heap
|
page read and write
|
||
|
6A10000
|
heap
|
page read and write
|
||
|
2291CA61000
|
heap
|
page read and write
|
||
|
67AB000
|
heap
|
page read and write
|
||
|
66FC000
|
heap
|
page read and write
|
||
|
1B27CF70000
|
heap
|
page read and write
|
||
|
3457000
|
heap
|
page read and write
|
||
|
6A10000
|
heap
|
page read and write
|
||
|
36FA000
|
heap
|
page read and write
|
||
|
68D4000
|
heap
|
page read and write
|
||
|
2291CC60000
|
heap
|
page read and write
|
||
|
7977000
|
heap
|
page read and write
|
||
|
2291C9F0000
|
heap
|
page read and write
|
||
|
82DC4FF000
|
stack
|
page read and write
|
||
|
C0E96FE000
|
stack
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
5F70000
|
trusted library allocation
|
page read and write
|
||
|
6708000
|
heap
|
page read and write
|
||
|
7BAE000
|
heap
|
page read and write
|
||
|
6708000
|
heap
|
page read and write
|
||
|
2291CA3D000
|
heap
|
page read and write
|
||
|
5060000
|
heap
|
page read and write
|
||
|
100AA000
|
unkown
|
page read and write
|
||
|
679F000
|
heap
|
page read and write
|
||
|
7BA8000
|
heap
|
page read and write
|
||
|
2291CA24000
|
heap
|
page read and write
|
||
|
2291CA0E000
|
heap
|
page read and write
|
||
|
3444000
|
heap
|
page read and write
|
||
|
36EF000
|
heap
|
page read and write
|
||
|
60E0000
|
trusted library allocation
|
page read and write
|
||
|
2291C970000
|
heap
|
page read and write
|
||
|
1F772D19000
|
heap
|
page read and write
|
||
|
FDC000
|
stack
|
page read and write
|
||
|
35EF000
|
stack
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
36FA000
|
heap
|
page read and write
|
||
|
3444000
|
heap
|
page read and write
|
||
|
2291CA16000
|
heap
|
page read and write
|
||
|
30B46F9000
|
stack
|
page read and write
|
||
|
66FC000
|
heap
|
page read and write
|
||
|
5FE1000
|
heap
|
page read and write
|
||
|
6A10000
|
heap
|
page read and write
|
||
|
100AB000
|
unkown
|
page readonly
|
||
|
3444000
|
heap
|
page read and write
|
||
|
36C8000
|
heap
|
page read and write
|
||
|
5F70000
|
trusted library allocation
|
page read and write
|
||
|
30B4679000
|
stack
|
page read and write
|
||
|
1F772DFF000
|
heap
|
page read and write
|
||
|
67AD000
|
heap
|
page read and write
|
||
|
66FC000
|
heap
|
page read and write
|
||
|
2291CA56000
|
heap
|
page read and write
|
||
|
677D000
|
heap
|
page read and write
|
||
|
1F772CA0000
|
heap
|
page read and write
|
||
|
2291CA56000
|
heap
|
page read and write
|
||
|
6A34000
|
heap
|
page read and write
|
||
|
6A10000
|
heap
|
page read and write
|
||
|
36FA000
|
heap
|
page read and write
|
||
|
6A34000
|
heap
|
page read and write
|
||
|
2291CA29000
|
heap
|
page read and write
|
||
|
3444000
|
heap
|
page read and write
|
||
|
2291CA46000
|
heap
|
page read and write
|
||
|
6A10000
|
heap
|
page read and write
|
||
|
73A2000
|
heap
|
page read and write
|
||
|
82DC57F000
|
stack
|
page read and write
|
||
|
36FA000
|
heap
|
page read and write
|
||
|
670C000
|
heap
|
page read and write
|
||
|
1F772DF7000
|
heap
|
page read and write
|
||
|
670C000
|
heap
|
page read and write
|
||
|
80BC000
|
heap
|
page read and write
|
||
|
2291CA17000
|
heap
|
page read and write
|
||
|
4FCA000
|
direct allocation
|
page readonly
|
||
|
6A34000
|
heap
|
page read and write
|
||
|
2291CA24000
|
heap
|
page read and write
|
||
|
67AD000
|
heap
|
page read and write
|
||
|
82DC47C000
|
stack
|
page read and write
|
||
|
5FE1000
|
heap
|
page read and write
|
||
|
1F772D15000
|
heap
|
page read and write
|
||
|
5F70000
|
trusted library allocation
|
page read and write
|
||
|
67AB000
|
heap
|
page read and write
|
||
|
1F772DF9000
|
heap
|
page read and write
|
||
|
2291FF70000
|
trusted library allocation
|
page read and write
|
||
|
3671000
|
heap
|
page read and write
|
||
|
5F70000
|
trusted library allocation
|
page read and write
|
||
|
67AD000
|
heap
|
page read and write
|
||
|
1B27CD49000
|
heap
|
page read and write
|
||
|
123B000
|
stack
|
page read and write
|
||
|
5F70000
|
trusted library allocation
|
page read and write
|
||
|
2291CA4D000
|
heap
|
page read and write
|
||
|
2291CA41000
|
heap
|
page read and write
|
||
|
6A34000
|
heap
|
page read and write
|
||
|
1F773AE0000
|
trusted library allocation
|
page read and write
|
||
|
1280000
|
heap
|
page read and write
|
||
|
36FA000
|
heap
|
page read and write
|
||
|
36FA000
|
heap
|
page read and write
|
||
|
670C000
|
heap
|
page read and write
|
||
|
6A34000
|
heap
|
page read and write
|
||
|
679F000
|
heap
|
page read and write
|
||
|
67AB000
|
heap
|
page read and write
|
||
|
679F000
|
heap
|
page read and write
|
||
|
6A10000
|
heap
|
page read and write
|
||
|
1B27CF10000
|
heap
|
page read and write
|
||
|
1B27CCB0000
|
heap
|
page read and write
|
||
|
6A10000
|
heap
|
page read and write
|
||
|
30B42EB000
|
stack
|
page read and write
|
||
|
5FF1000
|
heap
|
page read and write
|
||
|
67AD000
|
heap
|
page read and write
|
||
|
67AD000
|
heap
|
page read and write
|
||
|
6EAF000
|
heap
|
page read and write
|
||
|
1F773870000
|
trusted library allocation
|
page read and write
|
||
|
1F772DB8000
|
heap
|
page read and write
|
||
|
101DD000
|
unkown
|
page read and write
|
||
|
2291CA24000
|
heap
|
page read and write
|
||
|
2291CC64000
|
heap
|
page read and write
|
||
|
1F773860000
|
trusted library allocation
|
page read and write
|
||
|
C0E97FF000
|
stack
|
page read and write
|
||
|
6708000
|
heap
|
page read and write
|
||
|
3440000
|
heap
|
page read and write
|
||
|
F70000
|
heap
|
page read and write
|
||
|
1F772D10000
|
heap
|
page read and write
|
||
|
30B47F9000
|
stack
|
page read and write
|
||
|
1F772B60000
|
heap
|
page read and write
|
||
|
1F772E10000
|
heap
|
page read and write
|
||
|
5F60000
|
trusted library allocation
|
page read and write
|
||
|
2291E960000
|
heap
|
page read and write
|
||
|
67AB000
|
heap
|
page read and write
|
||
|
6A10000
|
heap
|
page read and write
|
||
|
5061000
|
heap
|
page read and write
|
||
|
679F000
|
heap
|
page read and write
|
||
|
2291CA3D000
|
heap
|
page read and write
|
||
|
52AF000
|
heap
|
page read and write
|
||
|
67AB000
|
heap
|
page read and write
|
||
|
36A0000
|
heap
|
page read and write
|
||
|
36EF000
|
heap
|
page read and write
|
||
|
30B436F000
|
stack
|
page read and write
|
||
|
5050000
|
heap
|
page read and write
|
||
|
677D000
|
heap
|
page read and write
|
||
|
677D000
|
heap
|
page read and write
|
||
|
3444000
|
heap
|
page read and write
|
||
|
67AD000
|
heap
|
page read and write
|
||
|
6EE9000
|
heap
|
page read and write
|
||
|
677D000
|
heap
|
page read and write
|
||
|
4FD2000
|
direct allocation
|
page readonly
|
||
|
1F772DFA000
|
heap
|
page read and write
|
||
|
67AD000
|
heap
|
page read and write
|
||
|
5F70000
|
trusted library allocation
|
page read and write
|
||
|
30B487B000
|
stack
|
page read and write
|
||
|
1F773B30000
|
trusted library allocation
|
page read and write
|
||
|
2291CA0E000
|
heap
|
page read and write
|
||
|
1F772E1A000
|
heap
|
page read and write
|
||
|
2291CA3D000
|
heap
|
page read and write
|
||
|
36FA000
|
heap
|
page read and write
|
||
|
67AB000
|
heap
|
page read and write
|
||
|
4FCF000
|
direct allocation
|
page read and write
|
||
|
67AB000
|
heap
|
page read and write
|
||
|
1B27CF75000
|
heap
|
page read and write
|
||
|
2291CC70000
|
heap
|
page read and write
|
||
|
5F70000
|
trusted library allocation
|
page read and write
|
||
|
52AF000
|
heap
|
page read and write
|
||
|
3694000
|
heap
|
page read and write
|
||
|
7463000
|
heap
|
page read and write
|
||
|
36CC000
|
heap
|
page read and write
|
||
|
101FC000
|
unkown
|
page readonly
|
||
|
670C000
|
heap
|
page read and write
|
||
|
2291CA3A000
|
heap
|
page read and write
|
||
|
2291C900000
|
heap
|
page read and write
|
||
|
66FC000
|
heap
|
page read and write
|
||
|
3444000
|
heap
|
page read and write
|
||
|
677D000
|
heap
|
page read and write
|
||
|
30B477F000
|
stack
|
page read and write
|
||
|
4FB0000
|
direct allocation
|
page read and write
|
||
|
1F772EB0000
|
trusted library allocation
|
page read and write
|
||
|
6708000
|
heap
|
page read and write
|
||
|
679F000
|
heap
|
page read and write
|
||
|
1F772DFF000
|
heap
|
page read and write
|
||
|
10000000
|
unkown
|
page readonly
|
||
|
7462000
|
heap
|
page read and write
|
||
|
67AB000
|
heap
|
page read and write
|
||
|
5F70000
|
trusted library allocation
|
page read and write
|
||
|
670C000
|
heap
|
page read and write
|
||
|
7BA8000
|
heap
|
page read and write
|
||
|
670C000
|
heap
|
page read and write
|
||
|
101D8000
|
unkown
|
page readonly
|
||
|
1F772E11000
|
heap
|
page read and write
|
||
|
36A1000
|
heap
|
page read and write
|
||
|
679F000
|
heap
|
page read and write
|
||
|
5FF1000
|
heap
|
page read and write
|
||
|
677D000
|
heap
|
page read and write
|
||
|
670C000
|
heap
|
page read and write
|
||
|
2291CC7C000
|
heap
|
page read and write
|
||
|
5061000
|
heap
|
page read and write
|
||
|
101E1000
|
unkown
|
page write copy
|
||
|
1F772E15000
|
heap
|
page read and write
|
||
|
3560000
|
direct allocation
|
page execute read
|
||
|
36BC000
|
heap
|
page read and write
|
||
|
35AE000
|
stack
|
page read and write
|
||
|
2291C990000
|
heap
|
page read and write
|
||
|
677D000
|
heap
|
page read and write
|
||
|
2291CA5A000
|
heap
|
page read and write
|
||
|
2291CA42000
|
heap
|
page read and write
|
||
|
2291CC75000
|
heap
|
page read and write
|
||
|
12D0000
|
heap
|
page readonly
|
||
|
6A34000
|
heap
|
page read and write
|
||
|
C0E94FF000
|
stack
|
page read and write
|
||
|
66FC000
|
heap
|
page read and write
|
||
|
2291CA09000
|
heap
|
page read and write
|
||
|
3600000
|
heap
|
page read and write
|
||
|
6A10000
|
heap
|
page read and write
|
||
|
36FA000
|
heap
|
page read and write
|
||
|
2291E963000
|
heap
|
page read and write
|
||
|
1B27CD40000
|
heap
|
page read and write
|
||
|
6A34000
|
heap
|
page read and write
|
||
|
5F70000
|
trusted library allocation
|
page read and write
|
||
|
67AD000
|
heap
|
page read and write
|
||
|
1F772B70000
|
trusted library allocation
|
page read and write
|
||
|
2291CA3D000
|
heap
|
page read and write
|
||
|
1F772DB0000
|
heap
|
page read and write
|
||
|
2291CC20000
|
heap
|
page read and write
|
||
|
3444000
|
heap
|
page read and write
|
||
|
1F773AC0000
|
heap
|
page readonly
|
||
|
101DE000
|
unkown
|
page write copy
|
||
|
1F772E15000
|
heap
|
page read and write
|
||
|
1F772DFF000
|
heap
|
page read and write
|
||
|
4EAE000
|
heap
|
page read and write
|
||
|
6A34000
|
heap
|
page read and write
|
||
|
1B27CD20000
|
heap
|
page read and write
|
||
|
2291CA19000
|
heap
|
page read and write
|
||
|
2291CA56000
|
heap
|
page read and write
|
||
|
2291CA56000
|
heap
|
page read and write
|
||
|
5FF1000
|
heap
|
page read and write
|
||
|
679F000
|
heap
|
page read and write
|
||
|
10001000
|
unkown
|
page execute read
|
||
|
670C000
|
heap
|
page read and write
|
||
|
4FE0000
|
trusted library allocation
|
page read and write
|
||
|
67AD000
|
heap
|
page read and write
|
||
|
7977000
|
heap
|
page read and write
|
||
|
1F772D50000
|
trusted library allocation
|
page read and write
|
||
|
6A34000
|
heap
|
page read and write
|
||
|
73B0000
|
heap
|
page read and write
|
||
|
78B1000
|
heap
|
page read and write
|
||
|
2291C9FF000
|
heap
|
page read and write
|
||
|
1F772CC0000
|
heap
|
page read and write
|
||
|
6708000
|
heap
|
page read and write
|
||
|
2291CA1A000
|
heap
|
page read and write
|
||
|
36FA000
|
heap
|
page read and write
|
There are 279 hidden memdumps, click here to show them.