nganhkhoa/lpus
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
e2eac767e0
lpus/logs/dump_test/1/file_scan_log.txt
nganhkhoa 8c642f6ba0 add dump test 1
2020-06-05 19:37:13 +07:00

32904 lines
2.2 MiB
Raw Blame History

This file contains invisible Unicode characters

This file contains invisible Unicode characters that are indistinguishable to humans but may be processed differently by a computer. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

This file contains Unicode characters that might be confused with other characters. If you think that this is intentional, you can safely ignore this warning. Use the Escape button to reveal them.

PDB for Amd64, guid: e7477a03-a707-8050-cb79-36455ce346b5, age: 1
NtLoadDriver() -> 0x0
pool: 0xffff948957c5c810 | file object: 0xffff948957c5c890 | offsetby: 0x80
\$Directory
pool: 0xffff948957c5dc60 | file object: 0xffff948957c5dce0 | offsetby: 0x80
\Windows\System32\nsisvc.dll
pool: 0xffff948957c74320 | file object: 0xffff948957c74380 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff948957c74600 | file object: 0xffff948957c74660 | offsetby: 0x60
\Windows\System32\drivers\wcifs.sys
pool: 0xffff948957c74770 | file object: 0xffff948957c747d0 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948957c748e0 | file object: 0xffff948957c74940 | offsetby: 0x60
\Windows\System32\drivers\storqosflt.sys
pool: 0xffff948957c74a50 | file object: 0xffff948957c74ab0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a2f8040 | file object: 0xffff94895a2f80a0 | offsetby: 0x60
\$Mft::$BITMAP
pool: 0xffff94895a2f81b0 | file object: 0xffff94895a2f8210 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a2f8490 | file object: 0xffff94895a2f84f0 | offsetby: 0x60
\$LogFile
pool: 0xffff94895a2f8770 | file object: 0xffff94895a2f87d0 | offsetby: 0x60
\$Extend\$RmMetadata\$TxfLog\$TxfLogContainer00000000000000000004
pool: 0xffff94895a2f8bc0 | file object: 0xffff94895a2f8c20 | offsetby: 0x60
\$MftMirr
pool: 0xffff94895a2f8d30 | file object: 0xffff94895a2f8d90 | offsetby: 0x60
\$Secure:$SDS:$DATA
pool: 0xffff94895a2f9010 | file object: 0xffff94895a2f9070 | offsetby: 0x60
\$Secure:$SII:$INDEX_ALLOCATION
pool: 0xffff94895a2f92f0 | file object: 0xffff94895a2f9350 | offsetby: 0x60
\Windows\System32\DriverStore\FileRepository\umbus.inf_amd64_e566af5dd9858a0e\umbus.sys
pool: 0xffff94895a2f9460 | file object: 0xffff94895a2f94c0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a2f9a20 | file object: 0xffff94895a2f9a80 | offsetby: 0x60
\$Mft
pool: 0xffff94895a2f9e70 | file object: 0xffff94895a2f9ed0 | offsetby: 0x60
\$BitMap
pool: 0xffff94895a740040 | file object: 0xffff94895a7400a0 | offsetby: 0x60
\$Extend\$RmMetadata\$Repair:$Verify:$DATA
pool: 0xffff94895a7401b0 | file object: 0xffff94895a740210 | offsetby: 0x60
\$Extend\$UsnJrnl:$J:$DATA
pool: 0xffff94895a740320 | file object: 0xffff94895a740380 | offsetby: 0x60
\$Extend\$RmMetadata\$Repair:$Corrupt:$DATA
pool: 0xffff94895a740490 | file object: 0xffff94895a7404f0 | offsetby: 0x60
\$Extend\$RmMetadata\$TxfLog\$TxfLog.blf
pool: 0xffff94895a740600 | file object: 0xffff94895a740660 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895a7408e0 | file object: 0xffff94895a740940 | offsetby: 0x60
\Windows\System32\drivers\cdrom.sys
pool: 0xffff94895a740a50 | file object: 0xffff94895a740ab0 | offsetby: 0x60
\$Extend\$RmMetadata\$Repair
pool: 0xffff94895a740bc0 | file object: 0xffff94895a740c20 | offsetby: 0x60
\:$I30:$INDEX_ALLOCATION
pool: 0xffff94895a740d30 | file object: 0xffff94895a740d90 | offsetby: 0x60
\$Extend\$Deleted:$I30:$INDEX_ALLOCATION
pool: 0xffff94895a741010 | file object: 0xffff94895a741070 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895a741460 | file object: 0xffff94895a7414c0 | offsetby: 0x60
\$Extend\$RmMetadata\$TxfLog:$I30:$INDEX_ALLOCATION
pool: 0xffff94895a741740 | file object: 0xffff94895a7417a0 | offsetby: 0x60
\$Directory
pool: 0xffff94895a741b90 | file object: 0xffff94895a741bf0 | offsetby: 0x60
\$Extend:$I30:$INDEX_ALLOCATION
pool: 0xffff94895a741d00 | file object: 0xffff94895a741d60 | offsetby: 0x60
\Device\HarddiskVolume2\$Extend\$RmMetadata\$TxfLog\$TxfLog
pool: 0xffff94895a7e1030 | file object: 0xffff94895a7e1090 | offsetby: 0x60
\Windows\System32\config\TxR\{fd9a35ab-49fe-11e9-aa2c-248a07783950}.TMContainer00000000000000000001.regtrans-ms
pool: 0xffff94895a7e1310 | file object: 0xffff94895a7e1370 | offsetby: 0x60
\Windows\System32\config\TxR\{fd9a35ab-49fe-11e9-aa2c-248a07783950}.TM.blf
pool: 0xffff94895a7e1480 | file object: 0xffff94895a7e14e0 | offsetby: 0x60
\SystemRoot\System32\Config\TxR\{fd9a35ab-49fe-11e9-aa2c-248a07783950}.TM
pool: 0xffff94895a7e1d20 | file object: 0xffff94895a7e1d80 | offsetby: 0x60
\Windows\System32\config\TxR\{fd9a35ab-49fe-11e9-aa2c-248a07783950}.TMContainer00000000000000000002.regtrans-ms
pool: 0xffff94895a7e2170 | file object: 0xffff94895a7e21d0 | offsetby: 0x60
\$Directory
pool: 0xffff94895a7e2450 | file object: 0xffff94895a7e24b0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a7e25c0 | file object: 0xffff94895a7e2620 | offsetby: 0x60
\SystemRoot\System32\Config\TxR\{fd9a35ab-49fe-11e9-aa2c-248a07783950}.TM
pool: 0xffff94895a7e4110 | file object: 0xffff94895a7e4170 | offsetby: 0x60
\$ConvertToNonresident
pool: 0xffff94895a7e4560 | file object: 0xffff94895a7e45c0 | offsetby: 0x60
\$ConvertToNonresident
pool: 0xffff94895a7e4e00 | file object: 0xffff94895a7e4e60 | offsetby: 0x60
\Windows\System32\drivers\monitor.sys
pool: 0xffff94895a7e50e0 | file object: 0xffff94895a7e5140 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a7f81b0 | file object: 0xffff94895a7f8210 | offsetby: 0x60
\Windows\System32\drivers\crashdmp.sys
pool: 0xffff94895a7f8320 | file object: 0xffff94895a7f8380 | offsetby: 0x60
KtmLog
pool: 0xffff94895a7f8490 | file object: 0xffff94895a7f84f0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a7f8600 | file object: 0xffff94895a7f8660 | offsetby: 0x60
\$Extend\$RmMetadata\$Txf:$I30:$INDEX_ALLOCATION
pool: 0xffff94895a7f8a50 | file object: 0xffff94895a7f8ab0 | offsetby: 0x60
\$Extend\$RmMetadata\$TxfLog\$TxfLogContainer00000000000000000003
pool: 0xffff94895a7f8bc0 | file object: 0xffff94895a7f8c20 | offsetby: 0x60
TxfLog
pool: 0xffff94895a7f8d30 | file object: 0xffff94895a7f8d90 | offsetby: 0x60
\$Extend\$RmMetadata\$TxfLog\$Tops:$T:$DATA
pool: 0xffff94895a7f9180 | file object: 0xffff94895a7f91e0 | offsetby: 0x60
\Device\HarddiskVolume2\$Extend\$RmMetadata\$TxfLog\$TxfLog
pool: 0xffff94895a7f92f0 | file object: 0xffff94895a7f9350 | offsetby: 0x60
\:$I30:$INDEX_ALLOCATION
pool: 0xffff94895a7f95d0 | file object: 0xffff94895a7f9630 | offsetby: 0x60
\$Directory
pool: 0xffff94895a7f9740 | file object: 0xffff94895a7f97a0 | offsetby: 0x60
\$Extend\$RmMetadata\$TxfLog\$Tops
pool: 0xffff94895a7f98b0 | file object: 0xffff94895a7f9910 | offsetby: 0x60
\Device\HarddiskVolume2\$Extend\$RmMetadata\$TxfLog\$TxfLog
pool: 0xffff94895a7f9a20 | file object: 0xffff94895a7f9a80 | offsetby: 0x60
\$Directory
pool: 0xffff94895a7f9b90 | file object: 0xffff94895a7f9bf0 | offsetby: 0x60
\$Extend\$Reparse:$R:$INDEX_ALLOCATION
pool: 0xffff94895a825040 | file object: 0xffff94895a8250a0 | offsetby: 0x60
\$Directory
pool: 0xffff94895a8251b0 | file object: 0xffff94895a825210 | offsetby: 0x60
\Windows\System32\ntdll.dll
pool: 0xffff94895a825490 | file object: 0xffff94895a8254f0 | offsetby: 0x60
\Windows\SysWOW64\ntdll.dll
pool: 0xffff94895a825770 | file object: 0xffff94895a8257d0 | offsetby: 0x60
\$Directory
pool: 0xffff94895a825a50 | file object: 0xffff94895a825ab0 | offsetby: 0x60
\Windows\System32\drivers\filecrypt.sys
pool: 0xffff94895a825bc0 | file object: 0xffff94895a825c20 | offsetby: 0x60
\Windows\System32\drivers\storahci.sys
pool: 0xffff94895a825d30 | file object: 0xffff94895a825d90 | offsetby: 0x60
\$Directory
pool: 0xffff94895a826010 | file object: 0xffff94895a826070 | offsetby: 0x60
\$Directory
pool: 0xffff94895a826460 | file object: 0xffff94895a8264c0 | offsetby: 0x60
\Windows\System32\vertdll.dll
pool: 0xffff94895a8265d0 | file object: 0xffff94895a826630 | offsetby: 0x60
\Windows\System32\drivers\Diskdump.sys
pool: 0xffff94895a826740 | file object: 0xffff94895a8267a0 | offsetby: 0x60
\Windows\System32\drivers\en-US\ntfs.sys.mui
pool: 0xffff94895a826d00 | file object: 0xffff94895a826d60 | offsetby: 0x60
\Windows\System32\drivers\dumpfve.sys
pool: 0xffff94895a826e70 | file object: 0xffff94895a826ed0 | offsetby: 0x60
\ProgramData\Microsoft\MF\Active.GRL
pool: 0xffff94895a8c8040 | file object: 0xffff94895a8c80a0 | offsetby: 0x60
\Windows\System32\drivers\afunix.sys
pool: 0xffff94895a8c8320 | file object: 0xffff94895a8c8380 | offsetby: 0x60
\Windows\System32\drivers\afd.sys
pool: 0xffff94895a8c8600 | file object: 0xffff94895a8c8660 | offsetby: 0x60
\Windows\System32\drivers\vwififlt.sys
pool: 0xffff94895a8c8770 | file object: 0xffff94895a8c87d0 | offsetby: 0x60
\Windows\System32\drivers\netbt.sys
pool: 0xffff94895a8c8a50 | file object: 0xffff94895a8c8ab0 | offsetby: 0x60
\Windows\System32\DriverStore\FileRepository\basicrender.inf_amd64_ba2a8de08ea0d469\BasicRender.sys
pool: 0xffff94895a8c8bc0 | file object: 0xffff94895a8c8c20 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a8c9180 | file object: 0xffff94895a8c91e0 | offsetby: 0x60
\Windows\System32\drivers\npfs.sys
pool: 0xffff94895a8c9460 | file object: 0xffff94895a8c94c0 | offsetby: 0x60
\Windows\System32\drivers\tdi.sys
pool: 0xffff94895a8c98b0 | file object: 0xffff94895a8c9910 | offsetby: 0x60
\Windows\System32\drivers\msfs.sys
pool: 0xffff94895a8c9b90 | file object: 0xffff94895a8c9bf0 | offsetby: 0x60
\Windows\System32\drivers\tdx.sys
pool: 0xffff94895a8f2040 | file object: 0xffff94895a8f20a0 | offsetby: 0x60
\$Extend\$RmMetadata\$Repair:$Verify:$DATA
pool: 0xffff94895a8f2320 | file object: 0xffff94895a8f2380 | offsetby: 0x60
\$Secure:$SDS:$DATA
pool: 0xffff94895a8f2770 | file object: 0xffff94895a8f27d0 | offsetby: 0x60
\$Extend\$Deleted:$I30:$INDEX_ALLOCATION
pool: 0xffff94895a8f2a50 | file object: 0xffff94895a8f2ab0 | offsetby: 0x60
\$Extend\$RmMetadata\$Repair:$Corrupt:$DATA
pool: 0xffff94895a8f2bc0 | file object: 0xffff94895a8f2c20 | offsetby: 0x60
\:$I30:$INDEX_ALLOCATION
pool: 0xffff94895a8f3010 | file object: 0xffff94895a8f3070 | offsetby: 0x60
\$BitMap
pool: 0xffff94895a8f3180 | file object: 0xffff94895a8f31e0 | offsetby: 0x60
\Device\HarddiskVolume1\$Extend\$RmMetadata\$TxfLog\$TxfLog
pool: 0xffff94895a8f32f0 | file object: 0xffff94895a8f3350 | offsetby: 0x60
\$Mft::$BITMAP
pool: 0xffff94895a8f3460 | file object: 0xffff94895a8f34c0 | offsetby: 0x60
\$Extend\$RmMetadata\$TxfLog\$TxfLog.blf
pool: 0xffff94895a8f3740 | file object: 0xffff94895a8f37a0 | offsetby: 0x60
\$Mft
pool: 0xffff94895a8f38b0 | file object: 0xffff94895a8f3910 | offsetby: 0x60
\$LogFile
pool: 0xffff94895a8f3a20 | file object: 0xffff94895a8f3a80 | offsetby: 0x60
\$Extend\$RmMetadata\$Repair
pool: 0xffff94895a8f3d00 | file object: 0xffff94895a8f3d60 | offsetby: 0x60
\$Secure:$SII:$INDEX_ALLOCATION
pool: 0xffff94895a8f3e70 | file object: 0xffff94895a8f3ed0 | offsetby: 0x60
\$Extend:$I30:$INDEX_ALLOCATION
pool: 0xffff94895a931050 | file object: 0xffff94895a9310b0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a9311c0 | file object: 0xffff94895a931220 | offsetby: 0x60
\Windows\System32\drivers\kbdclass.sys
pool: 0xffff94895a9314a0 | file object: 0xffff94895a931500 | offsetby: 0x60
\Windows\System32\drivers\usbohci.sys
pool: 0xffff94895a931780 | file object: 0xffff94895a9317e0 | offsetby: 0x60
\Windows\System32\drivers\ks.sys
pool: 0xffff94895a932300 | file object: 0xffff94895a932360 | offsetby: 0x60
\Windows\System32\drivers\usbport.sys
pool: 0xffff94895a9325e0 | file object: 0xffff94895a932640 | offsetby: 0x60
\Windows\System32\drivers\CmBatt.sys
pool: 0xffff94895a932750 | file object: 0xffff94895a9327b0 | offsetby: 0x60
\Windows\System32\drivers\battc.sys
pool: 0xffff94895a9328c0 | file object: 0xffff94895a932920 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a932ba0 | file object: 0xffff94895a932c00 | offsetby: 0x60
\Windows\System32\drivers\VBoxWddm.sys
pool: 0xffff94895a932e80 | file object: 0xffff94895a932ee0 | offsetby: 0x60
\Windows\System32\drivers\intelppm.sys
pool: 0xffff94895a933160 | file object: 0xffff94895a9331c0 | offsetby: 0x60
\Windows\System32\drivers\E1G6032E.sys
pool: 0xffff94895a933440 | file object: 0xffff94895a9334a0 | offsetby: 0x60
\Windows\System32\drivers\VBoxMouse.sys
pool: 0xffff94895a9335b0 | file object: 0xffff94895a933610 | offsetby: 0x60
\Windows\System32\drivers\hdaudbus.sys
pool: 0xffff94895a933720 | file object: 0xffff94895a933780 | offsetby: 0x60
\Windows\System32\drivers\portcls.sys
pool: 0xffff94895a933a00 | file object: 0xffff94895a933a60 | offsetby: 0x60
\Windows\System32\drivers\mouclass.sys
pool: 0xffff94895a933b70 | file object: 0xffff94895a933bd0 | offsetby: 0x60
\Windows\System32\drivers\drmk.sys
pool: 0xffff94895a934130 | file object: 0xffff94895a934190 | offsetby: 0x60
\Windows\System32\DriverStore\FileRepository\swenum.inf_amd64_1c567926e5b29133\swenum.sys
pool: 0xffff94895a934410 | file object: 0xffff94895a934470 | offsetby: 0x60
\Windows\System32\drivers\rdpbus.sys
pool: 0xffff94895a934e20 | file object: 0xffff94895a934e80 | offsetby: 0x60
\Windows\System32\drivers\NdisVirtualBus.sys
pool: 0xffff94895a965040 | file object: 0xffff94895a9650a0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a9651b0 | file object: 0xffff94895a965210 | offsetby: 0x60
\Windows\System32\drivers\mssmbios.sys
pool: 0xffff94895a965490 | file object: 0xffff94895a9654f0 | offsetby: 0x60
\Windows\System32\drivers\npsvctrig.sys
pool: 0xffff94895a965600 | file object: 0xffff94895a965660 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a9658e0 | file object: 0xffff94895a965940 | offsetby: 0x60
\Windows\System32\drivers\nsiproxy.sys
pool: 0xffff94895a966010 | file object: 0xffff94895a966070 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a966180 | file object: 0xffff94895a9661e0 | offsetby: 0x60
\Windows\System32\drivers\dam.sys
pool: 0xffff94895a966740 | file object: 0xffff94895a9667a0 | offsetby: 0x60
\Windows\System32\drivers\gpuenergydrv.sys
pool: 0xffff94895a966a20 | file object: 0xffff94895a966a80 | offsetby: 0x60
\$MftMirr
pool: 0xffff94895a966e70 | file object: 0xffff94895a966ed0 | offsetby: 0x60
\Windows\System32\drivers\dfsc.sys
pool: 0xffff94895a967040 | file object: 0xffff94895a9670a0 | offsetby: 0x60
\Windows\System32\drivers\pacer.sys
pool: 0xffff94895a967320 | file object: 0xffff94895a967380 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a967490 | file object: 0xffff94895a9674f0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a967600 | file object: 0xffff94895a967660 | offsetby: 0x60
\$Directory
pool: 0xffff94895a967a50 | file object: 0xffff94895a967ab0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a967bc0 | file object: 0xffff94895a967c20 | offsetby: 0x60
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Desktop-Required-Package03~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff94895a968180 | file object: 0xffff94895a9681e0 | offsetby: 0x60
\Windows\System32\drivers\netbios.sys
pool: 0xffff94895a9682f0 | file object: 0xffff94895a968350 | offsetby: 0x60
\Windows\System32\drivers\VBoxSF.sys
pool: 0xffff94895a9685d0 | file object: 0xffff94895a968630 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a968740 | file object: 0xffff94895a9687a0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a9688b0 | file object: 0xffff94895a968910 | offsetby: 0x60
\Windows\System32\drivers\rdbss.sys
pool: 0xffff94895a968a20 | file object: 0xffff94895a968a80 | offsetby: 0x60
\Windows\System32\drivers\csc.sys
pool: 0xffff94895a9f31c0 | file object: 0xffff94895a9f3220 | offsetby: 0x60
\$Extend\$RmMetadata\$TxfLog\$TxfLogContainer00000000000000000002
pool: 0xffff94895a9f34a0 | file object: 0xffff94895a9f3500 | offsetby: 0x60
\Windows\apppatch\sysmain.sdb
pool: 0xffff94895a9f3610 | file object: 0xffff94895a9f3670 | offsetby: 0x60
\$Directory
pool: 0xffff94895a9f3780 | file object: 0xffff94895a9f37e0 | offsetby: 0x60
\Device\HarddiskVolume1\$Extend\$RmMetadata\$TxfLog\$TxfLog
pool: 0xffff94895a9f3a60 | file object: 0xffff94895a9f3ac0 | offsetby: 0x60
KtmLog
pool: 0xffff94895a9f3bd0 | file object: 0xffff94895a9f3c30 | offsetby: 0x60
\Windows\bootstat.dat
pool: 0xffff94895a9f4020 | file object: 0xffff94895a9f4080 | offsetby: 0x60
\Windows\System32\drivers\bam.sys
pool: 0xffff94895a9f4190 | file object: 0xffff94895a9f41f0 | offsetby: 0x60
TxfLog
pool: 0xffff94895a9f4750 | file object: 0xffff94895a9f47b0 | offsetby: 0x60
\Windows\System32\smss.exe
pool: 0xffff94895a9f48c0 | file object: 0xffff94895a9f4920 | offsetby: 0x60
\Windows\System32\drivers\Vid.sys
pool: 0xffff94895a9f4e80 | file object: 0xffff94895a9f4ee0 | offsetby: 0x60
\Device\HarddiskVolume1\$Extend\$RmMetadata\$TxfLog\$TxfLog
pool: 0xffff94895a9f5160 | file object: 0xffff94895a9f51c0 | offsetby: 0x60
\$Extend\$RmMetadata\$TxfLog\$TxfLogContainer00000000000000000001
pool: 0xffff94895a9f52d0 | file object: 0xffff94895a9f5330 | offsetby: 0x60
\$Extend\$RmMetadata\$Txf:$I30:$INDEX_ALLOCATION
pool: 0xffff94895a9f5440 | file object: 0xffff94895a9f54a0 | offsetby: 0x60
\Windows\System32\drivers\ahcache.sys
pool: 0xffff94895a9f5890 | file object: 0xffff94895a9f58f0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895a9f5a00 | file object: 0xffff94895a9f5a60 | offsetby: 0x60
\$Extend\$RmMetadata\$TxfLog\$Tops
pool: 0xffff94895a9f5b70 | file object: 0xffff94895a9f5bd0 | offsetby: 0x60
\$Extend\$RmMetadata\$TxfLog\$Tops:$T:$DATA
pool: 0xffff94895a9f5ce0 | file object: 0xffff94895a9f5d40 | offsetby: 0x60
\:$I30:$INDEX_ALLOCATION
pool: 0xffff94895a9f5e50 | file object: 0xffff94895a9f5eb0 | offsetby: 0x60
\Windows\System32\drivers\i8042prt.sys
pool: 0xffff94895a9f6410 | file object: 0xffff94895a9f6470 | offsetby: 0x60
\Windows\System32\drivers\winhvr.sys
pool: 0xffff94895a9f6860 | file object: 0xffff94895a9f68c0 | offsetby: 0x60
\Windows\System32\drivers\kdnic.sys
pool: 0xffff94895a9f6b40 | file object: 0xffff94895a9f6ba0 | offsetby: 0x60
\Windows\System32\DriverStore\FileRepository\compositebus.inf_amd64_43ac632006e874bb\CompositeBus.sys
pool: 0xffff94895a9f6e20 | file object: 0xffff94895a9f6e80 | offsetby: 0x60
\Windows\System32\drivers\CAD.sys
pool: 0xffff94895aa09e60 | file object: 0xffff94895aa09ec0 | offsetby: 0x60
\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventlog-Security.etl
pool: 0xffff94895aa0a2b0 | file object: 0xffff94895aa0a310 | offsetby: 0x60
\$Secure:$SDH:$INDEX_ALLOCATION
pool: 0xffff94895aa0a420 | file object: 0xffff94895aa0a480 | offsetby: 0x60
\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-Application.etl
pool: 0xffff94895aa0a590 | file object: 0xffff94895aa0a5f0 | offsetby: 0x60
\Windows\System32\LogFiles\WMI\LwtNetLog.etl
pool: 0xffff94895aa0a700 | file object: 0xffff94895aa0a760 | offsetby: 0x60
\Windows\System32\LogFiles\WMI\RtBackup\EtwRTDefenderApiLogger.etl
pool: 0xffff94895aa0a9e0 | file object: 0xffff94895aa0aa40 | offsetby: 0x60
\Windows\System32\LogFiles\WMI\NtfsLog.etl
pool: 0xffff94895aa0ab50 | file object: 0xffff94895aa0abb0 | offsetby: 0x60
\Windows\System32\LogFiles\WMI\RadioMgr.etl
pool: 0xffff94895aa0b560 | file object: 0xffff94895aa0b5c0 | offsetby: 0x60
\Windows\System32\LogFiles\WMI\RtBackup\EtwRTDefenderAuditLogger.etl
pool: 0xffff94895aa0b6d0 | file object: 0xffff94895aa0b730 | offsetby: 0x60
\$Directory
pool: 0xffff94895aa0b840 | file object: 0xffff94895aa0b8a0 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895aa0bc90 | file object: 0xffff94895aa0bcf0 | offsetby: 0x60
\Windows\System32\LogFiles\WMI\NetCore.etl
pool: 0xffff94895aa0c250 | file object: 0xffff94895aa0c2b0 | offsetby: 0x60
\$Directory
pool: 0xffff94895aa0c3c0 | file object: 0xffff94895aa0c420 | offsetby: 0x60
\$Directory
pool: 0xffff94895aa0c6a0 | file object: 0xffff94895aa0c700 | offsetby: 0x60
\Windows\System32\LogFiles\WMI\Microsoft-Windows-Rdp-Graphics-RdpIdd-Trace.etl
pool: 0xffff94895aa0c810 | file object: 0xffff94895aa0c870 | offsetby: 0x60
\$Directory
pool: 0xffff94895aa0c980 | file object: 0xffff94895aa0c9e0 | offsetby: 0x60
\Windows\System32\LogFiles\WMI\RtBackup\EtwRTEventLog-System.etl
pool: 0xffff94895aa0caf0 | file object: 0xffff94895aa0cb50 | offsetby: 0x60
\Windows\System32\LogFiles\WMI\RtBackup\EtwRTDiagLog.etl
pool: 0xffff94895aa0d950 | file object: 0xffff94895aa0d9b0 | offsetby: 0x60
\Windows\System32\WDI\LogFiles\WdiContextLog.etl.002
pool: 0xffff94895aa0e080 | file object: 0xffff94895aa0e0e0 | offsetby: 0x60
\Windows\System32\LogFiles\WMI\Wifi.etl
pool: 0xffff94895aa0e920 | file object: 0xffff94895aa0e980 | offsetby: 0x60
\$Directory
pool: 0xffff94895aa0ec00 | file object: 0xffff94895aa0ec60 | offsetby: 0x60
\$Directory
pool: 0xffff94895aa0ed70 | file object: 0xffff94895aa0edd0 | offsetby: 0x60
\Windows\System32\LogFiles\WMI\RtBackup\EtwRTUBPM.etl
pool: 0xffff94895aa13050 | file object: 0xffff94895aa130d0 | offsetby: 0x80
\Windows\SysWOW64\profapi.dll
pool: 0xffff94895aa131e0 | file object: 0xffff94895aa13260 | offsetby: 0x80
\Windows\SysWOW64\ws2_32.dll
pool: 0xffff94895aa13370 | file object: 0xffff94895aa133f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895aa13500 | file object: 0xffff94895aa13580 | offsetby: 0x80
\Windows\SysWOW64\cryptsp.dll
pool: 0xffff94895aa13690 | file object: 0xffff94895aa13710 | offsetby: 0x80
\Windows\SysWOW64\imagehlp.dll
pool: 0xffff94895aa13820 | file object: 0xffff94895aa138a0 | offsetby: 0x80
\Windows\SysWOW64\advapi32.dll
pool: 0xffff94895aa139b0 | file object: 0xffff94895aa13a30 | offsetby: 0x80
\Windows\SysWOW64\shlwapi.dll
pool: 0xffff94895aa13b40 | file object: 0xffff94895aa13bc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895aa13cd0 | file object: 0xffff94895aa13d50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895aa13e60 | file object: 0xffff94895aa13ee0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895aa14180 | file object: 0xffff94895aa14200 | offsetby: 0x80
\Windows\SysWOW64\ucrtbase.dll
pool: 0xffff94895aa14310 | file object: 0xffff94895aa14390 | offsetby: 0x80
\Windows\SysWOW64\Wldap32.dll
pool: 0xffff94895aa144a0 | file object: 0xffff94895aa14520 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895aa14630 | file object: 0xffff94895aa146b0 | offsetby: 0x80
\Windows\SysWOW64\user32.dll
pool: 0xffff94895aa147c0 | file object: 0xffff94895aa14840 | offsetby: 0x80
\Windows\SysWOW64\msvcp_win.dll
pool: 0xffff94895aa14950 | file object: 0xffff94895aa149d0 | offsetby: 0x80
\Windows\SysWOW64\coml2.dll
pool: 0xffff94895aa14ae0 | file object: 0xffff94895aa14b60 | offsetby: 0x80
\Windows\SysWOW64\win32u.dll
pool: 0xffff94895aa14c70 | file object: 0xffff94895aa14cf0 | offsetby: 0x80
\Windows\SysWOW64\sspicli.dll
pool: 0xffff94895aa14e00 | file object: 0xffff94895aa14e80 | offsetby: 0x80
\Windows\SysWOW64\gdi32.dll
pool: 0xffff94895aa15120 | file object: 0xffff94895aa151a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895aa152b0 | file object: 0xffff94895aa15330 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895aa15440 | file object: 0xffff94895aa154c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895aa155d0 | file object: 0xffff94895aa15650 | offsetby: 0x80
\Windows\System32\autochk.exe
pool: 0xffff94895aa15760 | file object: 0xffff94895aa157e0 | offsetby: 0x80
\Windows\SysWOW64\shell32.dll
pool: 0xffff94895aa158f0 | file object: 0xffff94895aa15970 | offsetby: 0x80
\Windows\SysWOW64\msctf.dll
pool: 0xffff94895aa15a80 | file object: 0xffff94895aa15b00 | offsetby: 0x80
\Windows\SysWOW64\gdi32full.dll
pool: 0xffff94895aa15c10 | file object: 0xffff94895aa15c90 | offsetby: 0x80
\Windows\SysWOW64\kernel.appcore.dll
pool: 0xffff94895aa15da0 | file object: 0xffff94895aa15e20 | offsetby: 0x80
\Windows\SysWOW64\cryptbase.dll
pool: 0xffff94895aa160c0 | file object: 0xffff94895aa16140 | offsetby: 0x80
\Windows\SysWOW64\KernelBase.dll
pool: 0xffff94895aa16250 | file object: 0xffff94895aa162d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895aa163e0 | file object: 0xffff94895aa16460 | offsetby: 0x80
\Windows\System32\config\SOFTWARE
pool: 0xffff94895aa16570 | file object: 0xffff94895aa165f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895aa16700 | file object: 0xffff94895aa16780 | offsetby: 0x80
\Windows\System32\config\SYSTEM.LOG1
pool: 0xffff94895aa16890 | file object: 0xffff94895aa16910 | offsetby: 0x80
\Windows\System32\config\SOFTWARE.LOG1
pool: 0xffff94895aa16a20 | file object: 0xffff94895aa16aa0 | offsetby: 0x80
\$Directory
pool: 0xffff94895aa16bb0 | file object: 0xffff94895aa16c30 | offsetby: 0x80
\Windows\System32\config\SOFTWARE.LOG2
pool: 0xffff94895aa16d40 | file object: 0xffff94895aa16dc0 | offsetby: 0x80
\Windows\bootstat.dat
pool: 0xffff94895aa1b050 | file object: 0xffff94895aa1b0d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895aa1b1e0 | file object: 0xffff94895aa1b260 | offsetby: 0x80
\$Directory
pool: 0xffff94895aa1b370 | file object: 0xffff94895aa1b3f0 | offsetby: 0x80
\Windows\System32\config\SAM
pool: 0xffff94895aa1b500 | file object: 0xffff94895aa1b580 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895aa1b690 | file object: 0xffff94895aa1b710 | offsetby: 0x80
\$Directory
pool: 0xffff94895aa1b820 | file object: 0xffff94895aa1b8a0 | offsetby: 0x80
\Windows\bootstat.dat
pool: 0xffff94895aa1b9b0 | file object: 0xffff94895aa1ba30 | offsetby: 0x80
\Windows\System32\config\SAM.LOG1
pool: 0xffff94895aa1bb40 | file object: 0xffff94895aa1bbc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895aa1bcd0 | file object: 0xffff94895aa1bd50 | offsetby: 0x80
\Boot\BCD
pool: 0xffff94895aa1be60 | file object: 0xffff94895aa1bee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895aa1c180 | file object: 0xffff94895aa1c200 | offsetby: 0x80
\Windows\System32\config\SECURITY
pool: 0xffff94895aa1c310 | file object: 0xffff94895aa1c390 | offsetby: 0x80
\Windows\System32\en-US\user32.dll.mui
pool: 0xffff94895aa1c4a0 | file object: 0xffff94895aa1c520 | offsetby: 0x80
\swapfile.sys
pool: 0xffff94895aa1c630 | file object: 0xffff94895aa1c6b0 | offsetby: 0x80
\Windows\System32\config\DEFAULT.LOG2
pool: 0xffff94895aa1c7c0 | file object: 0xffff94895aa1c840 | offsetby: 0x80
\Windows\System32\win32kfull.sys
pool: 0xffff94895aa1c950 | file object: 0xffff94895aa1c9d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895aa1cae0 | file object: 0xffff94895aa1cb60 | offsetby: 0x80
\Windows\System32\config\SECURITY.LOG2
pool: 0xffff94895aa1cc70 | file object: 0xffff94895aa1ccf0 | offsetby: 0x80
\Windows\System32\win32kbase.sys
pool: 0xffff94895aa1ce00 | file object: 0xffff94895aa1ce80 | offsetby: 0x80
\pagefile.sys
pool: 0xffff94895aa1d120 | file object: 0xffff94895aa1d1a0 | offsetby: 0x80
\Windows\System32\config\DEFAULT.LOG1
pool: 0xffff94895aa1d2b0 | file object: 0xffff94895aa1d330 | offsetby: 0x80
\Windows\System32\win32k.sys
pool: 0xffff94895aa1d440 | file object: 0xffff94895aa1d4c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895aa1d5d0 | file object: 0xffff94895aa1d650 | offsetby: 0x80
\Windows\System32\en-US\win32kbase.sys.mui
pool: 0xffff94895aa1d760 | file object: 0xffff94895aa1d7e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895aa1d8f0 | file object: 0xffff94895aa1d970 | offsetby: 0x80
\Windows\System32\config\SECURITY.LOG1
pool: 0xffff94895aa1da80 | file object: 0xffff94895aa1db00 | offsetby: 0x80
\Windows\System32\config\SAM.LOG2
pool: 0xffff94895aa1dc10 | file object: 0xffff94895aa1dc90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895aa1dda0 | file object: 0xffff94895aa1de20 | offsetby: 0x80
\Windows\System32\config\DEFAULT
pool: 0xffff94895aa1e0c0 | file object: 0xffff94895aa1e140 | offsetby: 0x80
\Boot\BCD.LOG
pool: 0xffff94895aa1e250 | file object: 0xffff94895aa1e2d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895aa1e3e0 | file object: 0xffff94895aa1e460 | offsetby: 0x80
\Windows\System32\winsrv.dll
pool: 0xffff94895aa1e570 | file object: 0xffff94895aa1e5f0 | offsetby: 0x80
\Windows\System32\csrsrv.dll
pool: 0xffff94895aa1e700 | file object: 0xffff94895aa1e780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895aa1e890 | file object: 0xffff94895aa1e910 | offsetby: 0x80
\Windows\System32\basesrv.dll
pool: 0xffff94895aa1ea20 | file object: 0xffff94895aa1eaa0 | offsetby: 0x80
\$Directory
pool: 0xffff94895aa1ebb0 | file object: 0xffff94895aa1ec30 | offsetby: 0x80
\Windows\System32\csrss.exe
pool: 0xffff94895aa1ed40 | file object: 0xffff94895aa1edc0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ab761e0 | file object: 0xffff94895ab76260 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ab76370 | file object: 0xffff94895ab763f0 | offsetby: 0x80
\Windows\System32\wininitext.dll
pool: 0xffff94895ab76500 | file object: 0xffff94895ab76580 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ab76690 | file object: 0xffff94895ab76710 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ab76820 | file object: 0xffff94895ab768a0 | offsetby: 0x80
\Windows\System32\bcastdvruserservice.dll
pool: 0xffff94895ab769b0 | file object: 0xffff94895ab76a30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ab76b40 | file object: 0xffff94895ab76bc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ab76cd0 | file object: 0xffff94895ab76d50 | offsetby: 0x80
\Windows\System32\cdd.dll
pool: 0xffff94895ab76e60 | file object: 0xffff94895ab76ee0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ab77180 | file object: 0xffff94895ab77200 | offsetby: 0x80
\Windows\System32\wininit.exe
pool: 0xffff94895ab77310 | file object: 0xffff94895ab77390 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ab774a0 | file object: 0xffff94895ab77520 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ab77630 | file object: 0xffff94895ab776b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ab777c0 | file object: 0xffff94895ab77840 | offsetby: 0x80
\Windows\System32\slc.dll
pool: 0xffff94895ab77950 | file object: 0xffff94895ab779d0 | offsetby: 0x80
\Windows\System32\en-US\csrss.exe.mui
pool: 0xffff94895ab77ae0 | file object: 0xffff94895ab77b60 | offsetby: 0x80
\Windows\System32\umstartup.etl
pool: 0xffff94895ab77c70 | file object: 0xffff94895ab77cf0 | offsetby: 0x80
\Windows\System32\winlogon.exe
pool: 0xffff94895ab77e00 | file object: 0xffff94895ab77e80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ab78120 | file object: 0xffff94895ab781a0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ab782b0 | file object: 0xffff94895ab78330 | offsetby: 0x80
\Windows\System32\csrss.exe
pool: 0xffff94895ab78440 | file object: 0xffff94895ab784c0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ab785d0 | file object: 0xffff94895ab78650 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ab78760 | file object: 0xffff94895ab787e0 | offsetby: 0x80
\Windows\System32\en-US\winsrv.dll.mui
pool: 0xffff94895ab788f0 | file object: 0xffff94895ab78970 | offsetby: 0x80
\Windows\System32\drivers\dxgmms2.sys
pool: 0xffff94895ab78c10 | file object: 0xffff94895ab78c90 | offsetby: 0x80
\Windows\System32\winsrvext.dll
pool: 0xffff94895ab78da0 | file object: 0xffff94895ab78e20 | offsetby: 0x80
\Windows\System32\FNTCACHE.DAT
pool: 0xffff94895ab790c0 | file object: 0xffff94895ab79140 | offsetby: 0x80
\Windows\System32\sxssrv.dll
pool: 0xffff94895ab79250 | file object: 0xffff94895ab792d0 | offsetby: 0x80
\Windows\System32\KBDUS.DLL
pool: 0xffff94895ab793e0 | file object: 0xffff94895ab79460 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ab79570 | file object: 0xffff94895ab795f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ab79700 | file object: 0xffff94895ab79780 | offsetby: 0x80
\Windows\System32\sspicli.dll
pool: 0xffff94895ab79890 | file object: 0xffff94895ab79910 | offsetby: 0x80
\Windows\System32\userenv.dll
pool: 0xffff94895ab79a20 | file object: 0xffff94895ab79aa0 | offsetby: 0x80
\Windows\System32\en-US\wininit.exe.mui
pool: 0xffff94895ab79bb0 | file object: 0xffff94895ab79c30 | offsetby: 0x80
\Windows\System32\imm32.dll
pool: 0xffff94895ab79d40 | file object: 0xffff94895ab79dc0 | offsetby: 0x80
\Windows\System32\en-US\winlogon.exe.mui
pool: 0xffff94895ac441b0 | file object: 0xffff94895ac44210 | offsetby: 0x60
\Windows\System32\drivers\tbs.sys
pool: 0xffff94895ac44320 | file object: 0xffff94895ac44380 | offsetby: 0x60
\Windows\System32\drivers\beep.sys
pool: 0xffff94895ac44a50 | file object: 0xffff94895ac44ab0 | offsetby: 0x60
\Windows\System32\drivers\watchdog.sys
pool: 0xffff94895ac44bc0 | file object: 0xffff94895ac44c20 | offsetby: 0x60
\Windows\System32\DriverStore\FileRepository\basicdisplay.inf_amd64_307898c750ba9e44\BasicDisplay.sys
pool: 0xffff94895ac44d30 | file object: 0xffff94895ac44d90 | offsetby: 0x60
\$Directory
pool: 0xffff94895ac455d0 | file object: 0xffff94895ac45630 | offsetby: 0x60
\Windows\System32\drivers\dxgkrnl.sys
pool: 0xffff94895ac45a20 | file object: 0xffff94895ac45a80 | offsetby: 0x60
\Windows\System32\drivers\null.sys
pool: 0xffff94895ac66330 | file object: 0xffff94895ac66390 | offsetby: 0x60
\$Directory
pool: 0xffff94895ac66610 | file object: 0xffff94895ac66670 | offsetby: 0x60
\$Directory
pool: 0xffff94895ac66780 | file object: 0xffff94895ac667e0 | offsetby: 0x60
\$Directory
pool: 0xffff94895ac66a60 | file object: 0xffff94895ac66ac0 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ac67020 | file object: 0xffff94895ac67080 | offsetby: 0x60
\$Directory
pool: 0xffff94895ac67190 | file object: 0xffff94895ac671f0 | offsetby: 0x60
\$Directory
pool: 0xffff94895ac67300 | file object: 0xffff94895ac67360 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ac67750 | file object: 0xffff94895ac677b0 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ac678c0 | file object: 0xffff94895ac67920 | offsetby: 0x60
\$Directory
pool: 0xffff94895ac67a30 | file object: 0xffff94895ac67a90 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ac67ba0 | file object: 0xffff94895ac67c00 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ac68160 | file object: 0xffff94895ac681c0 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ac68440 | file object: 0xffff94895ac684a0 | offsetby: 0x60
\$Directory
pool: 0xffff94895ac68720 | file object: 0xffff94895ac68780 | offsetby: 0x60
\$Directory
pool: 0xffff94895ac68890 | file object: 0xffff94895ac688f0 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ac68b70 | file object: 0xffff94895ac68bd0 | offsetby: 0x60
\$Directory
pool: 0xffff94895ac68ce0 | file object: 0xffff94895ac68d40 | offsetby: 0x60
\$Directory
pool: 0xffff94895ac692a0 | file object: 0xffff94895ac69300 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ac69410 | file object: 0xffff94895ac69470 | offsetby: 0x60
\Windows\System32\drivers\HdAudio.sys
pool: 0xffff94895ac69580 | file object: 0xffff94895ac695e0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ac696f0 | file object: 0xffff94895ac69750 | offsetby: 0x60
\Windows\System32\drivers\usbhub.sys
pool: 0xffff94895ac69860 | file object: 0xffff94895ac698c0 | offsetby: 0x60
\Windows\System32\drivers\usbd.sys
pool: 0xffff94895ac69cb0 | file object: 0xffff94895ac69d10 | offsetby: 0x60
\Windows\System32\drivers\ksthunk.sys
pool: 0xffff94895b0bc040 | file object: 0xffff94895b0bc0c0 | offsetby: 0x80
\Windows\System32\oleaut32.dll
pool: 0xffff94895b0bc1d0 | file object: 0xffff94895b0bc250 | offsetby: 0x80
\Windows\System32\msvcrt.dll
pool: 0xffff94895b0bc360 | file object: 0xffff94895b0bc3e0 | offsetby: 0x80
\Windows\System32\combase.dll
pool: 0xffff94895b0bc4f0 | file object: 0xffff94895b0bc570 | offsetby: 0x80
\Windows\System32\rpcrt4.dll
pool: 0xffff94895b0bc680 | file object: 0xffff94895b0bc700 | offsetby: 0x80
\Windows\System32\clbcatq.dll
pool: 0xffff94895b0bc810 | file object: 0xffff94895b0bc890 | offsetby: 0x80
\Windows\System32\msvcp_win.dll
pool: 0xffff94895b0bc9a0 | file object: 0xffff94895b0bca20 | offsetby: 0x80
\Windows\System32\imagehlp.dll
pool: 0xffff94895b0bcb30 | file object: 0xffff94895b0bcbb0 | offsetby: 0x80
\Windows\System32\cfgmgr32.dll
pool: 0xffff94895b0bccc0 | file object: 0xffff94895b0bcd40 | offsetby: 0x80
\Windows\System32\gdi32full.dll
pool: 0xffff94895b0bce50 | file object: 0xffff94895b0bced0 | offsetby: 0x80
\Windows\System32\ucrtbase.dll
pool: 0xffff94895b0bd170 | file object: 0xffff94895b0bd1f0 | offsetby: 0x80
\Windows\System32\user32.dll
pool: 0xffff94895b0bd300 | file object: 0xffff94895b0bd380 | offsetby: 0x80
\Windows\System32\windows.storage.dll
pool: 0xffff94895b0bd490 | file object: 0xffff94895b0bd510 | offsetby: 0x80
\Windows\System32\ole32.dll
pool: 0xffff94895b0bd620 | file object: 0xffff94895b0bd6a0 | offsetby: 0x80
\Windows\System32\coml2.dll
pool: 0xffff94895b0bd7b0 | file object: 0xffff94895b0bd830 | offsetby: 0x80
\Windows\System32\psapi.dll
pool: 0xffff94895b0bd940 | file object: 0xffff94895b0bd9c0 | offsetby: 0x80
\Windows\System32\bcryptprimitives.dll
pool: 0xffff94895b0bdad0 | file object: 0xffff94895b0bdb50 | offsetby: 0x80
\Windows\System32\crypt32.dll
pool: 0xffff94895b0bdc60 | file object: 0xffff94895b0bdce0 | offsetby: 0x80
\Windows\System32\comdlg32.dll
pool: 0xffff94895b0bddf0 | file object: 0xffff94895b0bde70 | offsetby: 0x80
\Windows\System32\advapi32.dll
pool: 0xffff94895b621cc0 | file object: 0xffff94895b621d40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895b6227b0 | file object: 0xffff94895b622830 | offsetby: 0x80
\Windows
pool: 0xffff94895b622df0 | file object: 0xffff94895b622e70 | offsetby: 0x80
\Windows\System32\config\SYSTEM
pool: 0xffff94895b62e330 | file object: 0xffff94895b62e390 | offsetby: 0x60
\Windows\System32\drivers\Ndu.sys
pool: 0xffff94895b62e4a0 | file object: 0xffff94895b62e500 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895b62e780 | file object: 0xffff94895b62e7e0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895b62ea60 | file object: 0xffff94895b62eac0 | offsetby: 0x60
\Windows\System32\drivers\mouhid.sys
pool: 0xffff94895b62ebd0 | file object: 0xffff94895b62ec30 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895b62f190 | file object: 0xffff94895b62f1f0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895b62f470 | file object: 0xffff94895b62f4d0 | offsetby: 0x60
\Windows\System32\drivers\PEAuth.sys
pool: 0xffff94895b62f5e0 | file object: 0xffff94895b62f640 | offsetby: 0x60
\Windows\System32\drivers\hidclass.sys
pool: 0xffff94895b62f8c0 | file object: 0xffff94895b62f920 | offsetby: 0x60
\Windows\apppatch\drvmain.sdb
pool: 0xffff94895b62fba0 | file object: 0xffff94895b62fc00 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895b630160 | file object: 0xffff94895b6301c0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895b630440 | file object: 0xffff94895b6304a0 | offsetby: 0x60
\Windows\System32\drivers\hidparse.sys
pool: 0xffff94895b630a00 | file object: 0xffff94895b630a60 | offsetby: 0x60
\Windows\System32\drivers\mmcss.sys
pool: 0xffff94895b630ce0 | file object: 0xffff94895b630d40 | offsetby: 0x60
\Windows\System32\drivers\hidusb.sys
pool: 0xffff94895ba91030 | file object: 0xffff94895ba91090 | offsetby: 0x60
\Windows\System32\drivers\tcpipreg.sys
pool: 0xffff94895ba925c0 | file object: 0xffff94895ba92620 | offsetby: 0x60
\Windows\System32\drivers\wd\WdFilter.sys
pool: 0xffff94895bca1040 | file object: 0xffff94895bca10c0 | offsetby: 0x80
\Windows\System32\Wldap32.dll
pool: 0xffff94895bca11d0 | file object: 0xffff94895bca1250 | offsetby: 0x80
\Windows\System32\wow64win.dll
pool: 0xffff94895bca1360 | file object: 0xffff94895bca13e0 | offsetby: 0x80
\Windows\System32\config\SYSTEM.LOG2
pool: 0xffff94895bca14f0 | file object: 0xffff94895bca1570 | offsetby: 0x80
\Windows\System32\sechost.dll
pool: 0xffff94895bca1680 | file object: 0xffff94895bca1700 | offsetby: 0x80
\Windows\System32\wow64cpu.dll
pool: 0xffff94895bca1810 | file object: 0xffff94895bca1890 | offsetby: 0x80
\Windows\System32\GdiPlus.dll
pool: 0xffff94895bca19a0 | file object: 0xffff94895bca1a20 | offsetby: 0x80
\Windows\System32\setupapi.dll
pool: 0xffff94895bca1b30 | file object: 0xffff94895bca1bb0 | offsetby: 0x80
\Windows\System32\nsi.dll
pool: 0xffff94895bca1cc0 | file object: 0xffff94895bca1d40 | offsetby: 0x80
\Windows\System32\shell32.dll
pool: 0xffff94895bca1e50 | file object: 0xffff94895bca1ed0 | offsetby: 0x80
\Windows\System32\SHCore.dll
pool: 0xffff94895bca2170 | file object: 0xffff94895bca21f0 | offsetby: 0x80
\Windows\System32\imm32.dll
pool: 0xffff94895bca2300 | file object: 0xffff94895bca2380 | offsetby: 0x80
\Windows\System32\kernel32.dll
pool: 0xffff94895bca2490 | file object: 0xffff94895bca2510 | offsetby: 0x80
\Windows\System32\normaliz.dll
pool: 0xffff94895bca2620 | file object: 0xffff94895bca26a0 | offsetby: 0x80
\Windows\System32\ws2_32.dll
pool: 0xffff94895bca27b0 | file object: 0xffff94895bca2830 | offsetby: 0x80
\Windows\System32\wow64.dll
pool: 0xffff94895bca2940 | file object: 0xffff94895bca29c0 | offsetby: 0x80
\Windows\System32\shlwapi.dll
pool: 0xffff94895bca2ad0 | file object: 0xffff94895bca2b50 | offsetby: 0x80
\Windows\System32\gdi32.dll
pool: 0xffff94895bca2c60 | file object: 0xffff94895bca2ce0 | offsetby: 0x80
\Windows\System32\msctf.dll
pool: 0xffff94895bca2df0 | file object: 0xffff94895bca2e70 | offsetby: 0x80
\Windows\System32\difxapi.dll
pool: 0xffff94895bca3040 | file object: 0xffff94895bca30c0 | offsetby: 0x80
\Windows\System32\umpdc.dll
pool: 0xffff94895bca31d0 | file object: 0xffff94895bca3250 | offsetby: 0x80
\Windows\System32\cryptsp.dll
pool: 0xffff94895bca3360 | file object: 0xffff94895bca33e0 | offsetby: 0x80
\Windows\SysWOW64\msvcrt.dll
pool: 0xffff94895bca34f0 | file object: 0xffff94895bca3570 | offsetby: 0x80
\Windows\System32\msasn1.dll
pool: 0xffff94895bca3680 | file object: 0xffff94895bca3700 | offsetby: 0x80
\Windows\System32\bcrypt.dll
pool: 0xffff94895bca3810 | file object: 0xffff94895bca3890 | offsetby: 0x80
\Windows\System32\powrprof.dll
pool: 0xffff94895bca39a0 | file object: 0xffff94895bca3a20 | offsetby: 0x80
\Windows\SysWOW64\msasn1.dll
pool: 0xffff94895bca3b30 | file object: 0xffff94895bca3bb0 | offsetby: 0x80
\Windows\SysWOW64\sechost.dll
pool: 0xffff94895bca3cc0 | file object: 0xffff94895bca3d40 | offsetby: 0x80
\Windows\SysWOW64\bcrypt.dll
pool: 0xffff94895bca3e50 | file object: 0xffff94895bca3ed0 | offsetby: 0x80
\Windows\SysWOW64\normaliz.dll
pool: 0xffff94895bca4170 | file object: 0xffff94895bca41f0 | offsetby: 0x80
\Windows\System32\KernelBase.dll
pool: 0xffff94895bca4300 | file object: 0xffff94895bca4380 | offsetby: 0x80
\Windows\System32\comctl32.dll
pool: 0xffff94895bca4490 | file object: 0xffff94895bca4510 | offsetby: 0x80
\Windows\System32\profapi.dll
pool: 0xffff94895bca4620 | file object: 0xffff94895bca46a0 | offsetby: 0x80
\Windows\SysWOW64\clbcatq.dll
pool: 0xffff94895bca47b0 | file object: 0xffff94895bca4830 | offsetby: 0x80
\Windows\System32\kernel.appcore.dll
pool: 0xffff94895bca4940 | file object: 0xffff94895bca49c0 | offsetby: 0x80
\Windows\System32\win32u.dll
pool: 0xffff94895bca4ad0 | file object: 0xffff94895bca4b50 | offsetby: 0x80
\Windows\SysWOW64\rpcrt4.dll
pool: 0xffff94895bca4c60 | file object: 0xffff94895bca4ce0 | offsetby: 0x80
\Windows\SysWOW64\psapi.dll
pool: 0xffff94895bca4df0 | file object: 0xffff94895bca4e70 | offsetby: 0x80
\Windows\System32\wintrust.dll
pool: 0xffff94895bca5040 | file object: 0xffff94895bca50c0 | offsetby: 0x80
\Windows\SysWOW64\SHCore.dll
pool: 0xffff94895bca51d0 | file object: 0xffff94895bca5250 | offsetby: 0x80
\Windows\SysWOW64\umpdc.dll
pool: 0xffff94895bca5360 | file object: 0xffff94895bca53e0 | offsetby: 0x80
\Windows\SysWOW64\comdlg32.dll
pool: 0xffff94895bca54f0 | file object: 0xffff94895bca5570 | offsetby: 0x80
\Windows\SysWOW64\comctl32.dll
pool: 0xffff94895bca5680 | file object: 0xffff94895bca5700 | offsetby: 0x80
\Windows\SysWOW64\ole32.dll
pool: 0xffff94895bca5810 | file object: 0xffff94895bca5890 | offsetby: 0x80
\Windows\SysWOW64\crypt32.dll
pool: 0xffff94895bca59a0 | file object: 0xffff94895bca5a20 | offsetby: 0x80
\Windows\SysWOW64\oleaut32.dll
pool: 0xffff94895bca5b30 | file object: 0xffff94895bca5bb0 | offsetby: 0x80
\Windows\SysWOW64\kernel32.dll
pool: 0xffff94895bca5cc0 | file object: 0xffff94895bca5d40 | offsetby: 0x80
\Windows\SysWOW64\nsi.dll
pool: 0xffff94895bca5e50 | file object: 0xffff94895bca5ed0 | offsetby: 0x80
\Windows\SysWOW64\combase.dll
pool: 0xffff94895bca6170 | file object: 0xffff94895bca61f0 | offsetby: 0x80
\Windows\SysWOW64\imm32.dll
pool: 0xffff94895bca6300 | file object: 0xffff94895bca6380 | offsetby: 0x80
\Windows\SysWOW64\cfgmgr32.dll
pool: 0xffff94895bca6490 | file object: 0xffff94895bca6510 | offsetby: 0x80
\Windows\SysWOW64\difxapi.dll
pool: 0xffff94895bca6620 | file object: 0xffff94895bca66a0 | offsetby: 0x80
\Windows\SysWOW64\bcryptprimitives.dll
pool: 0xffff94895bca67b0 | file object: 0xffff94895bca6830 | offsetby: 0x80
\Windows\SysWOW64\setupapi.dll
pool: 0xffff94895bca6940 | file object: 0xffff94895bca69c0 | offsetby: 0x80
\Windows\SysWOW64\powrprof.dll
pool: 0xffff94895bca6ad0 | file object: 0xffff94895bca6b50 | offsetby: 0x80
\Windows\SysWOW64\windows.storage.dll
pool: 0xffff94895bca6c60 | file object: 0xffff94895bca6ce0 | offsetby: 0x80
\Windows\SysWOW64\wintrust.dll
pool: 0xffff94895bca6df0 | file object: 0xffff94895bca6e70 | offsetby: 0x80
\Windows\SysWOW64\GdiPlus.dll
pool: 0xffff94895bde5050 | file object: 0xffff94895bde50d0 | offsetby: 0x80
\Windows\System32\en-US\user32.dll.mui
pool: 0xffff94895bde51e0 | file object: 0xffff94895bde5260 | offsetby: 0x80
\Windows\Cursors\aero_ns.cur
pool: 0xffff94895bde5370 | file object: 0xffff94895bde53f0 | offsetby: 0x80
\Windows\Cursors\aero_busy.ani
pool: 0xffff94895bde5500 | file object: 0xffff94895bde5580 | offsetby: 0x80
\Windows\System32\services.exe
pool: 0xffff94895bde5690 | file object: 0xffff94895bde5710 | offsetby: 0x80
\Windows\System32\sxs.dll
pool: 0xffff94895bde5820 | file object: 0xffff94895bde58a0 | offsetby: 0x80
\Windows\Cursors\aero_ew.cur
pool: 0xffff94895bde59b0 | file object: 0xffff94895bde5a30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895bde5b40 | file object: 0xffff94895bde5bc0 | offsetby: 0x80
\Windows\Cursors\aero_pen.cur
pool: 0xffff94895bde5cd0 | file object: 0xffff94895bde5d50 | offsetby: 0x80
\Windows\WinSxS\Manifests\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.18362.752_none_17aba8d26da530da.manifest
pool: 0xffff94895bde5e60 | file object: 0xffff94895bde5ee0 | offsetby: 0x80
\Windows\Cursors\aero_unavail.cur
pool: 0xffff94895bde6180 | file object: 0xffff94895bde6200 | offsetby: 0x80
\Windows\Cursors\aero_link.cur
pool: 0xffff94895bde6310 | file object: 0xffff94895bde6390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895bde64a0 | file object: 0xffff94895bde6520 | offsetby: 0x80
\Windows\Cursors\aero_nwse.cur
pool: 0xffff94895bde6630 | file object: 0xffff94895bde66b0 | offsetby: 0x80
\Windows\Cursors\aero_nesw.cur
pool: 0xffff94895bde67c0 | file object: 0xffff94895bde6840 | offsetby: 0x80
\Windows\Cursors\aero_up.cur
pool: 0xffff94895bde6950 | file object: 0xffff94895bde69d0 | offsetby: 0x80
\Windows\WinSxS\Manifests\amd64_microsoft.windows.systemcompatible_6595b64144ccf1df_6.0.18362.752_none_ee5cf8d0cfa9a513.manifest
pool: 0xffff94895bde6ae0 | file object: 0xffff94895bde6b60 | offsetby: 0x80
\$Directory
pool: 0xffff94895bde6c70 | file object: 0xffff94895bde6cf0 | offsetby: 0x80
\$Directory
pool: 0xffff94895bde6e00 | file object: 0xffff94895bde6e80 | offsetby: 0x80
\Windows\Cursors\aero_working.ani
pool: 0xffff94895bde7120 | file object: 0xffff94895bde71a0 | offsetby: 0x80
\Windows\WinSxS\Manifests\amd64_microsoft.windows.isolationautomation_6595b64144ccf1df_1.0.18362.752_none_984c656d415c1334.manifest
pool: 0xffff94895bde72b0 | file object: 0xffff94895bde7330 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895bde7440 | file object: 0xffff94895bde74c0 | offsetby: 0x80
\Windows\Cursors\aero_arrow.cur
pool: 0xffff94895bde75d0 | file object: 0xffff94895bde7650 | offsetby: 0x80
\Windows\Cursors\aero_move.cur
pool: 0xffff94895bde7760 | file object: 0xffff94895bde77e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895bde78f0 | file object: 0xffff94895bde7970 | offsetby: 0x80
\$Directory
pool: 0xffff94895bde7a80 | file object: 0xffff94895bde7b00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895bde7c10 | file object: 0xffff94895bde7c90 | offsetby: 0x80
\Windows\Cursors\aero_helpsel.cur
pool: 0xffff94895bde7da0 | file object: 0xffff94895bde7e20 | offsetby: 0x80
\Windows\WinSxS\Manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.18362.752_none_2a285cc246691ef5.manifest
pool: 0xffff94895bde80c0 | file object: 0xffff94895bde8140 | offsetby: 0x80
\Windows\System32\KBDUS.DLL
pool: 0xffff94895bde8250 | file object: 0xffff94895bde82d0 | offsetby: 0x80
\Windows\System32\EventAggregation.dll
pool: 0xffff94895bde83e0 | file object: 0xffff94895bde8460 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895bde8570 | file object: 0xffff94895bde85f0 | offsetby: 0x80
\Windows\WinSxS\Manifests\amd64_microsoft.windows.c..-controls.resources_6595b64144ccf1df_5.82.18362.752_en-us_4033a5a7730f50e2.manifest
pool: 0xffff94895bde8700 | file object: 0xffff94895bde8780 | offsetby: 0x80
\Windows\System32\lsass.exe
pool: 0xffff94895bde8890 | file object: 0xffff94895bde8910 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895bde8a20 | file object: 0xffff94895bde8aa0 | offsetby: 0x80
\Windows\WinSxS\Manifests\amd64_microsoft.windows.i..utomation.proxystub_6595b64144ccf1df_1.0.18362.752_none_41c3b6a0a0662d48.manifest
pool: 0xffff94895bde8bb0 | file object: 0xffff94895bde8c30 | offsetby: 0x80
\Windows\System32\devobj.dll
pool: 0xffff94895bde8d40 | file object: 0xffff94895bde8dc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca13060 | file object: 0xffff94895ca130e0 | offsetby: 0x80
\Windows\System32\lsasrv.dll
pool: 0xffff94895ca131f0 | file object: 0xffff94895ca13270 | offsetby: 0x80
\Windows\System32\KerbClientShared.dll
pool: 0xffff94895ca13380 | file object: 0xffff94895ca13400 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca13510 | file object: 0xffff94895ca13590 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ca136a0 | file object: 0xffff94895ca13720 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca13830 | file object: 0xffff94895ca138b0 | offsetby: 0x80
\Windows\System32\en-US\bcastdvruserservice.dll.mui
pool: 0xffff94895ca139c0 | file object: 0xffff94895ca13a40 | offsetby: 0x80
\Windows\System32\ncrypt.dll
pool: 0xffff94895ca13b50 | file object: 0xffff94895ca13bd0 | offsetby: 0x80
\Windows\System32\netprovfw.dll
pool: 0xffff94895ca13ce0 | file object: 0xffff94895ca13d60 | offsetby: 0x80
\Windows\System32\cryptdll.dll
pool: 0xffff94895ca13e70 | file object: 0xffff94895ca13ef0 | offsetby: 0x80
\Windows\System32\netlogon.dll
pool: 0xffff94895ca14000 | file object: 0xffff94895ca14080 | offsetby: 0x80
\Windows\System32\winsta.dll
pool: 0xffff94895ca14190 | file object: 0xffff94895ca14210 | offsetby: 0x80
\Windows\Globalization\Sorting\SortDefault.nls
pool: 0xffff94895ca14320 | file object: 0xffff94895ca143a0 | offsetby: 0x80
\Windows\System32\cryptbase.dll
pool: 0xffff94895ca144b0 | file object: 0xffff94895ca14530 | offsetby: 0x80
\Windows\System32\gmsaclient.dll
pool: 0xffff94895ca14640 | file object: 0xffff94895ca146c0 | offsetby: 0x80
\Windows\System32\logoncli.dll
pool: 0xffff94895ca147d0 | file object: 0xffff94895ca14850 | offsetby: 0x80
\Windows\System32\joinutil.dll
pool: 0xffff94895ca14960 | file object: 0xffff94895ca149e0 | offsetby: 0x80
\Windows\System32\mswsock.dll
pool: 0xffff94895ca14af0 | file object: 0xffff94895ca14b70 | offsetby: 0x80
\Windows\System32\msv1_0.dll
pool: 0xffff94895ca14c80 | file object: 0xffff94895ca14d00 | offsetby: 0x80
\Windows\System32\dnsapi.dll
pool: 0xffff94895ca14e10 | file object: 0xffff94895ca14e90 | offsetby: 0x80
\Windows\System32\negoexts.dll
pool: 0xffff94895ca15130 | file object: 0xffff94895ca151b0 | offsetby: 0x80
\Windows\System32\samsrv.dll
pool: 0xffff94895ca152c0 | file object: 0xffff94895ca15340 | offsetby: 0x80
\Windows\System32\wldp.dll
pool: 0xffff94895ca15450 | file object: 0xffff94895ca154d0 | offsetby: 0x80
\Windows\System32\kerberos.dll
pool: 0xffff94895ca155e0 | file object: 0xffff94895ca15660 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca15770 | file object: 0xffff94895ca157f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca15900 | file object: 0xffff94895ca15980 | offsetby: 0x80
\Windows\System32\msprivs.dll
pool: 0xffff94895ca15a90 | file object: 0xffff94895ca15b10 | offsetby: 0x80
\Windows\System32\ntasn1.dll
pool: 0xffff94895ca15c20 | file object: 0xffff94895ca15ca0 | offsetby: 0x80
\Windows\System32\NtlmShared.dll
pool: 0xffff94895ca15db0 | file object: 0xffff94895ca15e30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca160d0 | file object: 0xffff94895ca16150 | offsetby: 0x80
\Windows\System32\en-US\lsasrv.dll.mui
pool: 0xffff94895ca16260 | file object: 0xffff94895ca162e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ca163f0 | file object: 0xffff94895ca16470 | offsetby: 0x80
\Windows\System32\dpapi.dll
pool: 0xffff94895ca16580 | file object: 0xffff94895ca16600 | offsetby: 0x80
\Windows\System32\schannel.dll
pool: 0xffff94895ca16710 | file object: 0xffff94895ca16790 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca168a0 | file object: 0xffff94895ca16920 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca16a30 | file object: 0xffff94895ca16ab0 | offsetby: 0x80
\Windows\System32\shutdownux.dll
pool: 0xffff94895ca16bc0 | file object: 0xffff94895ca16c40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca16d50 | file object: 0xffff94895ca16dd0 | offsetby: 0x80
\Windows\System32\efslsaext.dll
pool: 0xffff94895ca17070 | file object: 0xffff94895ca170f0 | offsetby: 0x80
\Windows\System32\IPHLPAPI.DLL
pool: 0xffff94895ca17200 | file object: 0xffff94895ca17280 | offsetby: 0x80
\Windows\System32\sspisrv.dll
pool: 0xffff94895ca17390 | file object: 0xffff94895ca17410 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca17520 | file object: 0xffff94895ca175a0 | offsetby: 0x80
\Windows\System32\dpapisrv.dll
pool: 0xffff94895ca176b0 | file object: 0xffff94895ca17730 | offsetby: 0x80
\Windows\System32\TSpkg.dll
pool: 0xffff94895ca17840 | file object: 0xffff94895ca178c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca179d0 | file object: 0xffff94895ca17a50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ca17b60 | file object: 0xffff94895ca17be0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca17cf0 | file object: 0xffff94895ca17d70 | offsetby: 0x80
\Windows\System32\wdigest.dll
pool: 0xffff94895ca18010 | file object: 0xffff94895ca18090 | offsetby: 0x80
\Windows\System32\netutils.dll
pool: 0xffff94895ca181a0 | file object: 0xffff94895ca18220 | offsetby: 0x80
\Windows\System32\rsaenh.dll
pool: 0xffff94895ca18330 | file object: 0xffff94895ca183b0 | offsetby: 0x80
\Windows\System32\SshdPinAuthLsa.dll
pool: 0xffff94895ca184c0 | file object: 0xffff94895ca18540 | offsetby: 0x80
\Windows\System32\credssp.dll
pool: 0xffff94895ca18650 | file object: 0xffff94895ca186d0 | offsetby: 0x80
\Windows\System32\Microsoft\Protect\S-1-5-18\User\aa3c15f1-fa3c-45c5-91c0-8a6cee86f69b
pool: 0xffff94895ca187e0 | file object: 0xffff94895ca18860 | offsetby: 0x80
\$Directory
pool: 0xffff94895ca18970 | file object: 0xffff94895ca189f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ca18b00 | file object: 0xffff94895ca18b80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ca18c90 | file object: 0xffff94895ca18d10 | offsetby: 0x80
\Windows\System32\MicrosoftAccountCloudAP.dll
pool: 0xffff94895ca18e20 | file object: 0xffff94895ca18ea0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ca19140 | file object: 0xffff94895ca191c0 | offsetby: 0x80
\Windows\System32\pku2u.dll
pool: 0xffff94895ca192d0 | file object: 0xffff94895ca19350 | offsetby: 0x80
\Windows\System32\cloudAP.dll
pool: 0xffff94895ca19460 | file object: 0xffff94895ca194e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca195f0 | file object: 0xffff94895ca19670 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca19780 | file object: 0xffff94895ca19800 | offsetby: 0x80
\Windows\System32\fontdrvhost.exe
pool: 0xffff94895ca19910 | file object: 0xffff94895ca19990 | offsetby: 0x80
\Windows\System32\profext.dll
pool: 0xffff94895ca19aa0 | file object: 0xffff94895ca19b20 | offsetby: 0x80
\Windows\System32\ntmarta.dll
pool: 0xffff94895ca19c30 | file object: 0xffff94895ca19cb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ca19dc0 | file object: 0xffff94895ca19e40 | offsetby: 0x80
\$Directory
pool: 0xffff94895ca1a0e0 | file object: 0xffff94895ca1a160 | offsetby: 0x80
\Windows\System32\scecli.dll
pool: 0xffff94895ca1a270 | file object: 0xffff94895ca1a2f0 | offsetby: 0x80
\Windows\System32\fwbase.dll
pool: 0xffff94895ca1a400 | file object: 0xffff94895ca1a480 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca1a590 | file object: 0xffff94895ca1a610 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca1a720 | file object: 0xffff94895ca1a7a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca1a8b0 | file object: 0xffff94895ca1a930 | offsetby: 0x80
\Windows\System32\kdcpw.dll
pool: 0xffff94895ca1aa40 | file object: 0xffff94895ca1aac0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca1abd0 | file object: 0xffff94895ca1ac50 | offsetby: 0x80
\Windows\System32\fontdrvhost.exe
pool: 0xffff94895ca1ad60 | file object: 0xffff94895ca1ade0 | offsetby: 0x80
\Windows\System32\FirewallAPI.dll
pool: 0xffff94895ca7d060 | file object: 0xffff94895ca7d0e0 | offsetby: 0x80
\Windows\System32\authz.dll
pool: 0xffff94895ca7d1f0 | file object: 0xffff94895ca7d270 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca7d380 | file object: 0xffff94895ca7d400 | offsetby: 0x80
\Windows\Fonts\vgafix.fon
pool: 0xffff94895ca7d510 | file object: 0xffff94895ca7d590 | offsetby: 0x80
\$Directory
pool: 0xffff94895ca7d6a0 | file object: 0xffff94895ca7d720 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895ca7d830 | file object: 0xffff94895ca7d8b0 | offsetby: 0x80
\Windows\Fonts\script.fon
pool: 0xffff94895ca7d9c0 | file object: 0xffff94895ca7da40 | offsetby: 0x80
\Windows\Fonts\coure.fon
pool: 0xffff94895ca7db50 | file object: 0xffff94895ca7dbd0 | offsetby: 0x80
\Windows\Fonts\modern.fon
pool: 0xffff94895ca7dce0 | file object: 0xffff94895ca7dd60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca7de70 | file object: 0xffff94895ca7def0 | offsetby: 0x80
\Windows\Fonts\serife.fon
pool: 0xffff94895ca7e000 | file object: 0xffff94895ca7e080 | offsetby: 0x80
\Windows\Fonts\smalle.fon
pool: 0xffff94895ca7e190 | file object: 0xffff94895ca7e210 | offsetby: 0x80
\Windows\Fonts\smallf.fon
pool: 0xffff94895ca7e320 | file object: 0xffff94895ca7e3a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca7e4b0 | file object: 0xffff94895ca7e530 | offsetby: 0x80
\Windows\System32\scesrv.dll
pool: 0xffff94895ca7e640 | file object: 0xffff94895ca7e6c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca7e7d0 | file object: 0xffff94895ca7e850 | offsetby: 0x80
\Windows\Fonts\vgasys.fon
pool: 0xffff94895ca7e960 | file object: 0xffff94895ca7e9e0 | offsetby: 0x80
\Windows\Fonts\courf.fon
pool: 0xffff94895ca7eaf0 | file object: 0xffff94895ca7eb70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca7ec80 | file object: 0xffff94895ca7ed00 | offsetby: 0x80
\Windows\Fonts\sseriff.fon
pool: 0xffff94895ca7ee10 | file object: 0xffff94895ca7ee90 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ca7f130 | file object: 0xffff94895ca7f1b0 | offsetby: 0x80
\Windows\Fonts\vgaoem.fon
pool: 0xffff94895ca7f2c0 | file object: 0xffff94895ca7f340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ca7f450 | file object: 0xffff94895ca7f4d0 | offsetby: 0x80
\Windows\System32\WUDFPlatform.dll
pool: 0xffff94895ca7f5e0 | file object: 0xffff94895ca7f660 | offsetby: 0x80
\Windows\Fonts\roman.fon
pool: 0xffff94895ca7f770 | file object: 0xffff94895ca7f7f0 | offsetby: 0x80
\Windows\Fonts\seriff.fon
pool: 0xffff94895ca7f900 | file object: 0xffff94895ca7f980 | offsetby: 0x80
\Windows\Fonts\sserife.fon
pool: 0xffff94895ca7fa90 | file object: 0xffff94895ca7fb10 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ca7fc20 | file object: 0xffff94895ca7fca0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca7fdb0 | file object: 0xffff94895ca7fe30 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ca800d0 | file object: 0xffff94895ca80150 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca80260 | file object: 0xffff94895ca802e0 | offsetby: 0x80
\Windows\System32\en-US\services.exe.mui
pool: 0xffff94895ca803f0 | file object: 0xffff94895ca80470 | offsetby: 0x80
\Windows\System32\umpoext.dll
pool: 0xffff94895ca80580 | file object: 0xffff94895ca80600 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca80710 | file object: 0xffff94895ca80790 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ca808a0 | file object: 0xffff94895ca80920 | offsetby: 0x80
\Windows\System32\umpnpmgr.dll
pool: 0xffff94895ca80a30 | file object: 0xffff94895ca80ab0 | offsetby: 0x80
\Windows\Fonts\cga80woa.fon
pool: 0xffff94895ca80bc0 | file object: 0xffff94895ca80c40 | offsetby: 0x80
\Windows\System32\sppc.dll
pool: 0xffff94895ca80d50 | file object: 0xffff94895ca80dd0 | offsetby: 0x80
\Windows\System32\hid.dll
pool: 0xffff94895ca81070 | file object: 0xffff94895ca810f0 | offsetby: 0x80
\Windows\Fonts\cga40woa.fon
pool: 0xffff94895ca81200 | file object: 0xffff94895ca81280 | offsetby: 0x80
\Windows\Fonts\marlett.ttf
pool: 0xffff94895ca81390 | file object: 0xffff94895ca81410 | offsetby: 0x80
\Windows\Fonts\dosapp.fon
pool: 0xffff94895ca81520 | file object: 0xffff94895ca815a0 | offsetby: 0x80
\Windows\System32\dxgi.dll
pool: 0xffff94895ca816b0 | file object: 0xffff94895ca81730 | offsetby: 0x80
\Windows\System32\mintdh.dll
pool: 0xffff94895ca81840 | file object: 0xffff94895ca818c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca819d0 | file object: 0xffff94895ca81a50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca81b60 | file object: 0xffff94895ca81be0 | offsetby: 0x80
\Windows\System32\SleepStudy\UserNotPresentSession.etl
pool: 0xffff94895ca81cf0 | file object: 0xffff94895ca81d70 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895ca82010 | file object: 0xffff94895ca82090 | offsetby: 0x80
\Windows\System32\tdh.dll
pool: 0xffff94895ca821a0 | file object: 0xffff94895ca82220 | offsetby: 0x80
\Windows\Fonts\ega40woa.fon
pool: 0xffff94895ca82330 | file object: 0xffff94895ca823b0 | offsetby: 0x80
\Windows\Fonts\micross.ttf
pool: 0xffff94895ca824c0 | file object: 0xffff94895ca82540 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca82650 | file object: 0xffff94895ca826d0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895ca827e0 | file object: 0xffff94895ca82860 | offsetby: 0x80
\Windows\System32\umpo.dll
pool: 0xffff94895ca82970 | file object: 0xffff94895ca829f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca82b00 | file object: 0xffff94895ca82b80 | offsetby: 0x80
\Windows\System32\DXCore.dll
pool: 0xffff94895ca82c90 | file object: 0xffff94895ca82d10 | offsetby: 0x80
\Windows\Fonts\ega80woa.fon
pool: 0xffff94895ca82e20 | file object: 0xffff94895ca82ea0 | offsetby: 0x80
\Windows\System32\gpapi.dll
pool: 0xffff94895ca83140 | file object: 0xffff94895ca831c0 | offsetby: 0x80
\Windows\System32\ole32.dll
pool: 0xffff94895ca832d0 | file object: 0xffff94895ca83350 | offsetby: 0x80
\Windows\System32\umpo-overrides.dll
pool: 0xffff94895ca83460 | file object: 0xffff94895ca834e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca835f0 | file object: 0xffff94895ca83670 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca83780 | file object: 0xffff94895ca83800 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca83910 | file object: 0xffff94895ca83990 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\NTUSER.DAT.LOG1
pool: 0xffff94895ca83aa0 | file object: 0xffff94895ca83b20 | offsetby: 0x80
\Windows\System32\rpcss.dll
pool: 0xffff94895ca83c30 | file object: 0xffff94895ca83cb0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ca83dc0 | file object: 0xffff94895ca83e40 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\NTUSER.DAT
pool: 0xffff94895ca840e0 | file object: 0xffff94895ca84160 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca84270 | file object: 0xffff94895ca842f0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{fd9a35db-49fe-11e9-aa2c-248a07783950}.TM.blf
pool: 0xffff94895ca84400 | file object: 0xffff94895ca84480 | offsetby: 0x80
\$Directory
pool: 0xffff94895ca84590 | file object: 0xffff94895ca84610 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{fd9a35db-49fe-11e9-aa2c-248a07783950}.TMContainer00000000000000000001.regtrans-ms
pool: 0xffff94895ca84720 | file object: 0xffff94895ca847a0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{fd9a35db-49fe-11e9-aa2c-248a07783950}.TMContainer00000000000000000002.regtrans-ms
pool: 0xffff94895ca848b0 | file object: 0xffff94895ca84930 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca84a40 | file object: 0xffff94895ca84ac0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ca84bd0 | file object: 0xffff94895ca84c50 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\NTUSER.DAT.LOG2
pool: 0xffff94895ca84d60 | file object: 0xffff94895ca84de0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cabbde0 | file object: 0xffff94895cabbe40 | offsetby: 0x60
\$PrepareToShrinkFileSize
pool: 0xffff94895cb02060 | file object: 0xffff94895cb020e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb021f0 | file object: 0xffff94895cb02270 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb02380 | file object: 0xffff94895cb02400 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb02510 | file object: 0xffff94895cb02590 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb026a0 | file object: 0xffff94895cb02720 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb02830 | file object: 0xffff94895cb028b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb029c0 | file object: 0xffff94895cb02a40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb02b50 | file object: 0xffff94895cb02bd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb02ce0 | file object: 0xffff94895cb02d60 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cb02e70 | file object: 0xffff94895cb02ef0 | offsetby: 0x80
\Windows\System32\RpcRtRemote.dll
pool: 0xffff94895cb03000 | file object: 0xffff94895cb03080 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb03190 | file object: 0xffff94895cb03210 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb03320 | file object: 0xffff94895cb033a0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cb034b0 | file object: 0xffff94895cb03530 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff94895cb03640 | file object: 0xffff94895cb036c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb037d0 | file object: 0xffff94895cb03850 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb03960 | file object: 0xffff94895cb039e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb03af0 | file object: 0xffff94895cb03b70 | offsetby: 0x80
\Windows\System32\en-US\wshqos.dll.mui
pool: 0xffff94895cb03c80 | file object: 0xffff94895cb03d00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb03e10 | file object: 0xffff94895cb03e90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb04130 | file object: 0xffff94895cb041b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb042c0 | file object: 0xffff94895cb04340 | offsetby: 0x80
\$Directory
pool: 0xffff94895cb04450 | file object: 0xffff94895cb044d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb045e0 | file object: 0xffff94895cb04660 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb04770 | file object: 0xffff94895cb047f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb04900 | file object: 0xffff94895cb04980 | offsetby: 0x80
\Windows\System32\wshqos.dll
pool: 0xffff94895cb04a90 | file object: 0xffff94895cb04b10 | offsetby: 0x80
\Device\HarddiskVolume2\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{fd9a35db-49fe-11e9-aa2c-248a07783950}.TM
pool: 0xffff94895cb04c20 | file object: 0xffff94895cb04ca0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb04db0 | file object: 0xffff94895cb04e30 | offsetby: 0x80
\Device\HarddiskVolume2\Windows\ServiceProfiles\NetworkService\NTUSER.DAT{fd9a35db-49fe-11e9-aa2c-248a07783950}.TM
pool: 0xffff94895cb050d0 | file object: 0xffff94895cb05150 | offsetby: 0x80
\Windows\System32\RpcEpMap.dll
pool: 0xffff94895cb05260 | file object: 0xffff94895cb052e0 | offsetby: 0x80
\Windows\System32\LogFiles\WMI\Terminal-Services-RCM-20200604-202034.etl
pool: 0xffff94895cb053f0 | file object: 0xffff94895cb05470 | offsetby: 0x80
\Windows\System32\ResourcePolicyServer.dll
pool: 0xffff94895cb05580 | file object: 0xffff94895cb05600 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb05710 | file object: 0xffff94895cb05790 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb058a0 | file object: 0xffff94895cb05920 | offsetby: 0x80
\Windows\System32\sysntfy.dll
pool: 0xffff94895cb05a30 | file object: 0xffff94895cb05ab0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb05bc0 | file object: 0xffff94895cb05c40 | offsetby: 0x80
\Windows\System32\embeddedmodesvcapi.dll
pool: 0xffff94895cb05d50 | file object: 0xffff94895cb05dd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb06070 | file object: 0xffff94895cb060f0 | offsetby: 0x80
\Windows\System32\twinapi.appcore.dll
pool: 0xffff94895cb06200 | file object: 0xffff94895cb06280 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb06390 | file object: 0xffff94895cb06410 | offsetby: 0x80
\Windows\System32\ResourcePolicyClient.dll
pool: 0xffff94895cb06520 | file object: 0xffff94895cb065a0 | offsetby: 0x80
\Windows\System32\PsmServiceExtHost.dll
pool: 0xffff94895cb066b0 | file object: 0xffff94895cb06730 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cb06840 | file object: 0xffff94895cb068c0 | offsetby: 0x80
\Windows\System32\wer.dll
pool: 0xffff94895cb069d0 | file object: 0xffff94895cb06a50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb06b60 | file object: 0xffff94895cb06be0 | offsetby: 0x80
\Windows\System32\psmsrv.dll
pool: 0xffff94895cb06cf0 | file object: 0xffff94895cb06d70 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cb07010 | file object: 0xffff94895cb07090 | offsetby: 0x80
\Windows\System32\audioresourceregistrar.dll
pool: 0xffff94895cb071a0 | file object: 0xffff94895cb07220 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb07330 | file object: 0xffff94895cb073b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb074c0 | file object: 0xffff94895cb07540 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895cb07650 | file object: 0xffff94895cb076d0 | offsetby: 0x80
\Windows\System32\rmclient.dll
pool: 0xffff94895cb077e0 | file object: 0xffff94895cb07860 | offsetby: 0x80
\Windows\System32\bisrv.dll
pool: 0xffff94895cb07970 | file object: 0xffff94895cb079f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb07b00 | file object: 0xffff94895cb07b80 | offsetby: 0x80
\Windows\System32\xmllite.dll
pool: 0xffff94895cb07c90 | file object: 0xffff94895cb07d10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb07e20 | file object: 0xffff94895cb07ea0 | offsetby: 0x80
\Windows\System32\dwmapi.dll
pool: 0xffff94895cb08140 | file object: 0xffff94895cb081c0 | offsetby: 0x80
\Windows\System32\LogFiles\WMI\Terminal-Services-LSM-20200604-202034.etl
pool: 0xffff94895cb082d0 | file object: 0xffff94895cb08350 | offsetby: 0x80
\Windows\System32\lsm.dll
pool: 0xffff94895cb08460 | file object: 0xffff94895cb084e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb085f0 | file object: 0xffff94895cb08670 | offsetby: 0x80
\Windows\System32\uxtheme.dll
pool: 0xffff94895cb08780 | file object: 0xffff94895cb08800 | offsetby: 0x80
\Windows\System32\UXInit.dll
pool: 0xffff94895cb08910 | file object: 0xffff94895cb08990 | offsetby: 0x80
\Windows\Resources\Themes\aero\aero.msstyles
pool: 0xffff94895cb08aa0 | file object: 0xffff94895cb08b20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb08c30 | file object: 0xffff94895cb08cb0 | offsetby: 0x80
\Windows\System32\rpcss.dll
pool: 0xffff94895cb08dc0 | file object: 0xffff94895cb08e40 | offsetby: 0x80
\Windows\Resources\Themes\aero\VSCache\Aero.msstyles_1033_96_01.mss
pool: 0xffff94895cb090e0 | file object: 0xffff94895cb09160 | offsetby: 0x80
\Windows\System32\Microsoft\Protect\S-1-5-18\84f9f28d-f86f-4dad-bc67-16659402411a
pool: 0xffff94895cb09270 | file object: 0xffff94895cb092f0 | offsetby: 0x80
\Windows\System32\dwminit.dll
pool: 0xffff94895cb09400 | file object: 0xffff94895cb09480 | offsetby: 0x80
\Windows\System32\SystemEventsBrokerServer.dll
pool: 0xffff94895cb09590 | file object: 0xffff94895cb09610 | offsetby: 0x80
\Windows\System32\BrokerLib.dll
pool: 0xffff94895cb09720 | file object: 0xffff94895cb097a0 | offsetby: 0x80
\Windows\System32\dwm.exe
pool: 0xffff94895cb098b0 | file object: 0xffff94895cb09930 | offsetby: 0x80
\Windows\WinSxS\Manifests\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c.manifest
pool: 0xffff94895cb09a40 | file object: 0xffff94895cb09ac0 | offsetby: 0x80
\Windows\System32\LogonUI.exe
pool: 0xffff94895cb09bd0 | file object: 0xffff94895cb09c50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb09d60 | file object: 0xffff94895cb09de0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb8f060 | file object: 0xffff94895cb8f0e0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cb8f1f0 | file object: 0xffff94895cb8f270 | offsetby: 0x80
\Windows\System32\dwmcore.dll
pool: 0xffff94895cb8f380 | file object: 0xffff94895cb8f400 | offsetby: 0x80
\Windows\SysWOW64\TextInputFramework.dll
pool: 0xffff94895cb8f510 | file object: 0xffff94895cb8f590 | offsetby: 0x80
\Windows\System32\winmm.dll
pool: 0xffff94895cb8f6a0 | file object: 0xffff94895cb8f720 | offsetby: 0x80
\Windows\System32\d3d11.dll
pool: 0xffff94895cb8f830 | file object: 0xffff94895cb8f8b0 | offsetby: 0x80
\Windows\System32\dwmredir.dll
pool: 0xffff94895cb8f9c0 | file object: 0xffff94895cb8fa40 | offsetby: 0x80
\Windows\System32\D3DCompiler_47.dll
pool: 0xffff94895cb8fb50 | file object: 0xffff94895cb8fbd0 | offsetby: 0x80
\Windows\System32\dsreg.dll
pool: 0xffff94895cb8fce0 | file object: 0xffff94895cb8fd60 | offsetby: 0x80
\Windows\System32\en-US\dwm.exe.mui
pool: 0xffff94895cb8fe70 | file object: 0xffff94895cb8fef0 | offsetby: 0x80
\Windows\System32\dab.dll
pool: 0xffff94895cb90000 | file object: 0xffff94895cb90080 | offsetby: 0x80
\Windows\System32\dwmghost.dll
pool: 0xffff94895cb90190 | file object: 0xffff94895cb90210 | offsetby: 0x80
\Windows\System32\LogonController.dll
pool: 0xffff94895cb90320 | file object: 0xffff94895cb903a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb904b0 | file object: 0xffff94895cb90530 | offsetby: 0x80
\Windows\SysWOW64\policymanager.dll
pool: 0xffff94895cb90640 | file object: 0xffff94895cb906c0 | offsetby: 0x80
\Windows\System32\msvcp110_win.dll
pool: 0xffff94895cb907d0 | file object: 0xffff94895cb90850 | offsetby: 0x80
\Windows\System32\samlib.dll
pool: 0xffff94895cb90960 | file object: 0xffff94895cb909e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\sqlite3-3f3f539904eeed83d782efa53a8cf6cd.code
pool: 0xffff94895cb90af0 | file object: 0xffff94895cb90b70 | offsetby: 0x80
\Windows\System32\d2d1.dll
pool: 0xffff94895cb90c80 | file object: 0xffff94895cb90d00 | offsetby: 0x80
\Windows\System32\dabapi.dll
pool: 0xffff94895cb90e10 | file object: 0xffff94895cb90e90 | offsetby: 0x80
\Windows\System32\d3d10warp.dll
pool: 0xffff94895cb91130 | file object: 0xffff94895cb911b0 | offsetby: 0x80
\Windows\System32\uDWM.dll
pool: 0xffff94895cb912c0 | file object: 0xffff94895cb91340 | offsetby: 0x80
\Windows\System32\dcomp.dll
pool: 0xffff94895cb91450 | file object: 0xffff94895cb914d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb915e0 | file object: 0xffff94895cb91660 | offsetby: 0x80
\Windows\System32\shacct.dll
pool: 0xffff94895cb91770 | file object: 0xffff94895cb917f0 | offsetby: 0x80
\Windows\System32\propsys.dll
pool: 0xffff94895cb91900 | file object: 0xffff94895cb91980 | offsetby: 0x80
\Windows\System32\winmmbase.dll
pool: 0xffff94895cb91a90 | file object: 0xffff94895cb91b10 | offsetby: 0x80
\Windows\System32\CoreMessaging.dll
pool: 0xffff94895cb91c20 | file object: 0xffff94895cb91ca0 | offsetby: 0x80
\Windows\WinSxS\Manifests\amd64_microsoft.windows.c..-controls.resources_6595b64144ccf1df_6.0.18362.752_en-us_fccbfed23fb8e8f9.manifest
pool: 0xffff94895cb91db0 | file object: 0xffff94895cb91e30 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895cb920d0 | file object: 0xffff94895cb92150 | offsetby: 0x80
\Windows\System32\apphelp.dll
pool: 0xffff94895cb92260 | file object: 0xffff94895cb922e0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895cb923f0 | file object: 0xffff94895cb92470 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb92580 | file object: 0xffff94895cb92600 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cb92710 | file object: 0xffff94895cb92790 | offsetby: 0x80
\Windows\System32\config\BBI.LOG1
pool: 0xffff94895cb928a0 | file object: 0xffff94895cb92920 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb92a30 | file object: 0xffff94895cb92ab0 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\NTUSER.DAT
pool: 0xffff94895cb92bc0 | file object: 0xffff94895cb92c40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb92d50 | file object: 0xffff94895cb92dd0 | offsetby: 0x80
\$Directory
pool: 0xffff94895cb93070 | file object: 0xffff94895cb930f0 | offsetby: 0x80
\Windows\System32\config\BBI.LOG2
pool: 0xffff94895cb93200 | file object: 0xffff94895cb93280 | offsetby: 0x80
\$Directory
pool: 0xffff94895cb93390 | file object: 0xffff94895cb93410 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb93520 | file object: 0xffff94895cb935a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VisualStudio\Editors\Microsoft.VisualStudio.Editors.dll
pool: 0xffff94895cb936b0 | file object: 0xffff94895cb93730 | offsetby: 0x80
\Device\HarddiskVolume2\Windows\ServiceProfiles\LocalService\NTUSER.DAT{fd9a35db-49fe-11e9-aa2c-248a07783950}.TM
pool: 0xffff94895cb93840 | file object: 0xffff94895cb938c0 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\NTUSER.DAT.LOG2
pool: 0xffff94895cb939d0 | file object: 0xffff94895cb93a50 | offsetby: 0x80
\$Directory
pool: 0xffff94895cb93b60 | file object: 0xffff94895cb93be0 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\NTUSER.DAT{fd9a35db-49fe-11e9-aa2c-248a07783950}.TM.blf
pool: 0xffff94895cb93cf0 | file object: 0xffff94895cb93d70 | offsetby: 0x80
\Windows\System32\config\BBI
pool: 0xffff94895cb94010 | file object: 0xffff94895cb94090 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\NTUSER.DAT.LOG1
pool: 0xffff94895cb941a0 | file object: 0xffff94895cb94220 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\NTUSER.DAT{fd9a35db-49fe-11e9-aa2c-248a07783950}.TMContainer00000000000000000001.regtrans-ms
pool: 0xffff94895cb94330 | file object: 0xffff94895cb943b0 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\NTUSER.DAT{fd9a35db-49fe-11e9-aa2c-248a07783950}.TMContainer00000000000000000002.regtrans-ms
pool: 0xffff94895cb944c0 | file object: 0xffff94895cb94540 | offsetby: 0x80
\$Directory
pool: 0xffff94895cb94650 | file object: 0xffff94895cb946d0 | offsetby: 0x80
\Device\HarddiskVolume2\Windows\ServiceProfiles\LocalService\NTUSER.DAT{fd9a35db-49fe-11e9-aa2c-248a07783950}.TM
pool: 0xffff94895cb947e0 | file object: 0xffff94895cb94860 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cb94970 | file object: 0xffff94895cb949f0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cb94b00 | file object: 0xffff94895cb94b80 | offsetby: 0x80
\$Directory
pool: 0xffff94895cb94c90 | file object: 0xffff94895cb94d10 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cb94e20 | file object: 0xffff94895cb94ea0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb95140 | file object: 0xffff94895cb951c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb952d0 | file object: 0xffff94895cb95350 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cb95460 | file object: 0xffff94895cb954e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb955f0 | file object: 0xffff94895cb95670 | offsetby: 0x80
\Windows\System32\nlaapi.dll
pool: 0xffff94895cb95780 | file object: 0xffff94895cb95800 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cb95910 | file object: 0xffff94895cb95990 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb95aa0 | file object: 0xffff94895cb95b20 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895cb95c30 | file object: 0xffff94895cb95cb0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cb95dc0 | file object: 0xffff94895cb95e40 | offsetby: 0x80
\Windows\System32\termsrv.dll
pool: 0xffff94895cb960e0 | file object: 0xffff94895cb96160 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cb96270 | file object: 0xffff94895cb962f0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895cb96400 | file object: 0xffff94895cb96480 | offsetby: 0x80
\Windows\System32\gpsvc.dll
pool: 0xffff94895cb96590 | file object: 0xffff94895cb96610 | offsetby: 0x80
\Windows\System32\dsrole.dll
pool: 0xffff94895cb96720 | file object: 0xffff94895cb967a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_16D2E4BC920B861ABE54C1687CAA1EC8
pool: 0xffff94895cb968b0 | file object: 0xffff94895cb96930 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cb96a40 | file object: 0xffff94895cb96ac0 | offsetby: 0x80
\Windows\System32\lmhsvc.dll
pool: 0xffff94895cb96bd0 | file object: 0xffff94895cb96c50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cb96d60 | file object: 0xffff94895cb96de0 | offsetby: 0x80
\Windows\System32\nrpsrv.dll
pool: 0xffff94895cc3d060 | file object: 0xffff94895cc3d0e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc3d1f0 | file object: 0xffff94895cc3d270 | offsetby: 0x80
\Windows\System32\mscms.dll
pool: 0xffff94895cc3d380 | file object: 0xffff94895cc3d400 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc3d510 | file object: 0xffff94895cc3d590 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc3d6a0 | file object: 0xffff94895cc3d720 | offsetby: 0x80
\Windows\System32\ninput.dll
pool: 0xffff94895cc3d830 | file object: 0xffff94895cc3d8b0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895cc3d9c0 | file object: 0xffff94895cc3da40 | offsetby: 0x80
\Windows\System32\Windows.Gaming.Input.dll
pool: 0xffff94895cc3db50 | file object: 0xffff94895cc3dbd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc3dce0 | file object: 0xffff94895cc3dd60 | offsetby: 0x80
\Windows\System32\ISM.dll
pool: 0xffff94895cc3de70 | file object: 0xffff94895cc3def0 | offsetby: 0x80
\Windows\System32\WindowsCodecs.dll
pool: 0xffff94895cc3e000 | file object: 0xffff94895cc3e080 | offsetby: 0x80
\Windows\System32\OneCoreUAPCommonProxyStub.dll
pool: 0xffff94895cc3e190 | file object: 0xffff94895cc3e210 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cc3e320 | file object: 0xffff94895cc3e3a0 | offsetby: 0x80
\Windows\System32\WinTypes.dll
pool: 0xffff94895cc3e4b0 | file object: 0xffff94895cc3e530 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc3e640 | file object: 0xffff94895cc3e6c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cc3e7d0 | file object: 0xffff94895cc3e850 | offsetby: 0x80
\Windows\System32\CoreUIComponents.dll
pool: 0xffff94895cc3e960 | file object: 0xffff94895cc3e9e0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cc3eaf0 | file object: 0xffff94895cc3eb70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc3ec80 | file object: 0xffff94895cc3ed00 | offsetby: 0x80
\Windows\System32\UIAnimation.dll
pool: 0xffff94895cc3ee10 | file object: 0xffff94895cc3ee90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc3f130 | file object: 0xffff94895cc3f1b0 | offsetby: 0x80
\Windows\System32\wtsapi32.dll
pool: 0xffff94895cc3f2c0 | file object: 0xffff94895cc3f340 | offsetby: 0x80
\Windows\System32\DispBroker.Desktop.dll
pool: 0xffff94895cc3f450 | file object: 0xffff94895cc3f4d0 | offsetby: 0x80
\Windows\System32\taskschd.dll
pool: 0xffff94895cc3f5e0 | file object: 0xffff94895cc3f660 | offsetby: 0x80
\Windows\System32\coloradapterclient.dll
pool: 0xffff94895cc3f770 | file object: 0xffff94895cc3f7f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc3f900 | file object: 0xffff94895cc3f980 | offsetby: 0x80
\Windows\System32\TimeBrokerServer.dll
pool: 0xffff94895cc3fa90 | file object: 0xffff94895cc3fb10 | offsetby: 0x80
\Windows\System32\avrt.dll
pool: 0xffff94895cc3fc20 | file object: 0xffff94895cc3fca0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc3fdb0 | file object: 0xffff94895cc3fe30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc400d0 | file object: 0xffff94895cc40150 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc40260 | file object: 0xffff94895cc402e0 | offsetby: 0x80
\Windows\Tasks
pool: 0xffff94895cc403f0 | file object: 0xffff94895cc40470 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc40580 | file object: 0xffff94895cc40600 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc40710 | file object: 0xffff94895cc40790 | offsetby: 0x80
\Windows\System32\taskcomp.dll
pool: 0xffff94895cc408a0 | file object: 0xffff94895cc40920 | offsetby: 0x80
\Windows\System32\SystemEventsBrokerClient.dll
pool: 0xffff94895cc40a30 | file object: 0xffff94895cc40ab0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc40bc0 | file object: 0xffff94895cc40c40 | offsetby: 0x80
\Windows\System32\lsmproxy.dll
pool: 0xffff94895cc40d50 | file object: 0xffff94895cc40dd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc41070 | file object: 0xffff94895cc410f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc41200 | file object: 0xffff94895cc41280 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc41390 | file object: 0xffff94895cc41410 | offsetby: 0x80
\Windows\System32\ubpm.dll
pool: 0xffff94895cc41520 | file object: 0xffff94895cc415a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc416b0 | file object: 0xffff94895cc41730 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895cc41840 | file object: 0xffff94895cc418c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc419d0 | file object: 0xffff94895cc41a50 | offsetby: 0x80
\Windows\System32\CSystemEventsBrokerClient.dll
pool: 0xffff94895cc41b60 | file object: 0xffff94895cc41be0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc41cf0 | file object: 0xffff94895cc41d70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc42010 | file object: 0xffff94895cc42090 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc421a0 | file object: 0xffff94895cc42220 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cc42330 | file object: 0xffff94895cc423b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc424c0 | file object: 0xffff94895cc42540 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc42650 | file object: 0xffff94895cc426d0 | offsetby: 0x80
\Windows\Tasks\SA.DAT
pool: 0xffff94895cc427e0 | file object: 0xffff94895cc42860 | offsetby: 0x80
\Windows\System32\ncbservice.dll
pool: 0xffff94895cc42970 | file object: 0xffff94895cc429f0 | offsetby: 0x80
\Windows\System32\Windows.Devices.Radios.dll
pool: 0xffff94895cc42b00 | file object: 0xffff94895cc42b80 | offsetby: 0x80
\Windows\System32\schedsvc.dll
pool: 0xffff94895cc42c90 | file object: 0xffff94895cc42d10 | offsetby: 0x80
\Windows\System32\usermgrcli.dll
pool: 0xffff94895cc42e20 | file object: 0xffff94895cc42ea0 | offsetby: 0x80
\Windows\System32\wmiclnt.dll
pool: 0xffff94895cc43140 | file object: 0xffff94895cc431c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc432d0 | file object: 0xffff94895cc43350 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cc43460 | file object: 0xffff94895cc434e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc435f0 | file object: 0xffff94895cc43670 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cc43780 | file object: 0xffff94895cc43800 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc43910 | file object: 0xffff94895cc43990 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895cc43aa0 | file object: 0xffff94895cc43b20 | offsetby: 0x80
\Windows\System32\bi.dll
pool: 0xffff94895cc43c30 | file object: 0xffff94895cc43cb0 | offsetby: 0x80
\Windows\System32\BluetoothApis.dll
pool: 0xffff94895cc43dc0 | file object: 0xffff94895cc43e40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc440e0 | file object: 0xffff94895cc44160 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc44270 | file object: 0xffff94895cc442f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cc44400 | file object: 0xffff94895cc44480 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cc44590 | file object: 0xffff94895cc44610 | offsetby: 0x80
\Windows\System32\BthRadioMedia.dll
pool: 0xffff94895cc44720 | file object: 0xffff94895cc447a0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cc448b0 | file object: 0xffff94895cc44930 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cc44a40 | file object: 0xffff94895cc44ac0 | offsetby: 0x80
\Windows\System32\mstask.dll
pool: 0xffff94895cc44bd0 | file object: 0xffff94895cc44c50 | offsetby: 0x80
\Windows\System32\httpprxc.dll
pool: 0xffff94895cc44d60 | file object: 0xffff94895cc44de0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ccd0c00 | file object: 0xffff94895ccd0c60 | offsetby: 0x60
\Windows\System32\drivers\rdpdr.sys
pool: 0xffff94895ccd1050 | file object: 0xffff94895ccd10b0 | offsetby: 0x60
\Windows\System32\drivers\rdpvideominiport.sys
pool: 0xffff94895ccd4410 | file object: 0xffff94895ccd4470 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ccd4860 | file object: 0xffff94895ccd48c0 | offsetby: 0x60
\Windows\System32\drivers\tsusbhub.sys
pool: 0xffff94895ccd4b40 | file object: 0xffff94895ccd4ba0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ccd5c80 | file object: 0xffff94895ccd5ce0 | offsetby: 0x60
\Windows\System32\drivers\winquic.sys
pool: 0xffff94895ccd6240 | file object: 0xffff94895ccd62a0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ccd6ae0 | file object: 0xffff94895ccd6b40 | offsetby: 0x60
\$PrepareToShrinkFileSize
pool: 0xffff94895ccd70a0 | file object: 0xffff94895ccd7100 | offsetby: 0x60
\Windows\System32\drivers\mrxsmb.sys
pool: 0xffff94895ccd7210 | file object: 0xffff94895ccd7270 | offsetby: 0x60
\Windows\System32\drivers\mrxsmb20.sys
pool: 0xffff94895ccd7380 | file object: 0xffff94895ccd73e0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ccd7660 | file object: 0xffff94895ccd76c0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ccd77d0 | file object: 0xffff94895ccd7830 | offsetby: 0x60
\Windows\System32\drivers\bowser.sys
pool: 0xffff94895ccd81e0 | file object: 0xffff94895ccd8240 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ccd9040 | file object: 0xffff94895ccd90a0 | offsetby: 0x60
\$PrepareToShrinkFileSize
pool: 0xffff94895ccdd540 | file object: 0xffff94895ccdd5a0 | offsetby: 0x60
\Windows\System32\drivers\luafv.sys
pool: 0xffff94895ccdd820 | file object: 0xffff94895ccdd880 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ccde960 | file object: 0xffff94895ccde9c0 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ccdec40 | file object: 0xffff94895ccdeca0 | offsetby: 0x60
\$Directory
pool: 0xffff94895ccdf090 | file object: 0xffff94895ccdf0f0 | offsetby: 0x60
\Windows\System32\drivers\cldflt.sys
pool: 0xffff94895cd02080 | file object: 0xffff94895cd02100 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd02210 | file object: 0xffff94895cd02290 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd023a0 | file object: 0xffff94895cd02420 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd02530 | file object: 0xffff94895cd025b0 | offsetby: 0x80
\Windows\System32\rdpbase.dll
pool: 0xffff94895cd026c0 | file object: 0xffff94895cd02740 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd02850 | file object: 0xffff94895cd028d0 | offsetby: 0x80
\Windows\System32\umb.dll
pool: 0xffff94895cd029e0 | file object: 0xffff94895cd02a60 | offsetby: 0x80
\Windows\System32\SEMgrSvc.dll
pool: 0xffff94895cd02b70 | file object: 0xffff94895cd02bf0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd02d00 | file object: 0xffff94895cd02d80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd03020 | file object: 0xffff94895cd030a0 | offsetby: 0x80
\Windows\System32\vmbuspipe.dll
pool: 0xffff94895cd031b0 | file object: 0xffff94895cd03230 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd03340 | file object: 0xffff94895cd033c0 | offsetby: 0x80
\Windows\System32\pdh.dll
pool: 0xffff94895cd034d0 | file object: 0xffff94895cd03550 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895cd03660 | file object: 0xffff94895cd036e0 | offsetby: 0x80
\Windows\System32\Microsoft\Protect\S-1-5-18\User\2daf8b93-86fe-408b-9ccc-54bf0c3432f7
pool: 0xffff94895cd037f0 | file object: 0xffff94895cd03870 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd03980 | file object: 0xffff94895cd03a00 | offsetby: 0x80
\Windows\System32\rdpcorets.dll
pool: 0xffff94895cd03b10 | file object: 0xffff94895cd03b90 | offsetby: 0x80
\Windows\System32\netprofm.dll
pool: 0xffff94895cd03ca0 | file object: 0xffff94895cd03d20 | offsetby: 0x80
\Windows\System32\rfxvmt.dll
pool: 0xffff94895cd03e30 | file object: 0xffff94895cd03eb0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd04150 | file object: 0xffff94895cd041d0 | offsetby: 0x80
\Windows\System32\Websocket.dll
pool: 0xffff94895cd042e0 | file object: 0xffff94895cd04360 | offsetby: 0x80
\Windows\System32\rdpserverbase.dll
pool: 0xffff94895cd04470 | file object: 0xffff94895cd044f0 | offsetby: 0x80
\Windows\System32\regapi.dll
pool: 0xffff94895cd04600 | file object: 0xffff94895cd04680 | offsetby: 0x80
\Windows\System32\en-US\termsrv.dll.mui
pool: 0xffff94895cd04790 | file object: 0xffff94895cd04810 | offsetby: 0x80
\Windows\System32\tlscsp.dll
pool: 0xffff94895cd04920 | file object: 0xffff94895cd049a0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cd04ab0 | file object: 0xffff94895cd04b30 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895cd04c40 | file object: 0xffff94895cd04cc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd04dd0 | file object: 0xffff94895cd04e50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd050f0 | file object: 0xffff94895cd05170 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cd05280 | file object: 0xffff94895cd05300 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cd05410 | file object: 0xffff94895cd05490 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd055a0 | file object: 0xffff94895cd05620 | offsetby: 0x80
\Windows\System32\AudioSes.dll
pool: 0xffff94895cd05730 | file object: 0xffff94895cd057b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd058c0 | file object: 0xffff94895cd05940 | offsetby: 0x80
\Windows\System32\PCPKsp.dll
pool: 0xffff94895cd05a50 | file object: 0xffff94895cd05ad0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cd05be0 | file object: 0xffff94895cd05c60 | offsetby: 0x80
\Windows\System32\profsvcext.dll
pool: 0xffff94895cd05d70 | file object: 0xffff94895cd05df0 | offsetby: 0x80
\Windows\System32\tbs.dll
pool: 0xffff94895cd06090 | file object: 0xffff94895cd06110 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd06220 | file object: 0xffff94895cd062a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd063b0 | file object: 0xffff94895cd06430 | offsetby: 0x80
\$Directory
pool: 0xffff94895cd06540 | file object: 0xffff94895cd065c0 | offsetby: 0x80
\Windows\System32\MMDevAPI.dll
pool: 0xffff94895cd066d0 | file object: 0xffff94895cd06750 | offsetby: 0x80
\Windows\System32\capauthz.dll
pool: 0xffff94895cd06860 | file object: 0xffff94895cd068e0 | offsetby: 0x80
\Windows\System32\wkscli.dll
pool: 0xffff94895cd069f0 | file object: 0xffff94895cd06a70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd06b80 | file object: 0xffff94895cd06c00 | offsetby: 0x80
\Windows\System32\ScDeviceEnum.dll
pool: 0xffff94895cd06d10 | file object: 0xffff94895cd06d90 | offsetby: 0x80
\Windows\System32\cryptngc.dll
pool: 0xffff94895cd07030 | file object: 0xffff94895cd070b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cd071c0 | file object: 0xffff94895cd07240 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd07350 | file object: 0xffff94895cd073d0 | offsetby: 0x80
\Windows\System32\profsvc.dll
pool: 0xffff94895cd074e0 | file object: 0xffff94895cd07560 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cd07670 | file object: 0xffff94895cd076f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cd07800 | file object: 0xffff94895cd07880 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd07990 | file object: 0xffff94895cd07a10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cd07b20 | file object: 0xffff94895cd07ba0 | offsetby: 0x80
\$Directory
pool: 0xffff94895cd07cb0 | file object: 0xffff94895cd07d30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd07e40 | file object: 0xffff94895cd07ec0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cd08160 | file object: 0xffff94895cd081e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cd082f0 | file object: 0xffff94895cd08370 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cd08480 | file object: 0xffff94895cd08500 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd08610 | file object: 0xffff94895cd08690 | offsetby: 0x80
\Windows\System32\AudioEndpointBuilder.dll
pool: 0xffff94895cd087a0 | file object: 0xffff94895cd08820 | offsetby: 0x80
\Windows\System32\wlanapi.dll
pool: 0xffff94895cd08930 | file object: 0xffff94895cd089b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd08c50 | file object: 0xffff94895cd08cd0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895cd08de0 | file object: 0xffff94895cd08e60 | offsetby: 0x80
\Windows\SystemResources\Windows.UI.Logon\pris\Windows.UI.Logon.en-US.pri
pool: 0xffff94895cd09100 | file object: 0xffff94895cd09180 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cd09290 | file object: 0xffff94895cd09310 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cd09420 | file object: 0xffff94895cd094a0 | offsetby: 0x80
\Windows\System32\actxprxy.dll
pool: 0xffff94895cd095b0 | file object: 0xffff94895cd09630 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd09740 | file object: 0xffff94895cd097c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd098d0 | file object: 0xffff94895cd09950 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895cd09a60 | file object: 0xffff94895cd09ae0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd09bf0 | file object: 0xffff94895cd09c70 | offsetby: 0x80
\Windows\System32\TimeBrokerClient.dll
pool: 0xffff94895cd09d80 | file object: 0xffff94895cd09e00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0a0a0 | file object: 0xffff94895cd0a120 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cd0a230 | file object: 0xffff94895cd0a2b0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cd0a3c0 | file object: 0xffff94895cd0a440 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cd0a550 | file object: 0xffff94895cd0a5d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0a6e0 | file object: 0xffff94895cd0a760 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895cd0a870 | file object: 0xffff94895cd0a8f0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cd0aa00 | file object: 0xffff94895cd0aa80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0ab90 | file object: 0xffff94895cd0ac10 | offsetby: 0x80
\Windows\System32\DispBroker.dll
pool: 0xffff94895cd0ad20 | file object: 0xffff94895cd0ada0 | offsetby: 0x80
\Windows\System32\Windows.Graphics.dll
pool: 0xffff94895cd0b040 | file object: 0xffff94895cd0b0c0 | offsetby: 0x80
\Windows\System32\WPTaskScheduler.dll
pool: 0xffff94895cd0b1d0 | file object: 0xffff94895cd0b250 | offsetby: 0x80
\Windows\System32\tzres.dll
pool: 0xffff94895cd0b360 | file object: 0xffff94895cd0b3e0 | offsetby: 0x80
\Windows\System32\en-US\tzres.dll.mui
pool: 0xffff94895cd0b4f0 | file object: 0xffff94895cd0b570 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0b680 | file object: 0xffff94895cd0b700 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0b810 | file object: 0xffff94895cd0b890 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cd0b9a0 | file object: 0xffff94895cd0ba20 | offsetby: 0x80
\Windows\System32\wevtsvc.dll
pool: 0xffff94895cd0bb30 | file object: 0xffff94895cd0bbb0 | offsetby: 0x80
\Windows\System32\en-US\d2d1.dll.mui
pool: 0xffff94895cd0bcc0 | file object: 0xffff94895cd0bd40 | offsetby: 0x80
\$Directory
pool: 0xffff94895cd0be50 | file object: 0xffff94895cd0bed0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cd0c170 | file object: 0xffff94895cd0c1f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0c300 | file object: 0xffff94895cd0c380 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0c490 | file object: 0xffff94895cd0c510 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0c620 | file object: 0xffff94895cd0c6a0 | offsetby: 0x80
\Windows\System32\umrdp.dll
pool: 0xffff94895cd0c7b0 | file object: 0xffff94895cd0c830 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0c940 | file object: 0xffff94895cd0c9c0 | offsetby: 0x80
\Windows\System32\en-US\umrdp.dll.mui
pool: 0xffff94895cd0cad0 | file object: 0xffff94895cd0cb50 | offsetby: 0x80
\Windows\System32\netjoin.dll
pool: 0xffff94895cd0cc60 | file object: 0xffff94895cd0cce0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0cdf0 | file object: 0xffff94895cd0ce70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cd0d110 | file object: 0xffff94895cd0d190 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0d2a0 | file object: 0xffff94895cd0d320 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0d430 | file object: 0xffff94895cd0d4b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cd0d5c0 | file object: 0xffff94895cd0d640 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4Firewall.evtx
pool: 0xffff94895cd0d750 | file object: 0xffff94895cd0d7d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0d8e0 | file object: 0xffff94895cd0d960 | offsetby: 0x80
\$Directory
pool: 0xffff94895cd0da70 | file object: 0xffff94895cd0daf0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0dc00 | file object: 0xffff94895cd0dc80 | offsetby: 0x80
\Windows\System32\cabinet.dll
pool: 0xffff94895cd0dd90 | file object: 0xffff94895cd0de10 | offsetby: 0x80
\Windows\System32\wevtapi.dll
pool: 0xffff94895cd0e0b0 | file object: 0xffff94895cd0e130 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0e240 | file object: 0xffff94895cd0e2c0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Containers-Wcifs%4Operational.evtx
pool: 0xffff94895cd0e3d0 | file object: 0xffff94895cd0e450 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0e560 | file object: 0xffff94895cd0e5e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0e6f0 | file object: 0xffff94895cd0e770 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0e880 | file object: 0xffff94895cd0e900 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0ea10 | file object: 0xffff94895cd0ea90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0eba0 | file object: 0xffff94895cd0ec20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895cd0ed30 | file object: 0xffff94895cd0edb0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0f050 | file object: 0xffff94895cd0f0d0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cd0f1e0 | file object: 0xffff94895cd0f260 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0f500 | file object: 0xffff94895cd0f580 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0f690 | file object: 0xffff94895cd0f710 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cd0f820 | file object: 0xffff94895cd0f8a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0f9b0 | file object: 0xffff94895cd0fa30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0fb40 | file object: 0xffff94895cd0fbc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd0fcd0 | file object: 0xffff94895cd0fd50 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895cd0fe60 | file object: 0xffff94895cd0fee0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cd10180 | file object: 0xffff94895cd10200 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd10310 | file object: 0xffff94895cd10390 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd104a0 | file object: 0xffff94895cd10520 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd10630 | file object: 0xffff94895cd106b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd107c0 | file object: 0xffff94895cd10840 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd10950 | file object: 0xffff94895cd109d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd10ae0 | file object: 0xffff94895cd10b60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd10c70 | file object: 0xffff94895cd10cf0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895cd10e00 | file object: 0xffff94895cd10e80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd11120 | file object: 0xffff94895cd111a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd112b0 | file object: 0xffff94895cd11330 | offsetby: 0x80
\Windows\System32\usermgr.dll
pool: 0xffff94895cd11440 | file object: 0xffff94895cd114c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd115d0 | file object: 0xffff94895cd11650 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd11760 | file object: 0xffff94895cd117e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd118f0 | file object: 0xffff94895cd11970 | offsetby: 0x80
\Windows\System32\Windows.StateRepositoryClient.dll
pool: 0xffff94895cd11a80 | file object: 0xffff94895cd11b00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895cd11c10 | file object: 0xffff94895cd11c90 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895cd11da0 | file object: 0xffff94895cd11e20 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895ce02080 | file object: 0xffff94895ce02100 | offsetby: 0x80
\Windows\System32\wmsgapi.dll
pool: 0xffff94895ce02210 | file object: 0xffff94895ce02290 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce023a0 | file object: 0xffff94895ce02420 | offsetby: 0x80
\Windows\System32\UserMgrLog.etl
pool: 0xffff94895ce02530 | file object: 0xffff94895ce025b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce026c0 | file object: 0xffff94895ce02740 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce02850 | file object: 0xffff94895ce028d0 | offsetby: 0x80
\Windows\System32\WinSCard.dll
pool: 0xffff94895ce029e0 | file object: 0xffff94895ce02a60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce02b70 | file object: 0xffff94895ce02bf0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce03020 | file object: 0xffff94895ce030a0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895ce031b0 | file object: 0xffff94895ce03230 | offsetby: 0x80
\$Directory
pool: 0xffff94895ce03340 | file object: 0xffff94895ce033c0 | offsetby: 0x80
\Windows\System32\winevt\Logs\System.evtx
pool: 0xffff94895ce034d0 | file object: 0xffff94895ce03550 | offsetby: 0x80
\Windows\System32\winevt\Logs\Application.evtx
pool: 0xffff94895ce03660 | file object: 0xffff94895ce036e0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Security.evtx
pool: 0xffff94895ce037f0 | file object: 0xffff94895ce03870 | offsetby: 0x80
\Windows\System32\winevt\Logs\Internet Explorer.evtx
pool: 0xffff94895ce03980 | file object: 0xffff94895ce03a00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce03b10 | file object: 0xffff94895ce03b90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce03ca0 | file object: 0xffff94895ce03d20 | offsetby: 0x80
\Windows\System32\policymanager.dll
pool: 0xffff94895ce03e30 | file object: 0xffff94895ce03eb0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce04150 | file object: 0xffff94895ce041d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce042e0 | file object: 0xffff94895ce04360 | offsetby: 0x80
\Windows\System32\certprop.dll
pool: 0xffff94895ce04470 | file object: 0xffff94895ce044f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce04600 | file object: 0xffff94895ce04680 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce04790 | file object: 0xffff94895ce04810 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce04920 | file object: 0xffff94895ce049a0 | offsetby: 0x80
\Windows\System32\dhcpcore.dll
pool: 0xffff94895ce04dd0 | file object: 0xffff94895ce04e50 | offsetby: 0x80
\Windows\System32\winevt\Logs\HardwareEvents.evtx
pool: 0xffff94895ce050f0 | file object: 0xffff94895ce05170 | offsetby: 0x80
\Windows\System32\taskhostw.exe
pool: 0xffff94895ce05280 | file object: 0xffff94895ce05300 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-Boot%4Operational.evtx
pool: 0xffff94895ce05410 | file object: 0xffff94895ce05490 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Ntfs%4WHC.evtx
pool: 0xffff94895ce055a0 | file object: 0xffff94895ce05620 | offsetby: 0x80
\Windows\System32\winevt\Logs\Key Management Service.evtx
pool: 0xffff94895ce05730 | file object: 0xffff94895ce057b0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Partition%4Diagnostic.evtx
pool: 0xffff94895ce058c0 | file object: 0xffff94895ce05940 | offsetby: 0x80
\Windows\System32\drivers\storport.sys
pool: 0xffff94895ce05a50 | file object: 0xffff94895ce05ad0 | offsetby: 0x80
\Windows\System32\drivers\ntfs.sys
pool: 0xffff94895ce05be0 | file object: 0xffff94895ce05c60 | offsetby: 0x80
\Windows\System32\drivers\volsnap.sys
pool: 0xffff94895ce05d70 | file object: 0xffff94895ce05df0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-VolumeSnapshot-Driver%4Operational.evtx
pool: 0xffff94895ce06090 | file object: 0xffff94895ce06110 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-WebAuthN%4Operational.evtx
pool: 0xffff94895ce06220 | file object: 0xffff94895ce062a0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-CodeIntegrity%4Operational.evtx
pool: 0xffff94895ce063b0 | file object: 0xffff94895ce06430 | offsetby: 0x80
\Windows\System32\en-US\certprop.dll.mui
pool: 0xffff94895ce06540 | file object: 0xffff94895ce065c0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Windows PowerShell.evtx
pool: 0xffff94895ce066d0 | file object: 0xffff94895ce06750 | offsetby: 0x80
\Windows\System32\webauthn.dll
pool: 0xffff94895ce06860 | file object: 0xffff94895ce068e0 | offsetby: 0x80
\Windows\System32\drivers\fltMgr.sys
pool: 0xffff94895ce069f0 | file object: 0xffff94895ce06a70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce06b80 | file object: 0xffff94895ce06c00 | offsetby: 0x80
\Windows\System32\microsoft-windows-kernel-power-events.dll
pool: 0xffff94895ce06d10 | file object: 0xffff94895ce06d90 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Ntfs%4Operational.evtx
pool: 0xffff94895ce07030 | file object: 0xffff94895ce070b0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA%4Errors.evtx
pool: 0xffff94895ce071c0 | file object: 0xffff94895ce07240 | offsetby: 0x80
\Windows\System32\PSHED.DLL
pool: 0xffff94895ce07350 | file object: 0xffff94895ce073d0 | offsetby: 0x80
\Windows\System32\ci.dll
pool: 0xffff94895ce074e0 | file object: 0xffff94895ce07560 | offsetby: 0x80
\Windows\System32\drivers\partmgr.sys
pool: 0xffff94895ce07670 | file object: 0xffff94895ce076f0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Windows Azure.evtx
pool: 0xffff94895ce07800 | file object: 0xffff94895ce07880 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce07990 | file object: 0xffff94895ce07a10 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895ce07b20 | file object: 0xffff94895ce07ba0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-Storport%4Operational.evtx
pool: 0xffff94895ce07cb0 | file object: 0xffff94895ce07d30 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-Power%4Thermal-Operational.evtx
pool: 0xffff94895ce07e40 | file object: 0xffff94895ce07ec0 | offsetby: 0x80
\Windows\System32\microsoft-windows-system-events.dll
pool: 0xffff94895ce08160 | file object: 0xffff94895ce081e0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-ShimEngine%4Operational.evtx
pool: 0xffff94895ce082f0 | file object: 0xffff94895ce08370 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Storage-Storport%4Health.evtx
pool: 0xffff94895ce08480 | file object: 0xffff94895ce08500 | offsetby: 0x80
\Windows\System32\dhcpcore6.dll
pool: 0xffff94895ce08610 | file object: 0xffff94895ce08690 | offsetby: 0x80
\Windows\System32\winnsi.dll
pool: 0xffff94895ce087a0 | file object: 0xffff94895ce08820 | offsetby: 0x80
\Windows\System32\samcli.dll
pool: 0xffff94895ce08930 | file object: 0xffff94895ce089b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce08ac0 | file object: 0xffff94895ce08b40 | offsetby: 0x80
\Windows\System32\microsoft-windows-kernel-processor-power-events.dll
pool: 0xffff94895ce08c50 | file object: 0xffff94895ce08cd0 | offsetby: 0x80
\Windows\System32\netprofmsvc.dll
pool: 0xffff94895ce08de0 | file object: 0xffff94895ce08e60 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-StateRepository%4Restricted.evtx
pool: 0xffff94895ce09100 | file object: 0xffff94895ce09180 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-GroupPolicy%4Operational.evtx
pool: 0xffff94895ce09290 | file object: 0xffff94895ce09310 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Admin.evtx
pool: 0xffff94895ce09420 | file object: 0xffff94895ce094a0 | offsetby: 0x80
\Windows\System32\upfc.exe
pool: 0xffff94895ce095b0 | file object: 0xffff94895ce09630 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Wcmsvc%4Operational.evtx
pool: 0xffff94895ce09740 | file object: 0xffff94895ce097c0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-WHEA%4Operational.evtx
pool: 0xffff94895ce098d0 | file object: 0xffff94895ce09950 | offsetby: 0x80
\Windows\System32\wcmsvc.dll
pool: 0xffff94895ce09a60 | file object: 0xffff94895ce09ae0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-StateRepository%4Operational.evtx
pool: 0xffff94895ce09bf0 | file object: 0xffff94895ce09c70 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-PushNotification-Platform%4Operational.evtx
pool: 0xffff94895ce09d80 | file object: 0xffff94895ce09e00 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-PushNotification-Platform%4Admin.evtx
pool: 0xffff94895ce0a0a0 | file object: 0xffff94895ce0a120 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-AppModel-Runtime%4Admin.evtx
pool: 0xffff94895ce0a230 | file object: 0xffff94895ce0a2b0 | offsetby: 0x80
\Windows\System32\adtschema.dll
pool: 0xffff94895ce0a3c0 | file object: 0xffff94895ce0a440 | offsetby: 0x80
\Windows\System32\wpncore.dll
pool: 0xffff94895ce0a550 | file object: 0xffff94895ce0a5d0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-RemoteConnectionManager%4Admin.evtx
pool: 0xffff94895ce0a6e0 | file object: 0xffff94895ce0a760 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Winlogon%4Operational.evtx
pool: 0xffff94895ce0a870 | file object: 0xffff94895ce0a8f0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-NetworkProfile%4Operational.evtx
pool: 0xffff94895ce0aa00 | file object: 0xffff94895ce0aa80 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-LocalSessionManager%4Operational.evtx
pool: 0xffff94895ce0ab90 | file object: 0xffff94895ce0ac10 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-TerminalServices-RemoteConnectionManager%4Operational.evtx
pool: 0xffff94895ce0ad20 | file object: 0xffff94895ce0ada0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0b040 | file object: 0xffff94895ce0b0c0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ce0b1d0 | file object: 0xffff94895ce0b250 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895ce0b360 | file object: 0xffff94895ce0b3e0 | offsetby: 0x80
\Windows\System32\Windows.StateRepository.dll
pool: 0xffff94895ce0b4f0 | file object: 0xffff94895ce0b570 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0b680 | file object: 0xffff94895ce0b700 | offsetby: 0x80
\Windows\System32\version.dll
pool: 0xffff94895ce0b9a0 | file object: 0xffff94895ce0ba20 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ce0bb30 | file object: 0xffff94895ce0bbb0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0bcc0 | file object: 0xffff94895ce0bd40 | offsetby: 0x80
\Windows\System32\dsparse.dll
pool: 0xffff94895ce0be50 | file object: 0xffff94895ce0bed0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0c170 | file object: 0xffff94895ce0c1f0 | offsetby: 0x80
\Windows\System32\TaskApis.dll
pool: 0xffff94895ce0c300 | file object: 0xffff94895ce0c380 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895ce0c490 | file object: 0xffff94895ce0c510 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0c620 | file object: 0xffff94895ce0c6a0 | offsetby: 0x80
\Windows\System32\wkssvc.dll
pool: 0xffff94895ce0c7b0 | file object: 0xffff94895ce0c830 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0c940 | file object: 0xffff94895ce0c9c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0cad0 | file object: 0xffff94895ce0cb50 | offsetby: 0x80
\Windows\System32\StateRepository.Core.dll
pool: 0xffff94895ce0cc60 | file object: 0xffff94895ce0cce0 | offsetby: 0x80
\Windows\System32\AppXDeploymentClient.dll
pool: 0xffff94895ce0cdf0 | file object: 0xffff94895ce0ce70 | offsetby: 0x80
\Windows\System32\UserMgrProxy.dll
pool: 0xffff94895ce0d110 | file object: 0xffff94895ce0d190 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0d2a0 | file object: 0xffff94895ce0d320 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0d430 | file object: 0xffff94895ce0d4b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\FB0D848F74F70BB2EAA93746D24D9749
pool: 0xffff94895ce0d750 | file object: 0xffff94895ce0d7d0 | offsetby: 0x80
\Windows\System32\mpr.dll
pool: 0xffff94895ce0d8e0 | file object: 0xffff94895ce0d960 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0da70 | file object: 0xffff94895ce0daf0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895ce0dd90 | file object: 0xffff94895ce0de10 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{AAEFBF30-3296-4663-B06E-E1DE5404F81C}.catalogItem
pool: 0xffff94895ce0e0b0 | file object: 0xffff94895ce0e130 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0e240 | file object: 0xffff94895ce0e2c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0e3d0 | file object: 0xffff94895ce0e450 | offsetby: 0x80
\Windows\System32\drivers\en-US\ndis.sys.mui
pool: 0xffff94895ce0e560 | file object: 0xffff94895ce0e5e0 | offsetby: 0x80
\Windows\System32\VBoxService.exe
pool: 0xffff94895ce0e6f0 | file object: 0xffff94895ce0e770 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0e880 | file object: 0xffff94895ce0e900 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0ea10 | file object: 0xffff94895ce0ea90 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895ce0eba0 | file object: 0xffff94895ce0ec20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0ed30 | file object: 0xffff94895ce0edb0 | offsetby: 0x80
\Windows\System32\VBoxControl.exe
pool: 0xffff94895ce0f050 | file object: 0xffff94895ce0f0d0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895ce0f1e0 | file object: 0xffff94895ce0f260 | offsetby: 0x80
\Windows\SysWOW64\MFMediaEngine.dll
pool: 0xffff94895ce0f370 | file object: 0xffff94895ce0f3f0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ce0f500 | file object: 0xffff94895ce0f580 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ce0f690 | file object: 0xffff94895ce0f710 | offsetby: 0x80
\Windows\System32\VBoxHook.dll
pool: 0xffff94895ce0f820 | file object: 0xffff94895ce0f8a0 | offsetby: 0x80
\Windows\System32\VBoxTray.exe
pool: 0xffff94895ce0f9b0 | file object: 0xffff94895ce0fa30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce0fb40 | file object: 0xffff94895ce0fbc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ce0fcd0 | file object: 0xffff94895ce0fd50 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ce0fe60 | file object: 0xffff94895ce0fee0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895ce10180 | file object: 0xffff94895ce10200 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce10310 | file object: 0xffff94895ce10390 | offsetby: 0x80
\Windows\System32\wpdbusenum.dll
pool: 0xffff94895ce104a0 | file object: 0xffff94895ce10520 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895ce10630 | file object: 0xffff94895ce106b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce107c0 | file object: 0xffff94895ce10840 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce10950 | file object: 0xffff94895ce109d0 | offsetby: 0x80
\Windows\System32\dhcpcsvc6.dll
pool: 0xffff94895ce10ae0 | file object: 0xffff94895ce10b60 | offsetby: 0x80
\Windows\System32\PortableDeviceConnectApi.dll
pool: 0xffff94895ce10c70 | file object: 0xffff94895ce10cf0 | offsetby: 0x80
\Windows\System32\PortableDeviceApi.dll
pool: 0xffff94895ce10e00 | file object: 0xffff94895ce10e80 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895ce11120 | file object: 0xffff94895ce111a0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ce112b0 | file object: 0xffff94895ce11330 | offsetby: 0x80
\Windows\System32\dhcpcsvc.dll
pool: 0xffff94895ce11440 | file object: 0xffff94895ce114c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce115d0 | file object: 0xffff94895ce11650 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895ce11760 | file object: 0xffff94895ce117e0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895ce118f0 | file object: 0xffff94895ce11970 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce11a80 | file object: 0xffff94895ce11b00 | offsetby: 0x80
\Windows\System32\VBoxMRXNP.dll
pool: 0xffff94895ce11c10 | file object: 0xffff94895ce11c90 | offsetby: 0x80
\Windows\System32\drivers\VBoxGuest.sys
pool: 0xffff94895ce11da0 | file object: 0xffff94895ce11e20 | offsetby: 0x80
\Windows\SysWOW64\VBoxOGL-x86.dll
pool: 0xffff94895ce79df0 | file object: 0xffff94895ce79e50 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce7a690 | file object: 0xffff94895ce7a6f0 | offsetby: 0x60
\Windows\System32\drivers\rspndr.sys
pool: 0xffff94895ce7a800 | file object: 0xffff94895ce7a860 | offsetby: 0x60
\Windows\System32\drivers\vmswitch.sys
pool: 0xffff94895ce7b210 | file object: 0xffff94895ce7b270 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce7bd90 | file object: 0xffff94895ce7bdf0 | offsetby: 0x60
\Windows\System32\drivers\lltdio.sys
pool: 0xffff94895ce7c1e0 | file object: 0xffff94895ce7c240 | offsetby: 0x60
\Windows\System32\drivers\mslldp.sys
pool: 0xffff94895ce7c4c0 | file object: 0xffff94895ce7c520 | offsetby: 0x60
\Windows\System32\drivers\wanarp.sys
pool: 0xffff94895ce7f880 | file object: 0xffff94895ce7f8e0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce7fb60 | file object: 0xffff94895ce7fbc0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce7fcd0 | file object: 0xffff94895ce7fd30 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce80570 | file object: 0xffff94895ce805d0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce806e0 | file object: 0xffff94895ce80740 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce80850 | file object: 0xffff94895ce808b0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce80ca0 | file object: 0xffff94895ce80d00 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce80e10 | file object: 0xffff94895ce80e70 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce813d0 | file object: 0xffff94895ce81430 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce816b0 | file object: 0xffff94895ce81710 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce81820 | file object: 0xffff94895ce81880 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce81990 | file object: 0xffff94895ce819f0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce81c70 | file object: 0xffff94895ce81cd0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce81de0 | file object: 0xffff94895ce81e40 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce820c0 | file object: 0xffff94895ce82120 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce823a0 | file object: 0xffff94895ce82400 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce82510 | file object: 0xffff94895ce82570 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce82680 | file object: 0xffff94895ce826e0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce827f0 | file object: 0xffff94895ce82850 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce82960 | file object: 0xffff94895ce829c0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce82ad0 | file object: 0xffff94895ce82b30 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce82c40 | file object: 0xffff94895ce82ca0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce82db0 | file object: 0xffff94895ce82e10 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce83090 | file object: 0xffff94895ce830f0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce83200 | file object: 0xffff94895ce83260 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce83370 | file object: 0xffff94895ce833d0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce834e0 | file object: 0xffff94895ce83540 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce83650 | file object: 0xffff94895ce836b0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce837c0 | file object: 0xffff94895ce83820 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce83930 | file object: 0xffff94895ce83990 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce83aa0 | file object: 0xffff94895ce83b00 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce83c10 | file object: 0xffff94895ce83c70 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce83d80 | file object: 0xffff94895ce83de0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895ce85080 | file object: 0xffff94895ce85100 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce85210 | file object: 0xffff94895ce85290 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ce853a0 | file object: 0xffff94895ce85420 | offsetby: 0x80
\$Directory
pool: 0xffff94895ce85530 | file object: 0xffff94895ce855b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce856c0 | file object: 0xffff94895ce85740 | offsetby: 0x80
\Windows\System32\themeservice.dll
pool: 0xffff94895ce85850 | file object: 0xffff94895ce858d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce859e0 | file object: 0xffff94895ce85a60 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895ce85b70 | file object: 0xffff94895ce85bf0 | offsetby: 0x80
\Windows\System32\winhttp.dll
pool: 0xffff94895ce85d00 | file object: 0xffff94895ce85d80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce86020 | file object: 0xffff94895ce860a0 | offsetby: 0x80
\Windows\System32\WaaSMedicSvc.dll
pool: 0xffff94895ce861b0 | file object: 0xffff94895ce86230 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-342BD74A.pf
pool: 0xffff94895ce86340 | file object: 0xffff94895ce863c0 | offsetby: 0x80
\Windows\System32\FWPUCLNT.DLL
pool: 0xffff94895ce864d0 | file object: 0xffff94895ce86550 | offsetby: 0x80
\Windows\System32\secur32.dll
pool: 0xffff94895ce86660 | file object: 0xffff94895ce866e0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ce867f0 | file object: 0xffff94895ce86870 | offsetby: 0x80
\Windows\System32\dnsrslvr.dll
pool: 0xffff94895ce86980 | file object: 0xffff94895ce86a00 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_88614FFAD35D353421B8A7E1FE18FCE4
pool: 0xffff94895ce86b10 | file object: 0xffff94895ce86b90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce86ca0 | file object: 0xffff94895ce86d20 | offsetby: 0x80
\Windows\System32\ssdpapi.dll
pool: 0xffff94895ce86e30 | file object: 0xffff94895ce86eb0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ce87150 | file object: 0xffff94895ce871d0 | offsetby: 0x80
\Windows\System32\sysmain.dll
pool: 0xffff94895ce872e0 | file object: 0xffff94895ce87360 | offsetby: 0x80
\$Directory
pool: 0xffff94895ce87470 | file object: 0xffff94895ce874f0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895ce87600 | file object: 0xffff94895ce87680 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce87790 | file object: 0xffff94895ce87810 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce87920 | file object: 0xffff94895ce879a0 | offsetby: 0x80
\Windows\System32\es.dll
pool: 0xffff94895ce87ab0 | file object: 0xffff94895ce87b30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce87c40 | file object: 0xffff94895ce87cc0 | offsetby: 0x80
\Windows\System32\nlasvc.dll
pool: 0xffff94895ce87dd0 | file object: 0xffff94895ce87e50 | offsetby: 0x80
\Windows\System32\ncsi.dll
pool: 0xffff94895ce880f0 | file object: 0xffff94895ce88170 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce88280 | file object: 0xffff94895ce88300 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce88410 | file object: 0xffff94895ce88490 | offsetby: 0x80
\Windows\System32\WaaSMedicPS.dll
pool: 0xffff94895ce885a0 | file object: 0xffff94895ce88620 | offsetby: 0x80
\$Directory
pool: 0xffff94895ce88730 | file object: 0xffff94895ce887b0 | offsetby: 0x80
\Windows\System32\WaaSMedicPS.dll
pool: 0xffff94895ce888c0 | file object: 0xffff94895ce88940 | offsetby: 0x80
\Windows\System32\DismApi.dll
pool: 0xffff94895ce88a50 | file object: 0xffff94895ce88ad0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce88be0 | file object: 0xffff94895ce88c60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce88d70 | file object: 0xffff94895ce88df0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895ce89090 | file object: 0xffff94895ce89110 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce89220 | file object: 0xffff94895ce892a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce893b0 | file object: 0xffff94895ce89430 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce89540 | file object: 0xffff94895ce895c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce896d0 | file object: 0xffff94895ce89750 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-User Device Registration%4Admin.evtx
pool: 0xffff94895ce89860 | file object: 0xffff94895ce898e0 | offsetby: 0x80
\Windows\System32\comres.dll
pool: 0xffff94895ce899f0 | file object: 0xffff94895ce89a70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce89b80 | file object: 0xffff94895ce89c00 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895ce89d10 | file object: 0xffff94895ce89d90 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ce8a030 | file object: 0xffff94895ce8a0b0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895ce8a1c0 | file object: 0xffff94895ce8a240 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895ce8a350 | file object: 0xffff94895ce8a3d0 | offsetby: 0x80
\Windows\System32\drivers\etc
pool: 0xffff94895ce8a4e0 | file object: 0xffff94895ce8a560 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ce8a670 | file object: 0xffff94895ce8a6f0 | offsetby: 0x80
\Windows\System32\SessEnv.dll
pool: 0xffff94895ce8a800 | file object: 0xffff94895ce8a880 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8a990 | file object: 0xffff94895ce8aa10 | offsetby: 0x80
\Windows\System32\Sens.dll
pool: 0xffff94895ce8ab20 | file object: 0xffff94895ce8aba0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8acb0 | file object: 0xffff94895ce8ad30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8ae40 | file object: 0xffff94895ce8aec0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895ce8b160 | file object: 0xffff94895ce8b1e0 | offsetby: 0x80
\Windows\SystemResources\comres.dll.mun
pool: 0xffff94895ce8b2f0 | file object: 0xffff94895ce8b370 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8b480 | file object: 0xffff94895ce8b500 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8b610 | file object: 0xffff94895ce8b690 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ce8b7a0 | file object: 0xffff94895ce8b820 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895ce8b930 | file object: 0xffff94895ce8b9b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8bac0 | file object: 0xffff94895ce8bb40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8bc50 | file object: 0xffff94895ce8bcd0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ce8bde0 | file object: 0xffff94895ce8be60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8c100 | file object: 0xffff94895ce8c180 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ce8c290 | file object: 0xffff94895ce8c310 | offsetby: 0x80
\$Directory
pool: 0xffff94895ce8c420 | file object: 0xffff94895ce8c4a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8c5b0 | file object: 0xffff94895ce8c630 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895ce8c740 | file object: 0xffff94895ce8c7c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8c8d0 | file object: 0xffff94895ce8c950 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8ca60 | file object: 0xffff94895ce8cae0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8cbf0 | file object: 0xffff94895ce8cc70 | offsetby: 0x80
\Windows\System32\FntCache.dll
pool: 0xffff94895ce8cd80 | file object: 0xffff94895ce8ce00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8d0a0 | file object: 0xffff94895ce8d120 | offsetby: 0x80
\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12827.20200.0_x64__8wekyb3d8bbwe\en-us\hxcommintl.dll
pool: 0xffff94895ce8d230 | file object: 0xffff94895ce8d2b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ce8d3c0 | file object: 0xffff94895ce8d440 | offsetby: 0x80
\Windows\System32\Microsoft\Protect\S-1-5-18\9eb69274-6978-4b47-971e-3a4f3f055676
pool: 0xffff94895ce8d550 | file object: 0xffff94895ce8d5d0 | offsetby: 0x80
\ProgramData\Microsoft\Crypto\RSA\MachineKeys\f686aace6942fb7f7ceb231212eef4a4_373ee86b-ec20-4082-94ac-039dcac01c17
pool: 0xffff94895ce8d6e0 | file object: 0xffff94895ce8d760 | offsetby: 0x80
\Windows\System32\FontProvider.dll
pool: 0xffff94895ce8d870 | file object: 0xffff94895ce8d8f0 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff94895ce8da00 | file object: 0xffff94895ce8da80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8db90 | file object: 0xffff94895ce8dc10 | offsetby: 0x80
\$Directory
pool: 0xffff94895ce8dd20 | file object: 0xffff94895ce8dda0 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\AppData\Local\FontCache\~FontCache-FontFace.dat
pool: 0xffff94895ce8e040 | file object: 0xffff94895ce8e0c0 | offsetby: 0x80
\Windows\System32\en-US\ShutdownUX.dll.mui
pool: 0xffff94895ce8e1d0 | file object: 0xffff94895ce8e250 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\AppData\Local\FontCache\~FontCache-System.dat
pool: 0xffff94895ce8e360 | file object: 0xffff94895ce8e3e0 | offsetby: 0x80
\Windows\Fonts
pool: 0xffff94895ce8e4f0 | file object: 0xffff94895ce8e570 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895ce8e680 | file object: 0xffff94895ce8e700 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Caches\{DDF571F2-BE98-426D-8288-1A9A39C3FDA2}.2.ver0x0000000000000001.db
pool: 0xffff94895ce8e810 | file object: 0xffff94895ce8e890 | offsetby: 0x80
\Windows\System32\en-US\propsys.dll.mui
pool: 0xffff94895ce8e9a0 | file object: 0xffff94895ce8ea20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8eb30 | file object: 0xffff94895ce8ebb0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8ecc0 | file object: 0xffff94895ce8ed40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ce8ee50 | file object: 0xffff94895ce8eed0 | offsetby: 0x80
\Windows\System32\OnDemandConnRouteHelper.dll
pool: 0xffff94895ce8f170 | file object: 0xffff94895ce8f1f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8f300 | file object: 0xffff94895ce8f380 | offsetby: 0x80
\Windows\System32\BFE.DLL
pool: 0xffff94895ce8f490 | file object: 0xffff94895ce8f510 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ce8f620 | file object: 0xffff94895ce8f6a0 | offsetby: 0x80
\Windows\System32\en-US\bfe.dll.mui
pool: 0xffff94895ce8f7b0 | file object: 0xffff94895ce8f830 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-2a7e7a6cb463b94d8bffe4bbc26ebc24.code
pool: 0xffff94895ce8f940 | file object: 0xffff94895ce8f9c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8fad0 | file object: 0xffff94895ce8fb50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce8fc60 | file object: 0xffff94895ce8fce0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ce90110 | file object: 0xffff94895ce90190 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Caches\cversions.2.db
pool: 0xffff94895ce902a0 | file object: 0xffff94895ce90320 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Caches\{6AF0698E-D558-4F6E-9B3C-3716689AF493}.2.ver0x0000000000000001.db
pool: 0xffff94895ce90430 | file object: 0xffff94895ce904b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce905c0 | file object: 0xffff94895ce90640 | offsetby: 0x80
\Windows\System32\Windows.UI.Xaml.InkControls.dll
pool: 0xffff94895ce90750 | file object: 0xffff94895ce907d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce908e0 | file object: 0xffff94895ce90960 | offsetby: 0x80
\$Directory
pool: 0xffff94895ce90a70 | file object: 0xffff94895ce90af0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce90c00 | file object: 0xffff94895ce90c80 | offsetby: 0x80
\Windows\System32\en-US\MMDevAPI.dll.mui
pool: 0xffff94895ce90d90 | file object: 0xffff94895ce90e10 | offsetby: 0x80
\Windows\System32\Windows.UI.Xaml.Controls.dll
pool: 0xffff94895ce910b0 | file object: 0xffff94895ce91130 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce91240 | file object: 0xffff94895ce912c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce913d0 | file object: 0xffff94895ce91450 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895ce91560 | file object: 0xffff94895ce915e0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895ce916f0 | file object: 0xffff94895ce91770 | offsetby: 0x80
\$Directory
pool: 0xffff94895ce91880 | file object: 0xffff94895ce91900 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce91a10 | file object: 0xffff94895ce91a90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce91ba0 | file object: 0xffff94895ce91c20 | offsetby: 0x80
\Windows\System32\dxgiadaptercache.exe
pool: 0xffff94895ce91d30 | file object: 0xffff94895ce91db0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-NCSI%4Operational.evtx
pool: 0xffff94895ce92050 | file object: 0xffff94895ce920d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce921e0 | file object: 0xffff94895ce92260 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce92370 | file object: 0xffff94895ce923f0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Security.evtx
pool: 0xffff94895ce92500 | file object: 0xffff94895ce92580 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce92690 | file object: 0xffff94895ce92710 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce92820 | file object: 0xffff94895ce928a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce929b0 | file object: 0xffff94895ce92a30 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Dhcp-Client%4Admin.evtx
pool: 0xffff94895ce92b40 | file object: 0xffff94895ce92bc0 | offsetby: 0x80
\Windows\System32\vssapi.dll
pool: 0xffff94895ce92cd0 | file object: 0xffff94895ce92d50 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-HotspotAuth%4Operational.evtx
pool: 0xffff94895ce92e60 | file object: 0xffff94895ce92ee0 | offsetby: 0x80
\Windows\System32\drivers\etc\hosts
pool: 0xffff94895ce93180 | file object: 0xffff94895ce93200 | offsetby: 0x80
\Windows\System32\en-US\FirewallAPI.dll.mui
pool: 0xffff94895ce93310 | file object: 0xffff94895ce93390 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Connectivity.evtx
pool: 0xffff94895ce934a0 | file object: 0xffff94895ce93520 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-SMBClient%4Operational.evtx
pool: 0xffff94895ce93630 | file object: 0xffff94895ce936b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce937c0 | file object: 0xffff94895ce93840 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce93950 | file object: 0xffff94895ce939d0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895ce93ae0 | file object: 0xffff94895ce93b60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce93c70 | file object: 0xffff94895ce93cf0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-User Profile Service%4Operational.evtx
pool: 0xffff94895ce93e00 | file object: 0xffff94895ce93e80 | offsetby: 0x80
\Windows\System32\en-US\netprofmsvc.dll.mui
pool: 0xffff94895ce94120 | file object: 0xffff94895ce941a0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-RemoteDesktopServices-RdpCoreTS%4Admin.evtx
pool: 0xffff94895ce942b0 | file object: 0xffff94895ce94330 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-SmbClient%4Audit.evtx
pool: 0xffff94895ce94440 | file object: 0xffff94895ce944c0 | offsetby: 0x80
\Windows\System32\en-US\AudioEndpointBuilder.dll.mui
pool: 0xffff94895ce945d0 | file object: 0xffff94895ce94650 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Dhcpv6-Client%4Admin.evtx
pool: 0xffff94895ce94760 | file object: 0xffff94895ce947e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ce948f0 | file object: 0xffff94895ce94970 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-RemoteDesktopServices-RdpCoreTS%4Operational.evtx
pool: 0xffff94895ce94a80 | file object: 0xffff94895ce94b00 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ce94c10 | file object: 0xffff94895ce94c90 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-WinINet-Config%4ProxyConfigChanged.evtx
pool: 0xffff94895ce94da0 | file object: 0xffff94895ce94e20 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e002080 | file object: 0xffff94895e002100 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e002210 | file object: 0xffff94895e002290 | offsetby: 0x80
\Windows\System32\audiodg.exe
pool: 0xffff94895e0023a0 | file object: 0xffff94895e002420 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e002530 | file object: 0xffff94895e0025b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e0026c0 | file object: 0xffff94895e002740 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e0029e0 | file object: 0xffff94895e002a60 | offsetby: 0x80
\Windows\System32\en-US\AudioSrv.dll.mui
pool: 0xffff94895e002b70 | file object: 0xffff94895e002bf0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e002d00 | file object: 0xffff94895e002d80 | offsetby: 0x80
\Windows\System32\HrtfApo.dll
pool: 0xffff94895e003020 | file object: 0xffff94895e0030a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e0031b0 | file object: 0xffff94895e003230 | offsetby: 0x80
\Windows\System32\CompPkgSup.dll
pool: 0xffff94895e003340 | file object: 0xffff94895e0033c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e0034d0 | file object: 0xffff94895e003550 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e003660 | file object: 0xffff94895e0036e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e0037f0 | file object: 0xffff94895e003870 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e003980 | file object: 0xffff94895e003a00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e003b10 | file object: 0xffff94895e003b90 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e003ca0 | file object: 0xffff94895e003d20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e003e30 | file object: 0xffff94895e003eb0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e004150 | file object: 0xffff94895e0041d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e0042e0 | file object: 0xffff94895e004360 | offsetby: 0x80
\Windows\System32\audiosrv.dll
pool: 0xffff94895e004470 | file object: 0xffff94895e0044f0 | offsetby: 0x80
\Windows\System32\coreaudiopolicymanagerext.dll
pool: 0xffff94895e004600 | file object: 0xffff94895e004680 | offsetby: 0x80
\Windows\System32\AudioSrvPolicyManager.dll
pool: 0xffff94895e004790 | file object: 0xffff94895e004810 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e004920 | file object: 0xffff94895e0049a0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e004ab0 | file object: 0xffff94895e004b30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e004c40 | file object: 0xffff94895e004cc0 | offsetby: 0x80
\Windows\System32\Windows.Media.Devices.dll
pool: 0xffff94895e004dd0 | file object: 0xffff94895e004e50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e0050f0 | file object: 0xffff94895e005170 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e005280 | file object: 0xffff94895e005300 | offsetby: 0x80
\Windows\System32\npmproxy.dll
pool: 0xffff94895e005410 | file object: 0xffff94895e005490 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e0055a0 | file object: 0xffff94895e005620 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e005730 | file object: 0xffff94895e0057b0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e0058c0 | file object: 0xffff94895e005940 | offsetby: 0x80
\Windows\System32\GroupPolicy\gpt.ini
pool: 0xffff94895e005a50 | file object: 0xffff94895e005ad0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e005be0 | file object: 0xffff94895e005c60 | offsetby: 0x80
\Windows\System32\dusmsvc.dll
pool: 0xffff94895e005d70 | file object: 0xffff94895e005df0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e006090 | file object: 0xffff94895e006110 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e006220 | file object: 0xffff94895e0062a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e0063b0 | file object: 0xffff94895e006430 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e006860 | file object: 0xffff94895e0068e0 | offsetby: 0x80
\Windows\System32\en-US\gpsvc.dll.mui
pool: 0xffff94895e0069f0 | file object: 0xffff94895e006a70 | offsetby: 0x80
\Windows\System32\en-US\audiodg.exe.mui
pool: 0xffff94895e006b80 | file object: 0xffff94895e006c00 | offsetby: 0x80
\Windows\System32\mobilenetworking.dll
pool: 0xffff94895e007030 | file object: 0xffff94895e0070b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e0071c0 | file object: 0xffff94895e007240 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e007350 | file object: 0xffff94895e0073d0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e0074e0 | file object: 0xffff94895e007560 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\BE8B021F9E811DFC8C8A28572A17C05A_2863B8DFBF96CBD14BC361AA15F6AAB6
pool: 0xffff94895e007670 | file object: 0xffff94895e0076f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e007800 | file object: 0xffff94895e007880 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e007990 | file object: 0xffff94895e007a10 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e007b20 | file object: 0xffff94895e007ba0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e007e40 | file object: 0xffff94895e007ec0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e008160 | file object: 0xffff94895e0081e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e0082f0 | file object: 0xffff94895e008370 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e008480 | file object: 0xffff94895e008500 | offsetby: 0x80
\Windows\System32\en-US\LogonController.dll.mui
pool: 0xffff94895e008610 | file object: 0xffff94895e008690 | offsetby: 0x80
\$Directory
pool: 0xffff94895e0087a0 | file object: 0xffff94895e008820 | offsetby: 0x80
\Windows\System32\BCP47Langs.dll
pool: 0xffff94895e008930 | file object: 0xffff94895e0089b0 | offsetby: 0x80
\Windows\System32\WMALFXGFXDSP.dll
pool: 0xffff94895e008ac0 | file object: 0xffff94895e008b40 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e008c50 | file object: 0xffff94895e008cd0 | offsetby: 0x80
\Windows\System32\Windows.UI.dll
pool: 0xffff94895e008de0 | file object: 0xffff94895e008e60 | offsetby: 0x80
\Windows\System32\Windows.UI.XamlHost.dll
pool: 0xffff94895e009100 | file object: 0xffff94895e009180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e009290 | file object: 0xffff94895e009310 | offsetby: 0x80
\Windows\System32\TextInputFramework.dll
pool: 0xffff94895e009420 | file object: 0xffff94895e0094a0 | offsetby: 0x80
\Windows\System32\InputHost.dll
pool: 0xffff94895e0095b0 | file object: 0xffff94895e009630 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e009740 | file object: 0xffff94895e0097c0 | offsetby: 0x80
\Windows\System32\Windows.UI.Logon.dll
pool: 0xffff94895e0098d0 | file object: 0xffff94895e009950 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e009a60 | file object: 0xffff94895e009ae0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Machine.srd
pool: 0xffff94895e009bf0 | file object: 0xffff94895e009c70 | offsetby: 0x80
\Windows\System32\wincorlib.dll
pool: 0xffff94895e009d80 | file object: 0xffff94895e009e00 | offsetby: 0x80
\Windows\System32\MrmCoreR.dll
pool: 0xffff94895e00a0a0 | file object: 0xffff94895e00a120 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Deployment.srd
pool: 0xffff94895e00a230 | file object: 0xffff94895e00a2b0 | offsetby: 0x80
\Windows\SystemResources\Windows.UI.Logon\Windows.UI.Logon.pri
pool: 0xffff94895e00a3c0 | file object: 0xffff94895e00a440 | offsetby: 0x80
\Windows\System32\LanguageOverlayUtil.dll
pool: 0xffff94895e00a550 | file object: 0xffff94895e00a5d0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e00a6e0 | file object: 0xffff94895e00a760 | offsetby: 0x80
\Windows\rescache\_merged\3162064442\2350453880.pri
pool: 0xffff94895e00a870 | file object: 0xffff94895e00a8f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e00aa00 | file object: 0xffff94895e00aa80 | offsetby: 0x80
\Windows\System32\security.dll
pool: 0xffff94895e00ab90 | file object: 0xffff94895e00ac10 | offsetby: 0x80
\$Directory
pool: 0xffff94895e00ad20 | file object: 0xffff94895e00ada0 | offsetby: 0x80
\Windows\System32\Syncreg.dll
pool: 0xffff94895e00b040 | file object: 0xffff94895e00b0c0 | offsetby: 0x80
\Windows\System32\sensrsvc.dll
pool: 0xffff94895e00b1d0 | file object: 0xffff94895e00b250 | offsetby: 0x80
\Windows\System32\ActionCenter.dll
pool: 0xffff94895e00b360 | file object: 0xffff94895e00b3e0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e00b4f0 | file object: 0xffff94895e00b570 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e00b680 | file object: 0xffff94895e00b700 | offsetby: 0x80
\Windows\SoftwareDistribution\DataStore\DataStore.edb
pool: 0xffff94895e00b810 | file object: 0xffff94895e00b890 | offsetby: 0x80
\$Directory
pool: 0xffff94895e00b9a0 | file object: 0xffff94895e00ba20 | offsetby: 0x80
\$Directory
pool: 0xffff94895e00bb30 | file object: 0xffff94895e00bbb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e00bcc0 | file object: 0xffff94895e00bd40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e00be50 | file object: 0xffff94895e00bed0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e00c170 | file object: 0xffff94895e00c1f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Deployment.srd-shm
pool: 0xffff94895e00c300 | file object: 0xffff94895e00c380 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\StanCore.dll
pool: 0xffff94895e00c490 | file object: 0xffff94895e00c510 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e00c620 | file object: 0xffff94895e00c6a0 | offsetby: 0x80
\Windows\System32\iertutil.dll
pool: 0xffff94895e00c7b0 | file object: 0xffff94895e00c830 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e00c940 | file object: 0xffff94895e00c9c0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e00cad0 | file object: 0xffff94895e00cb50 | offsetby: 0x80
\$Directory
pool: 0xffff94895e00cc60 | file object: 0xffff94895e00cce0 | offsetby: 0x80
\Windows\System32\Windows.UI.Immersive.dll
pool: 0xffff94895e00cdf0 | file object: 0xffff94895e00ce70 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-DeviceSetupManager%4Operational.evtx
pool: 0xffff94895e00d110 | file object: 0xffff94895e00d190 | offsetby: 0x80
\Windows\System32\Windows.Storage.Search.dll
pool: 0xffff94895e00d2a0 | file object: 0xffff94895e00d320 | offsetby: 0x80
\Windows\System32\Windows.UI.Xaml.dll
pool: 0xffff94895e00d430 | file object: 0xffff94895e00d4b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e00d5c0 | file object: 0xffff94895e00d640 | offsetby: 0x80
\$Directory
pool: 0xffff94895e00d750 | file object: 0xffff94895e00d7d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e00d8e0 | file object: 0xffff94895e00d960 | offsetby: 0x80
\$Directory
pool: 0xffff94895e00da70 | file object: 0xffff94895e00daf0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e00dc00 | file object: 0xffff94895e00dc80 | offsetby: 0x80
\Windows\SystemResources\Windows.UI.ShellCommonInetCore\Windows.UI.ShellCommonInetCore.pri
pool: 0xffff94895e00dd90 | file object: 0xffff94895e00de10 | offsetby: 0x80
\Windows\System32\dosvc.dll
pool: 0xffff94895e00e0b0 | file object: 0xffff94895e00e130 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e00e240 | file object: 0xffff94895e00e2c0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Logs\dosvc.20200604_062038_413.etl
pool: 0xffff94895e00e3d0 | file object: 0xffff94895e00e450 | offsetby: 0x80
\Windows\System32\en-US\ESENT.dll.mui
pool: 0xffff94895e00e560 | file object: 0xffff94895e00e5e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e00e6f0 | file object: 0xffff94895e00e770 | offsetby: 0x80
\Windows\System32\BCP47mrm.dll
pool: 0xffff94895e00e880 | file object: 0xffff94895e00e900 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e00ea10 | file object: 0xffff94895e00ea90 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e00eba0 | file object: 0xffff94895e00ec20 | offsetby: 0x80
\Windows\System32\urlmon.dll
pool: 0xffff94895e00ed30 | file object: 0xffff94895e00edb0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e00f050 | file object: 0xffff94895e00f0d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e00f1e0 | file object: 0xffff94895e00f260 | offsetby: 0x80
\Windows\System32\wshhyperv.dll
pool: 0xffff94895e00f370 | file object: 0xffff94895e00f3f0 | offsetby: 0x80
\Windows\System32\msidle.dll
pool: 0xffff94895e00f500 | file object: 0xffff94895e00f580 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e00f690 | file object: 0xffff94895e00f710 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e00f820 | file object: 0xffff94895e00f8a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e00f9b0 | file object: 0xffff94895e00fa30 | offsetby: 0x80
\Windows\System32\Windows.Globalization.dll
pool: 0xffff94895e00fb40 | file object: 0xffff94895e00fbc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e00fcd0 | file object: 0xffff94895e00fd50 | offsetby: 0x80
\Windows\System32\Windows.UI.Xaml.Phone.dll
pool: 0xffff94895e00fe60 | file object: 0xffff94895e00fee0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e010180 | file object: 0xffff94895e010200 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e010310 | file object: 0xffff94895e010390 | offsetby: 0x80
\Windows\SysWOW64\AppXDeploymentClient.dll
pool: 0xffff94895e0104a0 | file object: 0xffff94895e010520 | offsetby: 0x80
\Windows\SysWOW64\FirewallAPI.dll
pool: 0xffff94895e010630 | file object: 0xffff94895e0106b0 | offsetby: 0x80
\Windows\System32\Windows.UI.Xaml.Resources.19h1.dll
pool: 0xffff94895e0107c0 | file object: 0xffff94895e010840 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e010950 | file object: 0xffff94895e0109d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e010ae0 | file object: 0xffff94895e010b60 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e010c70 | file object: 0xffff94895e010cf0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e010e00 | file object: 0xffff94895e010e80 | offsetby: 0x80
\Windows\System32\DWrite.dll
pool: 0xffff94895e011120 | file object: 0xffff94895e0111a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e0112b0 | file object: 0xffff94895e011330 | offsetby: 0x80
\Windows\System32\Windows.UI.Xaml.Maps.dll
pool: 0xffff94895e011440 | file object: 0xffff94895e0114c0 | offsetby: 0x80
\Windows\System32\fhsvc.dll
pool: 0xffff94895e0115d0 | file object: 0xffff94895e011650 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895e011760 | file object: 0xffff94895e0117e0 | offsetby: 0x80
\Windows\System32\directmanipulation.dll
pool: 0xffff94895e0118f0 | file object: 0xffff94895e011970 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e011a80 | file object: 0xffff94895e011b00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e011c10 | file object: 0xffff94895e011c90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e011da0 | file object: 0xffff94895e011e20 | offsetby: 0x80
fÞÖꏴ뱴㩀ǖfp\Device\HarddiskVolume2\Windows\System32\winmm
pool: 0xffff94895e189080 | file object: 0xffff94895e1890e0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e1891f0 | file object: 0xffff94895e189250 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e189360 | file object: 0xffff94895e1893c0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e1894d0 | file object: 0xffff94895e189530 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e189640 | file object: 0xffff94895e1896a0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e189920 | file object: 0xffff94895e189980 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e189a90 | file object: 0xffff94895e189af0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e189c00 | file object: 0xffff94895e189c60 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e18a050 | file object: 0xffff94895e18a0b0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e18a1c0 | file object: 0xffff94895e18a220 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e18a330 | file object: 0xffff94895e18a390 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e18a610 | file object: 0xffff94895e18a670 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e18a8f0 | file object: 0xffff94895e18a950 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e18aa60 | file object: 0xffff94895e18aac0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e18b190 | file object: 0xffff94895e18b1f0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e18b5e0 | file object: 0xffff94895e18b640 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e18b750 | file object: 0xffff94895e18b7b0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e18b8c0 | file object: 0xffff94895e18b920 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e18eb10 | file object: 0xffff94895e18eb70 | offsetby: 0x60
\Windows\System32\drivers\http.sys
pool: 0xffff94895e18fae0 | file object: 0xffff94895e18fb40 | offsetby: 0x60
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Desktop-Required-Package041021~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff94895e191630 | file object: 0xffff94895e191690 | offsetby: 0x60
\Windows\System32\drivers\mpsdrv.sys
pool: 0xffff94895e192040 | file object: 0xffff94895e1920a0 | offsetby: 0x60
\Windows\System32\drivers\srvnet.sys
pool: 0xffff94895e193010 | file object: 0xffff94895e193070 | offsetby: 0x60
\Windows\System32\drivers\srv2.sys
pool: 0xffff94895e1945a0 | file object: 0xffff94895e194600 | offsetby: 0x60
\Windows\System32\LogFiles\WMI\RtBackup\EtwRTWFP-IPsec Diagnostics.etl
pool: 0xffff94895e195120 | file object: 0xffff94895e195180 | offsetby: 0x60
\Windows\System32\drivers\acpi.sys
pool: 0xffff94895e198370 | file object: 0xffff94895e1983d0 | offsetby: 0x60
\Windows\System32\drivers\ndis.sys
pool: 0xffff94895e1bc080 | file object: 0xffff94895e1bc100 | offsetby: 0x80
\Windows\Prefetch\RUNTIMEBROKER.EXE-06F66AE0.pf
pool: 0xffff94895e1bc210 | file object: 0xffff94895e1bc290 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1bc3a0 | file object: 0xffff94895e1bc420 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e1bc530 | file object: 0xffff94895e1bc5b0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Hyper-V-VmSwitch-Operational.evtx
pool: 0xffff94895e1bc6c0 | file object: 0xffff94895e1bc740 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1bc850 | file object: 0xffff94895e1bc8d0 | offsetby: 0x80
\Windows\SysWOW64\fwbase.dll
pool: 0xffff94895e1bc9e0 | file object: 0xffff94895e1bca60 | offsetby: 0x80
\Windows\System32\netmsg.dll
pool: 0xffff94895e1bcb70 | file object: 0xffff94895e1bcbf0 | offsetby: 0x80
\Windows\System32\spinf.dll
pool: 0xffff94895e1bcd00 | file object: 0xffff94895e1bcd80 | offsetby: 0x80
\$Directory
pool: 0xffff94895e1bd020 | file object: 0xffff94895e1bd0a0 | offsetby: 0x80
\Windows\System32\WSHTCPIP.DLL
pool: 0xffff94895e1bd1b0 | file object: 0xffff94895e1bd230 | offsetby: 0x80
\Windows\System32\netapi32.dll
pool: 0xffff94895e1bd340 | file object: 0xffff94895e1bd3c0 | offsetby: 0x80
\Windows\Fonts\segoeui.ttf
pool: 0xffff94895e1bd4d0 | file object: 0xffff94895e1bd550 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Machine.srd-shm
pool: 0xffff94895e1bd660 | file object: 0xffff94895e1bd6e0 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\AppData\Local\FontCache\FontCache-FontSet-S-1-5-18.datt
pool: 0xffff94895e1bd7f0 | file object: 0xffff94895e1bd870 | offsetby: 0x80
\Windows\System32\Windows.StateRepositoryCore.dll
pool: 0xffff94895e1bd980 | file object: 0xffff94895e1bda00 | offsetby: 0x80
\Windows\System32\rasadhlp.dll
pool: 0xffff94895e1bdb10 | file object: 0xffff94895e1bdb90 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\AppData\Local\FontCache\FontCache-S-1-5-18.datt
pool: 0xffff94895e1bdca0 | file object: 0xffff94895e1bdd20 | offsetby: 0x80
\Windows\System32\shsvcs.dll
pool: 0xffff94895e1bde30 | file object: 0xffff94895e1bdeb0 | offsetby: 0x80
\Windows\System32\en-US\dosvc.dll.mui
pool: 0xffff94895e1be150 | file object: 0xffff94895e1be1d0 | offsetby: 0x80
\Windows\System32\wermgr.exe
pool: 0xffff94895e1be2e0 | file object: 0xffff94895e1be360 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1be470 | file object: 0xffff94895e1be4f0 | offsetby: 0x80
\Windows\System32\en-US\netmsg.dll.mui
pool: 0xffff94895e1be600 | file object: 0xffff94895e1be680 | offsetby: 0x80
\Windows\System32\wship6.dll
pool: 0xffff94895e1be790 | file object: 0xffff94895e1be810 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1be920 | file object: 0xffff94895e1be9a0 | offsetby: 0x80
\Windows\SysWOW64\StateRepository.Core.dll
pool: 0xffff94895e1beab0 | file object: 0xffff94895e1beb30 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Machine.srd-wal
pool: 0xffff94895e1bec40 | file object: 0xffff94895e1becc0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e1bedd0 | file object: 0xffff94895e1bee50 | offsetby: 0x80
\$Directory
pool: 0xffff94895e1bf0f0 | file object: 0xffff94895e1bf170 | offsetby: 0x80
\Windows\Fonts\segoeuisl.ttf
pool: 0xffff94895e1bf280 | file object: 0xffff94895e1bf300 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e1bf410 | file object: 0xffff94895e1bf490 | offsetby: 0x80
\Windows\System32\ProximityCommon.dll
pool: 0xffff94895e1bf5a0 | file object: 0xffff94895e1bf620 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1bf730 | file object: 0xffff94895e1bf7b0 | offsetby: 0x80
\Windows\System32\fveapi.dll
pool: 0xffff94895e1bf8c0 | file object: 0xffff94895e1bf940 | offsetby: 0x80
\Windows\System32\ProximityService.dll
pool: 0xffff94895e1bfa50 | file object: 0xffff94895e1bfad0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsUpdateClient%4Operational.evtx
pool: 0xffff94895e1bfbe0 | file object: 0xffff94895e1bfc60 | offsetby: 0x80
\Windows\System32\en-US\spoolsv.exe.mui
pool: 0xffff94895e1bfd70 | file object: 0xffff94895e1bfdf0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c0090 | file object: 0xffff94895e1c0110 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c0220 | file object: 0xffff94895e1c02a0 | offsetby: 0x80
\Windows\System32\wuaueng.dll
pool: 0xffff94895e1c03b0 | file object: 0xffff94895e1c0430 | offsetby: 0x80
\Windows\System32\wcmcsp.dll
pool: 0xffff94895e1c0540 | file object: 0xffff94895e1c05c0 | offsetby: 0x80
\Windows\System32\cmintegrator.dll
pool: 0xffff94895e1c06d0 | file object: 0xffff94895e1c0750 | offsetby: 0x80
\$Directory
pool: 0xffff94895e1c0860 | file object: 0xffff94895e1c08e0 | offsetby: 0x80
\Windows\System32\spoolsv.exe
pool: 0xffff94895e1c0b80 | file object: 0xffff94895e1c0c00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e1c0d10 | file object: 0xffff94895e1c0d90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c1030 | file object: 0xffff94895e1c10b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e1c11c0 | file object: 0xffff94895e1c1240 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c1350 | file object: 0xffff94895e1c13d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c14e0 | file object: 0xffff94895e1c1560 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c1670 | file object: 0xffff94895e1c16f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c1800 | file object: 0xffff94895e1c1880 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c1990 | file object: 0xffff94895e1c1a10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c1b20 | file object: 0xffff94895e1c1ba0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c1cb0 | file object: 0xffff94895e1c1d30 | offsetby: 0x80
\Windows\System32\ProximityCommonPal.dll
pool: 0xffff94895e1c1e40 | file object: 0xffff94895e1c1ec0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c2160 | file object: 0xffff94895e1c21e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\NetFX3~.mum
pool: 0xffff94895e1c22f0 | file object: 0xffff94895e1c2370 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c2480 | file object: 0xffff94895e1c2500 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c2610 | file object: 0xffff94895e1c2690 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c27a0 | file object: 0xffff94895e1c2820 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c2930 | file object: 0xffff94895e1c29b0 | offsetby: 0x80
\Windows\SoftwareDistribution\DataStore\Logs\edbtmp.
pool: 0xffff94895e1c2ac0 | file object: 0xffff94895e1c2b40 | offsetby: 0x80
\$Directory
pool: 0xffff94895e1c2c50 | file object: 0xffff94895e1c2cd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c2de0 | file object: 0xffff94895e1c2e60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c3100 | file object: 0xffff94895e1c3180 | offsetby: 0x80
\Windows\System32\esent.dll
pool: 0xffff94895e1c3290 | file object: 0xffff94895e1c3310 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e1c3420 | file object: 0xffff94895e1c34a0 | offsetby: 0x80
\Windows\SoftwareDistribution\DataStore\Logs\edb.chk
pool: 0xffff94895e1c35b0 | file object: 0xffff94895e1c3630 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c3740 | file object: 0xffff94895e1c37c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c38d0 | file object: 0xffff94895e1c3950 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c3a60 | file object: 0xffff94895e1c3ae0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c3bf0 | file object: 0xffff94895e1c3c70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c3d80 | file object: 0xffff94895e1c3e00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c40a0 | file object: 0xffff94895e1c4120 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c4230 | file object: 0xffff94895e1c42b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c43c0 | file object: 0xffff94895e1c4440 | offsetby: 0x80
\Windows\System32\ProximityServicePal.dll
pool: 0xffff94895e1c4550 | file object: 0xffff94895e1c45d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c46e0 | file object: 0xffff94895e1c4760 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c4870 | file object: 0xffff94895e1c48f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c4a00 | file object: 0xffff94895e1c4a80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c4b90 | file object: 0xffff94895e1c4c10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c4d20 | file object: 0xffff94895e1c4da0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c5040 | file object: 0xffff94895e1c50c0 | offsetby: 0x80
\Windows\System32\wups.dll
pool: 0xffff94895e1c51d0 | file object: 0xffff94895e1c5250 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c5360 | file object: 0xffff94895e1c53e0 | offsetby: 0x80
\Windows\System32\wups2.dll
pool: 0xffff94895e1c54f0 | file object: 0xffff94895e1c5570 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c5680 | file object: 0xffff94895e1c5700 | offsetby: 0x80
\Windows\System32\adsldp.dll
pool: 0xffff94895e1c5810 | file object: 0xffff94895e1c5890 | offsetby: 0x80
\Windows\SoftwareDistribution\DataStore\DataStore.jfm
pool: 0xffff94895e1c59a0 | file object: 0xffff94895e1c5a20 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\State\dosvcState.dat
pool: 0xffff94895e1c5b30 | file object: 0xffff94895e1c5bb0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e1c5cc0 | file object: 0xffff94895e1c5d40 | offsetby: 0x80
\$Directory
pool: 0xffff94895e1c6170 | file object: 0xffff94895e1c61f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c6300 | file object: 0xffff94895e1c6380 | offsetby: 0x80
\$Directory
pool: 0xffff94895e1c6490 | file object: 0xffff94895e1c6510 | offsetby: 0x80
\$Directory
pool: 0xffff94895e1c6620 | file object: 0xffff94895e1c66a0 | offsetby: 0x80
\$ConvertToNonresident
pool: 0xffff94895e1c67b0 | file object: 0xffff94895e1c6830 | offsetby: 0x80
\Windows\System32\wbemcomn.dll
pool: 0xffff94895e1c6940 | file object: 0xffff94895e1c69c0 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895e1c6ad0 | file object: 0xffff94895e1c6b50 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e1c6c60 | file object: 0xffff94895e1c6ce0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c6df0 | file object: 0xffff94895e1c6e70 | offsetby: 0x80
\Windows\System32\wbem\MOF
pool: 0xffff94895e1c7110 | file object: 0xffff94895e1c7190 | offsetby: 0x80
\$Directory
pool: 0xffff94895e1c72a0 | file object: 0xffff94895e1c7320 | offsetby: 0x80
\$Directory
pool: 0xffff94895e1c7430 | file object: 0xffff94895e1c74b0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\State\dosvcState.dat.LOG1
pool: 0xffff94895e1c75c0 | file object: 0xffff94895e1c7640 | offsetby: 0x80
\$Directory
pool: 0xffff94895e1c7750 | file object: 0xffff94895e1c77d0 | offsetby: 0x80
\Windows\System32\wbem\WMIsvc.dll
pool: 0xffff94895e1c78e0 | file object: 0xffff94895e1c7960 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c7a70 | file object: 0xffff94895e1c7af0 | offsetby: 0x80
\Windows\System32\wbem\wbemprox.dll
pool: 0xffff94895e1c7c00 | file object: 0xffff94895e1c7c80 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e1c7d90 | file object: 0xffff94895e1c7e10 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\State\dosvcState.dat.LOG2
pool: 0xffff94895e1c80b0 | file object: 0xffff94895e1c8130 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c8240 | file object: 0xffff94895e1c82c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c83d0 | file object: 0xffff94895e1c8450 | offsetby: 0x80
\$Directory
pool: 0xffff94895e1c8560 | file object: 0xffff94895e1c85e0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e1c86f0 | file object: 0xffff94895e1c8770 | offsetby: 0x80
\$Directory
pool: 0xffff94895e1c8880 | file object: 0xffff94895e1c8900 | offsetby: 0x80
\Windows\System32\en-US\vsstrace.dll.mui
pool: 0xffff94895e1c8a10 | file object: 0xffff94895e1c8a90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c8ba0 | file object: 0xffff94895e1c8c20 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e1c8d30 | file object: 0xffff94895e1c8db0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Defender%4WHC.evtx
pool: 0xffff94895e1c9050 | file object: 0xffff94895e1c90d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c91e0 | file object: 0xffff94895e1c9260 | offsetby: 0x80
\Windows\System32\vsstrace.dll
pool: 0xffff94895e1c9370 | file object: 0xffff94895e1c93f0 | offsetby: 0x80
\Windows\System32\NetSetupApi.dll
pool: 0xffff94895e1c9500 | file object: 0xffff94895e1c9580 | offsetby: 0x80
\Windows\System32\FirewallAPI.dll
pool: 0xffff94895e1c9690 | file object: 0xffff94895e1c9710 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c9820 | file object: 0xffff94895e1c98a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c99b0 | file object: 0xffff94895e1c9a30 | offsetby: 0x80
\Windows\System32\MPSSVC.dll
pool: 0xffff94895e1c9b40 | file object: 0xffff94895e1c9bc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1c9cd0 | file object: 0xffff94895e1c9d50 | offsetby: 0x80
\Windows\System32\httpprxm.dll
pool: 0xffff94895e1c9e60 | file object: 0xffff94895e1c9ee0 | offsetby: 0x80
\Windows\System32\fwpolicyiomgr.dll
pool: 0xffff94895e1ca180 | file object: 0xffff94895e1ca200 | offsetby: 0x80
\Windows\System32\iphlpsvc.dll
pool: 0xffff94895e1ca310 | file object: 0xffff94895e1ca390 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1ca4a0 | file object: 0xffff94895e1ca520 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1ca630 | file object: 0xffff94895e1ca6b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1ca7c0 | file object: 0xffff94895e1ca840 | offsetby: 0x80
\Windows\System32\LocationApi.dll
pool: 0xffff94895e1ca950 | file object: 0xffff94895e1ca9d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1caae0 | file object: 0xffff94895e1cab60 | offsetby: 0x80
\Windows\System32\adhsvc.dll
pool: 0xffff94895e1cac70 | file object: 0xffff94895e1cacf0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e1cae00 | file object: 0xffff94895e1cae80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e1cb120 | file object: 0xffff94895e1cb1a0 | offsetby: 0x80
\$Extend\$ObjId:$O:$INDEX_ALLOCATION
pool: 0xffff94895e1cb2b0 | file object: 0xffff94895e1cb330 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e1cb440 | file object: 0xffff94895e1cb4c0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e1cb5d0 | file object: 0xffff94895e1cb650 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e1cb760 | file object: 0xffff94895e1cb7e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1cb8f0 | file object: 0xffff94895e1cb970 | offsetby: 0x80
\ProgramData\Microsoft\Windows\wfp\wfpdiag.etl
pool: 0xffff94895e1cbc10 | file object: 0xffff94895e1cbc90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e1cbda0 | file object: 0xffff94895e1cbe20 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e3230d0 | file object: 0xffff94895e323150 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AppData\User\Default\Indexed DB\IndexedDB.jfm
pool: 0xffff94895e323260 | file object: 0xffff94895e3232e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e3233f0 | file object: 0xffff94895e323470 | offsetby: 0x80
\Windows\System32\en-US\iphlpsvc.dll.mui
pool: 0xffff94895e323580 | file object: 0xffff94895e323600 | offsetby: 0x80
\Windows\System32\CatRoot
pool: 0xffff94895e323710 | file object: 0xffff94895e323790 | offsetby: 0x80
\$Directory
pool: 0xffff94895e3238a0 | file object: 0xffff94895e323920 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e323a30 | file object: 0xffff94895e323ab0 | offsetby: 0x80
\Windows\System32\wiatrace.dll
pool: 0xffff94895e323bc0 | file object: 0xffff94895e323c40 | offsetby: 0x80
\$Directory
pool: 0xffff94895e323d50 | file object: 0xffff94895e323dd0 | offsetby: 0x80
\Windows\System32\cryptcatsvc.dll
pool: 0xffff94895e324070 | file object: 0xffff94895e3240f0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e324200 | file object: 0xffff94895e324280 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e324390 | file object: 0xffff94895e324410 | offsetby: 0x80
\Windows\System32\debugregsvc.dll
pool: 0xffff94895e324520 | file object: 0xffff94895e3245a0 | offsetby: 0x80
\Windows\System32\mfasfsrcsnk.dll
pool: 0xffff94895e3246b0 | file object: 0xffff94895e324730 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e324840 | file object: 0xffff94895e3248c0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpEng.exe
pool: 0xffff94895e3249d0 | file object: 0xffff94895e324a50 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e324b60 | file object: 0xffff94895e324be0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e325010 | file object: 0xffff94895e325090 | offsetby: 0x80
\Windows\System32\cryptsvc.dll
pool: 0xffff94895e3251a0 | file object: 0xffff94895e325220 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e325330 | file object: 0xffff94895e3253b0 | offsetby: 0x80
\Windows\System32\crypttpmeksvc.dll
pool: 0xffff94895e325650 | file object: 0xffff94895e3256d0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e3257e0 | file object: 0xffff94895e325860 | offsetby: 0x80
\Program Files\Microsoft SQL Server\90\Shared\sqlwriter.exe
pool: 0xffff94895e325970 | file object: 0xffff94895e3259f0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e325b00 | file object: 0xffff94895e325b80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e325c90 | file object: 0xffff94895e325d10 | offsetby: 0x80
\$Directory
pool: 0xffff94895e325e20 | file object: 0xffff94895e325ea0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e326140 | file object: 0xffff94895e3261c0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e3262d0 | file object: 0xffff94895e326350 | offsetby: 0x80
\Windows\System32\wbem\wbemcore.dll
pool: 0xffff94895e326460 | file object: 0xffff94895e3264e0 | offsetby: 0x80
\Windows\System32\stdole2.tlb
pool: 0xffff94895e3265f0 | file object: 0xffff94895e326670 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e326780 | file object: 0xffff94895e326800 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e326910 | file object: 0xffff94895e326990 | offsetby: 0x80
\Windows\System32\wbem\fastprox.dll
pool: 0xffff94895e326aa0 | file object: 0xffff94895e326b20 | offsetby: 0x80
\Windows\System32\wbem\wbemsvc.dll
pool: 0xffff94895e326c30 | file object: 0xffff94895e326cb0 | offsetby: 0x80
\Windows\System32\ExecModelClient.dll
pool: 0xffff94895e326dc0 | file object: 0xffff94895e326e40 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\native-keymap\build\Release\keymapping.node
pool: 0xffff94895e3270e0 | file object: 0xffff94895e327160 | offsetby: 0x80
\Windows\System32\es.dll
pool: 0xffff94895e327270 | file object: 0xffff94895e3272f0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e327400 | file object: 0xffff94895e327480 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e327590 | file object: 0xffff94895e327610 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e327720 | file object: 0xffff94895e3277a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e3278b0 | file object: 0xffff94895e327930 | offsetby: 0x80
\Windows\System32\wlms\wlms.exe
pool: 0xffff94895e327a40 | file object: 0xffff94895e327ac0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e327bd0 | file object: 0xffff94895e327c50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e327d60 | file object: 0xffff94895e327de0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e328080 | file object: 0xffff94895e328100 | offsetby: 0x80
\Windows\System32\httpprxp.dll
pool: 0xffff94895e328210 | file object: 0xffff94895e328290 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MpClient.dll
pool: 0xffff94895e3283a0 | file object: 0xffff94895e328420 | offsetby: 0x80
\Windows\System32\wbem\esscli.dll
pool: 0xffff94895e328530 | file object: 0xffff94895e3285b0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e3286c0 | file object: 0xffff94895e328740 | offsetby: 0x80
\Windows\System32\NcaSvc.dll
pool: 0xffff94895e328850 | file object: 0xffff94895e3288d0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e3289e0 | file object: 0xffff94895e328a60 | offsetby: 0x80
\Windows\System32\msvcr120.dll
pool: 0xffff94895e328b70 | file object: 0xffff94895e328bf0 | offsetby: 0x80
\Windows\System32\oleaut32.dll
pool: 0xffff94895e328d00 | file object: 0xffff94895e328d80 | offsetby: 0x80
\Windows\System32\wbem\WinMgmtR.dll
pool: 0xffff94895e329020 | file object: 0xffff94895e3290a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.CLR.x86\PrivateHost\Microsoft.VisualStudio.Threading.dll
pool: 0xffff94895e3291b0 | file object: 0xffff94895e329230 | offsetby: 0x80
\$Directory
pool: 0xffff94895e329340 | file object: 0xffff94895e3293c0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MpSvc.dll
pool: 0xffff94895e3294d0 | file object: 0xffff94895e329550 | offsetby: 0x80
\Windows\System32\wbem\Repository\MAPPING1.MAP
pool: 0xffff94895e329660 | file object: 0xffff94895e3296e0 | offsetby: 0x80
\Windows\System32\wbem\WmiPrvSD.dll
pool: 0xffff94895e3297f0 | file object: 0xffff94895e329870 | offsetby: 0x80
\Windows\System32\ncobjapi.dll
pool: 0xffff94895e329980 | file object: 0xffff94895e329a00 | offsetby: 0x80
\Windows\System32\weretw.dll
pool: 0xffff94895e329b10 | file object: 0xffff94895e329b90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e329ca0 | file object: 0xffff94895e329d20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e329e30 | file object: 0xffff94895e329eb0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e32a150 | file object: 0xffff94895e32a1d0 | offsetby: 0x80
\Windows\System32\wbem\Repository\OBJECTS.DATA
pool: 0xffff94895e32a2e0 | file object: 0xffff94895e32a360 | offsetby: 0x80
\Windows\System32\winsqlite3.dll
pool: 0xffff94895e32a470 | file object: 0xffff94895e32a4f0 | offsetby: 0x80
\Windows\System32\windowsperformancerecordercontrol.dll
pool: 0xffff94895e32a600 | file object: 0xffff94895e32a680 | offsetby: 0x80
\Windows\System32\wbem\Repository\MAPPING3.MAP
pool: 0xffff94895e32a790 | file object: 0xffff94895e32a810 | offsetby: 0x80
\Windows\System32\diagtrack.dll
pool: 0xffff94895e32a920 | file object: 0xffff94895e32a9a0 | offsetby: 0x80
\Windows\System32\wbem\Repository\MAPPING2.MAP
pool: 0xffff94895e32aab0 | file object: 0xffff94895e32ab30 | offsetby: 0x80
\Windows\System32\amsi.dll
pool: 0xffff94895e32ac40 | file object: 0xffff94895e32acc0 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\osver.txt
pool: 0xffff94895e32add0 | file object: 0xffff94895e32ae50 | offsetby: 0x80
\Program Files\Microsoft SQL Server\90\Shared\sqlwvss.dll
pool: 0xffff94895e32b0f0 | file object: 0xffff94895e32b170 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e32b280 | file object: 0xffff94895e32b300 | offsetby: 0x80
\Windows\System32\wbem\wbemess.dll
pool: 0xffff94895e32b410 | file object: 0xffff94895e32b490 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e32b5a0 | file object: 0xffff94895e32b620 | offsetby: 0x80
\Windows\SysWOW64\msvcp110_win.dll
pool: 0xffff94895e32b730 | file object: 0xffff94895e32b7b0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpLics.dll
pool: 0xffff94895e32b8c0 | file object: 0xffff94895e32b940 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MpOAV.dll
pool: 0xffff94895e32ba50 | file object: 0xffff94895e32bad0 | offsetby: 0x80
\Windows\System32\wbem\repdrvfs.dll
pool: 0xffff94895e32bbe0 | file object: 0xffff94895e32bc60 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Kernel-StoreMgr%4Operational.evtx
pool: 0xffff94895e32bd70 | file object: 0xffff94895e32bdf0 | offsetby: 0x80
\Windows\System32\wbem\wmiutils.dll
pool: 0xffff94895e32c090 | file object: 0xffff94895e32c110 | offsetby: 0x80
\Windows\System32\wbem\Repository\INDEX.BTR
pool: 0xffff94895e32c220 | file object: 0xffff94895e32c2a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e32c3b0 | file object: 0xffff94895e32c430 | offsetby: 0x80
\Windows\System32\msvcp120.dll
pool: 0xffff94895e32c540 | file object: 0xffff94895e32c5c0 | offsetby: 0x80
\Windows\System32\en-US\vsstrace.dll.mui
pool: 0xffff94895e32c6d0 | file object: 0xffff94895e32c750 | offsetby: 0x80
\Windows\System32\trkwks.dll
pool: 0xffff94895e32c9f0 | file object: 0xffff94895e32ca70 | offsetby: 0x80
\Windows\System32\srvsvc.dll
pool: 0xffff94895e32cb80 | file object: 0xffff94895e32cc00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e32cd10 | file object: 0xffff94895e32cd90 | offsetby: 0x80
\$Directory
pool: 0xffff94895e32d030 | file object: 0xffff94895e32d0b0 | offsetby: 0x80
\Windows\System32\wbem\WmiPrvSE.exe
pool: 0xffff94895e32d1c0 | file object: 0xffff94895e32d240 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{4A0B4BE9-EB63-4EFF-8D66-DDFA1FE53AA7}.catalogItem
pool: 0xffff94895e32d350 | file object: 0xffff94895e32d3d0 | offsetby: 0x80
\Windows\System32\LocationFrameworkInternalPS.dll
pool: 0xffff94895e32d4e0 | file object: 0xffff94895e32d560 | offsetby: 0x80
\Windows\System32\webio.dll
pool: 0xffff94895e32d670 | file object: 0xffff94895e32d6f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e32d800 | file object: 0xffff94895e32d880 | offsetby: 0x80
\$Extend\$ObjId
pool: 0xffff94895e32d990 | file object: 0xffff94895e32da10 | offsetby: 0x80
\Windows\System32\adhapi.dll
pool: 0xffff94895e32db20 | file object: 0xffff94895e32dba0 | offsetby: 0x80
\Windows\System32\wbem\WmiPrvSE.exe
pool: 0xffff94895e32dcb0 | file object: 0xffff94895e32dd30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e32de40 | file object: 0xffff94895e32dec0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{CE8B62DA-AF46-4920-8566-B5699428BAB0}.catalogItem
pool: 0xffff94895e32e160 | file object: 0xffff94895e32e1e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\WebClient\Diagnostics\ChromeDebugAdapter\ChromeDebugAdapterHost.pkgdef
pool: 0xffff94895e32e2f0 | file object: 0xffff94895e32e370 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e32e480 | file object: 0xffff94895e32e500 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e32e610 | file object: 0xffff94895e32e690 | offsetby: 0x80
\Windows\System32\rtutils.dll
pool: 0xffff94895e32e7a0 | file object: 0xffff94895e32e820 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{F7447124-3E96-41D0-AC70-BD7BAB622A18}.catalogItem
pool: 0xffff94895e32e930 | file object: 0xffff94895e32e9b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e32eac0 | file object: 0xffff94895e32eb40 | offsetby: 0x80
\Windows\System32\sstpsvc.dll
pool: 0xffff94895e32ec50 | file object: 0xffff94895e32ecd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e32ede0 | file object: 0xffff94895e32ee60 | offsetby: 0x80
\Windows\System32\httpapi.dll
pool: 0xffff94895e32f100 | file object: 0xffff94895e32f180 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e32f290 | file object: 0xffff94895e32f310 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e32f420 | file object: 0xffff94895e32f4a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e32f5b0 | file object: 0xffff94895e32f630 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e32f740 | file object: 0xffff94895e32f7c0 | offsetby: 0x80
\Windows\System32\dps.dll
pool: 0xffff94895e32f8d0 | file object: 0xffff94895e32f950 | offsetby: 0x80
\Program Files\Windows Defender\en-US\EppManifest.dll.mui
pool: 0xffff94895e32fa60 | file object: 0xffff94895e32fae0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Support\MPLog-20200413-120121.log
pool: 0xffff94895e32fbf0 | file object: 0xffff94895e32fc70 | offsetby: 0x80
\Windows\System32\sscoreext.dll
pool: 0xffff94895e32fd80 | file object: 0xffff94895e32fe00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcpackages\VCProject.dll
pool: 0xffff94895e3300a0 | file object: 0xffff94895e330120 | offsetby: 0x80
\System Volume Information\tracking.log
pool: 0xffff94895e330230 | file object: 0xffff94895e3302b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e3303c0 | file object: 0xffff94895e330440 | offsetby: 0x80
\Windows\System32\en-US\wldap32.dll.mui
pool: 0xffff94895e330550 | file object: 0xffff94895e3305d0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e3306e0 | file object: 0xffff94895e330760 | offsetby: 0x80
\Program Files\Windows Defender\EppManifest.dll
pool: 0xffff94895e330870 | file object: 0xffff94895e3308f0 | offsetby: 0x80
\Windows\SysWOW64\Windows.UI.Xaml.dll
pool: 0xffff94895e330a00 | file object: 0xffff94895e330a80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e330b90 | file object: 0xffff94895e330c10 | offsetby: 0x80
\Windows\System32\wpnservice.dll
pool: 0xffff94895e330d20 | file object: 0xffff94895e330da0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e331040 | file object: 0xffff94895e3310c0 | offsetby: 0x80
\Windows\System32\wmidcom.dll
pool: 0xffff94895e3311d0 | file object: 0xffff94895e331250 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e331360 | file object: 0xffff94895e3313e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e3314f0 | file object: 0xffff94895e331570 | offsetby: 0x80
\$Directory
pool: 0xffff94895e331680 | file object: 0xffff94895e331700 | offsetby: 0x80
\$Directory
pool: 0xffff94895e331810 | file object: 0xffff94895e331890 | offsetby: 0x80
\Windows\System32\mi.dll
pool: 0xffff94895e3319a0 | file object: 0xffff94895e331a20 | offsetby: 0x80
\Windows\System32\cryptxml.dll
pool: 0xffff94895e331b30 | file object: 0xffff94895e331bb0 | offsetby: 0x80
\Windows\System32\miutils.dll
pool: 0xffff94895e331cc0 | file object: 0xffff94895e331d40 | offsetby: 0x80
\Windows\System32\resutils.dll
pool: 0xffff94895e331e50 | file object: 0xffff94895e331ed0 | offsetby: 0x80
\Windows\System32\wdi.dll
pool: 0xffff94895e332170 | file object: 0xffff94895e3321f0 | offsetby: 0x80
\Windows\System32\clusapi.dll
pool: 0xffff94895e332300 | file object: 0xffff94895e332380 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e332490 | file object: 0xffff94895e332510 | offsetby: 0x80
\$Directory
pool: 0xffff94895e332620 | file object: 0xffff94895e3326a0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Support\MPDetection-20200602-000558.log
pool: 0xffff94895e3327b0 | file object: 0xffff94895e332830 | offsetby: 0x80
\Windows\System32\sppsvc.exe
pool: 0xffff94895e332940 | file object: 0xffff94895e3329c0 | offsetby: 0x80
\Windows\System32\sscore.dll
pool: 0xffff94895e332ad0 | file object: 0xffff94895e332b50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e332c60 | file object: 0xffff94895e332ce0 | offsetby: 0x80
\Windows\System32\wdscore.dll
pool: 0xffff94895e332df0 | file object: 0xffff94895e332e70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e333110 | file object: 0xffff94895e333190 | offsetby: 0x80
\Windows\System32\Windows.Internal.ShellCommon.Broker.dll
pool: 0xffff94895e3332a0 | file object: 0xffff94895e333320 | offsetby: 0x80
\Windows\Panther\UnattendGC\setupact.log
pool: 0xffff94895e333430 | file object: 0xffff94895e3334b0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e3335c0 | file object: 0xffff94895e333640 | offsetby: 0x80
\Windows\Panther\UnattendGC\diagerr.xml
pool: 0xffff94895e333750 | file object: 0xffff94895e3337d0 | offsetby: 0x80
\Windows\System32\en-US\vsstrace.dll.mui
pool: 0xffff94895e3338e0 | file object: 0xffff94895e333960 | offsetby: 0x80
\Windows\System32\dbghelp.dll
pool: 0xffff94895e333a70 | file object: 0xffff94895e333af0 | offsetby: 0x80
\Windows\Panther\UnattendGC\diagwrn.xml
pool: 0xffff94895e333c00 | file object: 0xffff94895e333c80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e333d90 | file object: 0xffff94895e333e10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e3340b0 | file object: 0xffff94895e334130 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-94f8ddd9818e21dac7fcdf306889d39a.code
pool: 0xffff94895e334240 | file object: 0xffff94895e3342c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e3343d0 | file object: 0xffff94895e334450 | offsetby: 0x80
\Windows\System32\dbgcore.dll
pool: 0xffff94895e334560 | file object: 0xffff94895e3345e0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e3346f0 | file object: 0xffff94895e334770 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\DownloadedSettings\utc.app.json
pool: 0xffff94895e334880 | file object: 0xffff94895e334900 | offsetby: 0x80
\$Directory
pool: 0xffff94895e334a10 | file object: 0xffff94895e334a90 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\bat\package.json
pool: 0xffff94895e334ba0 | file object: 0xffff94895e334c20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e334d30 | file object: 0xffff94895e334db0 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\DownloadedSettings\telemetry.P-ARIA-194626ba46434f9ab441dd7ebda2aa64-5f64bebb-ac28-4cc7-bd52-570c8fe077c9-7717.json
pool: 0xffff94895e335050 | file object: 0xffff94895e3350d0 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\DownloadedSettings\TELEMETRY.ASM-WINDOWSSQ.json
pool: 0xffff94895e3351e0 | file object: 0xffff94895e335260 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\DownloadedSettings\telemetry.ASM-WindowsDefault.json
pool: 0xffff94895e335370 | file object: 0xffff94895e3353f0 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\DownloadedSettings\telemetry.P-ARIA-5476d0c4a7a347909c4b8a13078d4390-f8bdcecf-243f-40f8-b7c3-b9c44a57dead-7230.json
pool: 0xffff94895e335500 | file object: 0xffff94895e335580 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e335690 | file object: 0xffff94895e335710 | offsetby: 0x80
\Windows\System32\ReAgent.dll
pool: 0xffff94895e335820 | file object: 0xffff94895e3358a0 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\DownloadedSettings\telemetry.P-ARIA-d5a8f02229be41efb047bd8f883ba799-59258264-451c-4459-8c09-75d7d721219a-7112.json
pool: 0xffff94895e3359b0 | file object: 0xffff94895e335a30 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e335b40 | file object: 0xffff94895e335bc0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e335cd0 | file object: 0xffff94895e335d50 | offsetby: 0x80
\Windows\System32\gdi32full.dll
pool: 0xffff94895e335e60 | file object: 0xffff94895e335ee0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e336180 | file object: 0xffff94895e336200 | offsetby: 0x80
\Windows\System32\msvcrt.dll
pool: 0xffff94895e336310 | file object: 0xffff94895e336390 | offsetby: 0x80
\Windows\System32\rpcrt4.dll
pool: 0xffff94895e3364a0 | file object: 0xffff94895e336520 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e336630 | file object: 0xffff94895e3366b0 | offsetby: 0x80
\System Volume Information\tracking.log
pool: 0xffff94895e3367c0 | file object: 0xffff94895e336840 | offsetby: 0x80
\Windows\System32\gdi32.dll
pool: 0xffff94895e336950 | file object: 0xffff94895e3369d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e336ae0 | file object: 0xffff94895e336b60 | offsetby: 0x80
\Windows\System32\msasn1.dll
pool: 0xffff94895e336c70 | file object: 0xffff94895e336cf0 | offsetby: 0x80
\Windows\System32\kernel.appcore.dll
pool: 0xffff94895e336e00 | file object: 0xffff94895e336e80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e337120 | file object: 0xffff94895e3371a0 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\DownloadedSettings\utc.allow.json
pool: 0xffff94895e3372b0 | file object: 0xffff94895e337330 | offsetby: 0x80
\Windows\System32\KernelBase.dll
pool: 0xffff94895e337440 | file object: 0xffff94895e3374c0 | offsetby: 0x80
\Windows\System32\en-US\sppsvc.exe.mui
pool: 0xffff94895e3375d0 | file object: 0xffff94895e337650 | offsetby: 0x80
\Windows\System32\crypt32.dll
pool: 0xffff94895e337760 | file object: 0xffff94895e3377e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e3378f0 | file object: 0xffff94895e337970 | offsetby: 0x80
\Windows\System32\sechost.dll
pool: 0xffff94895e337a80 | file object: 0xffff94895e337b00 | offsetby: 0x80
\Windows\System32\ucrtbase.dll
pool: 0xffff94895e337c10 | file object: 0xffff94895e337c90 | offsetby: 0x80
\Windows\DiagTrack\utc.allow.diffbase
pool: 0xffff94895e337da0 | file object: 0xffff94895e337e20 | offsetby: 0x80
\Windows\SysWOW64\edgehtml.dll
pool: 0xffff94895e3380c0 | file object: 0xffff94895e338140 | offsetby: 0x80
\Windows\System32\kernel32.dll
pool: 0xffff94895e338250 | file object: 0xffff94895e3382d0 | offsetby: 0x80
\Windows\System32\advapi32.dll
pool: 0xffff94895e3383e0 | file object: 0xffff94895e338460 | offsetby: 0x80
\Windows\System32\xmllite.dll
pool: 0xffff94895e338570 | file object: 0xffff94895e3385f0 | offsetby: 0x80
\Windows\System32\webservices.dll
pool: 0xffff94895e338700 | file object: 0xffff94895e338780 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e338890 | file object: 0xffff94895e338910 | offsetby: 0x80
\Windows\System32\user32.dll
pool: 0xffff94895e338a20 | file object: 0xffff94895e338aa0 | offsetby: 0x80
\Windows\System32\msvcp_win.dll
pool: 0xffff94895e338bb0 | file object: 0xffff94895e338c30 | offsetby: 0x80
\Windows\System32\win32u.dll
pool: 0xffff94895e338d40 | file object: 0xffff94895e338dc0 | offsetby: 0x80
\Windows\System32\combase.dll
pool: 0xffff94895e339060 | file object: 0xffff94895e3390e0 | offsetby: 0x80
\Windows\System32\cdp.dll
pool: 0xffff94895e3391f0 | file object: 0xffff94895e339270 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e339380 | file object: 0xffff94895e339400 | offsetby: 0x80
\Windows\System32\HNetCfgClient.dll
pool: 0xffff94895e339510 | file object: 0xffff94895e339590 | offsetby: 0x80
\Windows\System32\en-US\hnetcfgclient.dll.mui
pool: 0xffff94895e3396a0 | file object: 0xffff94895e339720 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e3399c0 | file object: 0xffff94895e339a40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e339b50 | file object: 0xffff94895e339bd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e339ce0 | file object: 0xffff94895e339d60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e339e70 | file object: 0xffff94895e339ef0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e33a190 | file object: 0xffff94895e33a210 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e33a320 | file object: 0xffff94895e33a3a0 | offsetby: 0x80
\Windows\System32\diagperf.dll
pool: 0xffff94895e33a4b0 | file object: 0xffff94895e33a530 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e33a640 | file object: 0xffff94895e33a6c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\WebClient\Diagnostics\EdgeDebugAdapter\EdgeDebugAdapterHost.pkgdef
pool: 0xffff94895e33a7d0 | file object: 0xffff94895e33a850 | offsetby: 0x80
\Windows\System32\rasmans.dll
pool: 0xffff94895e33a960 | file object: 0xffff94895e33a9e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e33aaf0 | file object: 0xffff94895e33ab70 | offsetby: 0x80
\Windows\System32\eappprxy.dll
pool: 0xffff94895e33ac80 | file object: 0xffff94895e33ad00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e33ae10 | file object: 0xffff94895e33ae90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e33b130 | file object: 0xffff94895e33b1b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e33b2c0 | file object: 0xffff94895e33b340 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.Windows.ContentDeliveryManager_10.0.18362.449_neutral_neutral_cw5n1h2txyewy\S-1-5-21-3234566417-3121902272-2793192418-1001.pckgdep
pool: 0xffff94895e33b450 | file object: 0xffff94895e33b4d0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MsMpLics.dll
pool: 0xffff94895e33b5e0 | file object: 0xffff94895e33b660 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e33b900 | file object: 0xffff94895e33b980 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e33ba90 | file object: 0xffff94895e33bb10 | offsetby: 0x80
\Windows\System32\wbem\cimwin32.dll
pool: 0xffff94895e33bc20 | file object: 0xffff94895e33bca0 | offsetby: 0x80
\Windows\System32\framedynos.dll
pool: 0xffff94895e33bdb0 | file object: 0xffff94895e33be30 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Templates.CS.Wpf.Resources,version=16.6.30013.169,language=en-US\_package.json
pool: 0xffff94895e33c0d0 | file object: 0xffff94895e33c150 | offsetby: 0x80
\Windows\System32\dssenh.dll
pool: 0xffff94895e33c260 | file object: 0xffff94895e33c2e0 | offsetby: 0x80
\Windows\System32\mskeyprotect.dll
pool: 0xffff94895e33c3f0 | file object: 0xffff94895e33c470 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\safer-94b81d01263bfe7f20aa528ae0e18e7a.code
pool: 0xffff94895e33c580 | file object: 0xffff94895e33c600 | offsetby: 0x80
\$Directory
pool: 0xffff94895e33c710 | file object: 0xffff94895e33c790 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e33c8a0 | file object: 0xffff94895e33c920 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Connectivity.evtx
pool: 0xffff94895e33ca30 | file object: 0xffff94895e33cab0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Defender%4Operational.evtx
pool: 0xffff94895e33cbc0 | file object: 0xffff94895e33cc40 | offsetby: 0x80
\Windows\System32\pnpts.dll
pool: 0xffff94895e33cd50 | file object: 0xffff94895e33cdd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e33d070 | file object: 0xffff94895e33d0f0 | offsetby: 0x80
\Windows\System32\wbem\en-US\cimwin32.dll.mui
pool: 0xffff94895e33d200 | file object: 0xffff94895e33d280 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Operational.evtx
pool: 0xffff94895e33d390 | file object: 0xffff94895e33d410 | offsetby: 0x80
\Windows\System32\wfapigp.dll
pool: 0xffff94895e33d520 | file object: 0xffff94895e33d5a0 | offsetby: 0x80
\Windows\Branding\Basebrd\basebrd.dll
pool: 0xffff94895e33d6b0 | file object: 0xffff94895e33d730 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e33d840 | file object: 0xffff94895e33d8c0 | offsetby: 0x80
\Program Files\Windows Defender\MpAsDesc.dll
pool: 0xffff94895e33d9d0 | file object: 0xffff94895e33da50 | offsetby: 0x80
\Windows\System32\perftrack.dll
pool: 0xffff94895e33dcf0 | file object: 0xffff94895e33dd70 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Audit.evtx
pool: 0xffff94895e33e010 | file object: 0xffff94895e33e090 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e33e1a0 | file object: 0xffff94895e33e220 | offsetby: 0x80
\Windows\System32\ncryptsslp.dll
pool: 0xffff94895e33e330 | file object: 0xffff94895e33e3b0 | offsetby: 0x80
\Windows\System32\winbrand.dll
pool: 0xffff94895e33e4c0 | file object: 0xffff94895e33e540 | offsetby: 0x80
\Program Files\Windows Defender\en-US\MpAsDesc.dll.mui
pool: 0xffff94895e33e650 | file object: 0xffff94895e33e6d0 | offsetby: 0x80
\Program Files\Windows Defender\MpEvMsg.dll
pool: 0xffff94895e33e7e0 | file object: 0xffff94895e33e860 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-SMBServer%4Security.evtx
pool: 0xffff94895e33e970 | file object: 0xffff94895e33e9f0 | offsetby: 0x80
\Windows\System32\wmi.dll
pool: 0xffff94895e33eb00 | file object: 0xffff94895e33eb80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e33ec90 | file object: 0xffff94895e33ed10 | offsetby: 0x80
\Windows\Branding\Basebrd\en-US\basebrd.dll.mui
pool: 0xffff94895e33ee20 | file object: 0xffff94895e33eea0 | offsetby: 0x80
\Windows\System32\ncryptprov.dll
pool: 0xffff94895e33f2d0 | file object: 0xffff94895e33f350 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e33f460 | file object: 0xffff94895e33f4e0 | offsetby: 0x80
\Windows\System32\en-US\wbengine.exe.mui
pool: 0xffff94895e33f5f0 | file object: 0xffff94895e33f670 | offsetby: 0x80
\Windows\System32\pcasvc.dll
pool: 0xffff94895e33f780 | file object: 0xffff94895e33f800 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e33f910 | file object: 0xffff94895e33f990 | offsetby: 0x80
\Windows\System32\StorageUsage.dll
pool: 0xffff94895e33faa0 | file object: 0xffff94895e33fb20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e33fc30 | file object: 0xffff94895e33fcb0 | offsetby: 0x80
\Windows\System32\srvcli.dll
pool: 0xffff94895e33fdc0 | file object: 0xffff94895e33fe40 | offsetby: 0x80
\Windows\System32\schedcli.dll
pool: 0xffff94895e3400e0 | file object: 0xffff94895e340160 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\MpDiag.bin
pool: 0xffff94895e340270 | file object: 0xffff94895e3402f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\History\CacheManager\BBEBF2F8-0000-0000-0000-402400000000-1.bin
pool: 0xffff94895e340400 | file object: 0xffff94895e340480 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MpRtp.dll
pool: 0xffff94895e340590 | file object: 0xffff94895e340610 | offsetby: 0x80
\Windows\System32\en-US\shsvcs.dll.mui
pool: 0xffff94895e340720 | file object: 0xffff94895e3407a0 | offsetby: 0x80
\Windows\System32\en-US\pcasvc.dll.mui
pool: 0xffff94895e3408b0 | file object: 0xffff94895e340930 | offsetby: 0x80
\$Directory
pool: 0xffff94895e340a40 | file object: 0xffff94895e340ac0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e340bd0 | file object: 0xffff94895e340c50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e340d60 | file object: 0xffff94895e340de0 | offsetby: 0x80
\Windows\System32\wbengine.exe
pool: 0xffff94895e341080 | file object: 0xffff94895e341100 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.CLR.x86\PrivateHost\Microsoft.VisualStudio.Validation.dll
pool: 0xffff94895e341210 | file object: 0xffff94895e341290 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-WMI-Activity%4Operational.evtx
pool: 0xffff94895e3413a0 | file object: 0xffff94895e341420 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MpCommu.dll
pool: 0xffff94895e341530 | file object: 0xffff94895e3415b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e3416c0 | file object: 0xffff94895e341740 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.Composition\v4.0_4.0.0.0__b77a5c561934e089\System.ComponentModel.Composition.dll
pool: 0xffff94895e341850 | file object: 0xffff94895e3418d0 | offsetby: 0x80
\Windows\System32\mdmregistration.dll
pool: 0xffff94895e3419e0 | file object: 0xffff94895e341a60 | offsetby: 0x80
\Windows\System32\dmcmnutils.dll
pool: 0xffff94895e341b70 | file object: 0xffff94895e341bf0 | offsetby: 0x80
\Windows\System32\omadmapi.dll
pool: 0xffff94895e341d00 | file object: 0xffff94895e341d80 | offsetby: 0x80
\Windows\System32\iri.dll
pool: 0xffff94895e342020 | file object: 0xffff94895e3420a0 | offsetby: 0x80
\Windows\System32\Windows.StateRepositoryPS.dll
pool: 0xffff94895e342340 | file object: 0xffff94895e3423c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e3424d0 | file object: 0xffff94895e342550 | offsetby: 0x80
\Windows\System32\fltLib.dll
pool: 0xffff94895e342660 | file object: 0xffff94895e3426e0 | offsetby: 0x80
\Windows\System32\Windows.ApplicationModel.dll
pool: 0xffff94895e3427f0 | file object: 0xffff94895e342870 | offsetby: 0x80
\Windows\System32\srumsvc.dll
pool: 0xffff94895e342980 | file object: 0xffff94895e342a00 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\bom-handling-84d21e0066acd184658b0d0e90324c86.code
pool: 0xffff94895e342b10 | file object: 0xffff94895e342b90 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\streams-0e153b85f303271c65193cb13835b6ee.code
pool: 0xffff94895e342ca0 | file object: 0xffff94895e342d20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e342e30 | file object: 0xffff94895e342eb0 | offsetby: 0x80
\Windows\SysWOW64\twinapi.dll
pool: 0xffff94895e36c0d0 | file object: 0xffff94895e36c130 | offsetby: 0x60
\$PrepareToShrinkFileSize
pool: 0xffff94895e36d380 | file object: 0xffff94895e36d3e0 | offsetby: 0x60
\Windows\System32\drivers\ndproxy.sys
pool: 0xffff94895e36e910 | file object: 0xffff94895e36e970 | offsetby: 0x60
\Windows\System32\drivers\rassstp.sys
pool: 0xffff94895e370d00 | file object: 0xffff94895e370d60 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e371e40 | file object: 0xffff94895e371ea0 | offsetby: 0x60
\Windows\System32\drivers\rasl2tp.sys
pool: 0xffff94895e372570 | file object: 0xffff94895e3725d0 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e3729c0 | file object: 0xffff94895e372a20 | offsetby: 0x60
\Windows\System32\drivers\agilevpn.sys
pool: 0xffff94895e3736b0 | file object: 0xffff94895e373710 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e3743a0 | file object: 0xffff94895e374400 | offsetby: 0x60
\Windows\System32\drivers\raspptp.sys
pool: 0xffff94895e375370 | file object: 0xffff94895e3753d0 | offsetby: 0x60
\Windows\System32\drivers\raspppoe.sys
pool: 0xffff94895e5023b0 | file object: 0xffff94895e502410 | offsetby: 0x60
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e503ab0 | file object: 0xffff94895e503b10 | offsetby: 0x60
\Windows\System32\drivers\ndiswan.sys
pool: 0xffff94895e504350 | file object: 0xffff94895e5043b0 | offsetby: 0x60
\Windows\System32\drivers\ndistapi.sys
pool: 0xffff94895e55a0d0 | file object: 0xffff94895e55a150 | offsetby: 0x80
\Windows\System32\vpnike.dll
pool: 0xffff94895e55a260 | file object: 0xffff94895e55a2e0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e55a3f0 | file object: 0xffff94895e55a470 | offsetby: 0x80
\Windows\System32\cryptsp.dll
pool: 0xffff94895e55a580 | file object: 0xffff94895e55a600 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\sbcs-data-generated-6ab6ffde6bbc0d099e08662da088e215.code
pool: 0xffff94895e55a710 | file object: 0xffff94895e55a790 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Templates.UWP.Resources.en-US.Project..vstman
pool: 0xffff94895e55a8a0 | file object: 0xffff94895e55a920 | offsetby: 0x80
\Windows\System32\en-US\dps.dll.mui
pool: 0xffff94895e55aa30 | file object: 0xffff94895e55aab0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e55abc0 | file object: 0xffff94895e55ac40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\MessagePack.2.x\MessagePack.dll
pool: 0xffff94895e55ad50 | file object: 0xffff94895e55add0 | offsetby: 0x80
\Windows\System32\spp\store\2.0\data.dat
pool: 0xffff94895e55b070 | file object: 0xffff94895e55b0f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e55b200 | file object: 0xffff94895e55b280 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\Microsoft.VisualStudio.Azure.Fabric.ApplicationInsights.dll
pool: 0xffff94895e55b390 | file object: 0xffff94895e55b410 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\patch-core-991bc51c9a5503a3545f2167dd373c79.code
pool: 0xffff94895e55b520 | file object: 0xffff94895e55b5a0 | offsetby: 0x80
\Windows\System32\rasman.dll
pool: 0xffff94895e55b6b0 | file object: 0xffff94895e55b730 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e55b840 | file object: 0xffff94895e55b8c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e55b9d0 | file object: 0xffff94895e55ba50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e55bb60 | file object: 0xffff94895e55bbe0 | offsetby: 0x80
\Windows\System32\rasapi32.dll
pool: 0xffff94895e55bcf0 | file object: 0xffff94895e55bd70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Debugger.Interop.15.0.dll
pool: 0xffff94895e55c010 | file object: 0xffff94895e55c090 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e55c1a0 | file object: 0xffff94895e55c220 | offsetby: 0x80
\Windows\System32\eappcfg.dll
pool: 0xffff94895e55c330 | file object: 0xffff94895e55c3b0 | offsetby: 0x80
\Windows\System32\rastapi.dll
pool: 0xffff94895e55c4c0 | file object: 0xffff94895e55c540 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e55c650 | file object: 0xffff94895e55c6d0 | offsetby: 0x80
\Windows\System32\dmprocessxmlfiltered.dll
pool: 0xffff94895e55c7e0 | file object: 0xffff94895e55c860 | offsetby: 0x80
\Windows\System32\cryptbase.dll
pool: 0xffff94895e55c970 | file object: 0xffff94895e55c9f0 | offsetby: 0x80
\Windows\System32\dmenrollengine.dll
pool: 0xffff94895e55cb00 | file object: 0xffff94895e55cb80 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-AE7DB802.pf
pool: 0xffff94895e55cc90 | file object: 0xffff94895e55cd10 | offsetby: 0x80
\Windows\System32\rasppp.dll
pool: 0xffff94895e55ce20 | file object: 0xffff94895e55cea0 | offsetby: 0x80
\Windows\System32\rascustom.dll
pool: 0xffff94895e55d140 | file object: 0xffff94895e55d1c0 | offsetby: 0x80
\Windows\System32\PeerDistSh.dll
pool: 0xffff94895e55d2d0 | file object: 0xffff94895e55d350 | offsetby: 0x80
\Windows\System32\sru\SRU.chk
pool: 0xffff94895e55d460 | file object: 0xffff94895e55d4e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e55d5f0 | file object: 0xffff94895e55d670 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\xterm-addon-search-2cebd51898bd34f9a5957a1c3a90ad08.code
pool: 0xffff94895e55d780 | file object: 0xffff94895e55d800 | offsetby: 0x80
\Windows\System32\sru\SRU0007F.l
pool: 0xffff94895e55d910 | file object: 0xffff94895e55d990 | offsetby: 0x80
\Windows\System32\icsvc.dll
pool: 0xffff94895e55daa0 | file object: 0xffff94895e55db20 | offsetby: 0x80
\Windows\System32\en-US\ESENT.dll.mui
pool: 0xffff94895e55dc30 | file object: 0xffff94895e55dcb0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e55ddc0 | file object: 0xffff94895e55de40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e55e0e0 | file object: 0xffff94895e55e160 | offsetby: 0x80
\Windows\System32\en-US\PeerDistSh.dll.mui
pool: 0xffff94895e55e270 | file object: 0xffff94895e55e2f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e55e400 | file object: 0xffff94895e55e480 | offsetby: 0x80
\Windows\System32\en-US\diagtrack.dll.mui
pool: 0xffff94895e55e590 | file object: 0xffff94895e55e610 | offsetby: 0x80
\Windows\System32\wlansvc.dll
pool: 0xffff94895e55e720 | file object: 0xffff94895e55e7a0 | offsetby: 0x80
\Windows\System32\en-US\sstpsvc.dll.mui
pool: 0xffff94895e55e8b0 | file object: 0xffff94895e55e930 | offsetby: 0x80
\Windows\System32\en-US\netlogon.dll.mui
pool: 0xffff94895e55ea40 | file object: 0xffff94895e55eac0 | offsetby: 0x80
\Windows\System32\en-US\provsvc.dll.mui
pool: 0xffff94895e55ebd0 | file object: 0xffff94895e55ec50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e55ed60 | file object: 0xffff94895e55ede0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e55f080 | file object: 0xffff94895e55f100 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e55f210 | file object: 0xffff94895e55f290 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e55f3a0 | file object: 0xffff94895e55f420 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e55f530 | file object: 0xffff94895e55f5b0 | offsetby: 0x80
\Windows\System32\spp\plugin-manifests-signed\sppwinob-spp-plugin-manifest-signed.xrm-ms
pool: 0xffff94895e55f6c0 | file object: 0xffff94895e55f740 | offsetby: 0x80
\Windows\System32\cscapi.dll
pool: 0xffff94895e55f850 | file object: 0xffff94895e55f8d0 | offsetby: 0x80
\Windows\System32\en-US\icsvc.dll.mui
pool: 0xffff94895e55f9e0 | file object: 0xffff94895e55fa60 | offsetby: 0x80
\Windows\System32\provsvc.dll
pool: 0xffff94895e55fb70 | file object: 0xffff94895e55fbf0 | offsetby: 0x80
\Windows\System32\WiFiDisplay.dll
pool: 0xffff94895e55fd00 | file object: 0xffff94895e55fd80 | offsetby: 0x80
\$Directory
pool: 0xffff94895e560020 | file object: 0xffff94895e5600a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e5601b0 | file object: 0xffff94895e560230 | offsetby: 0x80
\Windows\System32\en-US\wlansvc.dll.mui
pool: 0xffff94895e560340 | file object: 0xffff94895e5603c0 | offsetby: 0x80
\Windows\System32\en-US\WiFiDisplay.dll.mui
pool: 0xffff94895e5604d0 | file object: 0xffff94895e560550 | offsetby: 0x80
\Windows\System32\sru\SRU00080.l
pool: 0xffff94895e560660 | file object: 0xffff94895e5606e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e5607f0 | file object: 0xffff94895e560870 | offsetby: 0x80
\$Extend\$Deleted\000400000001E5BD36514864finition Updates\{45BFE74E-A0A2-4B43-B3B6-1BC0C76E3AAD}\mpasdlta.vdm
pool: 0xffff94895e560980 | file object: 0xffff94895e560a00 | offsetby: 0x80
\Windows\System32\Microsoft.Bluetooth.UserService.dll
pool: 0xffff94895e560b10 | file object: 0xffff94895e560b90 | offsetby: 0x80
\Windows\System32\mshtml.dll
pool: 0xffff94895e560ca0 | file object: 0xffff94895e560d20 | offsetby: 0x80
\Windows\System32\AppXDeploymentServer.dll
pool: 0xffff94895e560e30 | file object: 0xffff94895e560eb0 | offsetby: 0x80
\Windows\System32\dsrole.dll
pool: 0xffff94895e561150 | file object: 0xffff94895e5611d0 | offsetby: 0x80
\Windows\System32\netapi32.dll
pool: 0xffff94895e5612e0 | file object: 0xffff94895e561360 | offsetby: 0x80
\Windows\System32\sru\SRUDB.dat
pool: 0xffff94895e561470 | file object: 0xffff94895e5614f0 | offsetby: 0x80
\Windows\System32\raschap.dll
pool: 0xffff94895e561600 | file object: 0xffff94895e561680 | offsetby: 0x80
\Windows\System32\en-US\StorSvc.dll.mui
pool: 0xffff94895e561790 | file object: 0xffff94895e561810 | offsetby: 0x80
\Windows\System32\MrmDeploy.dll
pool: 0xffff94895e561920 | file object: 0xffff94895e5619a0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\StableEngineEtwLocation\mpengine_etw.dll
pool: 0xffff94895e561ab0 | file object: 0xffff94895e561b30 | offsetby: 0x80
\Windows\System32\spp\plugin-manifests-signed\sppobjs-spp-plugin-manifest-signed.xrm-ms
pool: 0xffff94895e561c40 | file object: 0xffff94895e561cc0 | offsetby: 0x80
\Windows\System32\sru\SRUDB.jfm
pool: 0xffff94895e561dd0 | file object: 0xffff94895e561e50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e5620f0 | file object: 0xffff94895e562170 | offsetby: 0x80
\Windows\System32\sppobjs.dll
pool: 0xffff94895e562280 | file object: 0xffff94895e562300 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-DPS%4Operational.evtx
pool: 0xffff94895e562410 | file object: 0xffff94895e562490 | offsetby: 0x80
\$Extend\$Deleted\000400000001E5BE5BAFBEB7finition Updates\{45BFE74E-A0A2-4B43-B3B6-1BC0C76E3AAD}\mpavdlta.vdm
pool: 0xffff94895e5625a0 | file object: 0xffff94895e562620 | offsetby: 0x80
\$Directory
pool: 0xffff94895e562730 | file object: 0xffff94895e5627b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Vsix\Microsoft.VisualStudio.Data.Tools.Package.pkgdef
pool: 0xffff94895e5628c0 | file object: 0xffff94895e562940 | offsetby: 0x80
\Windows\System32\sppwinob.dll
pool: 0xffff94895e562a50 | file object: 0xffff94895e562ad0 | offsetby: 0x80
\Windows\System32\Clipc.dll
pool: 0xffff94895e562be0 | file object: 0xffff94895e562c60 | offsetby: 0x80
\$Extend\$Deleted\000400000000F0B144BCDAABfinition Updates\{45BFE74E-A0A2-4B43-B3B6-1BC0C76E3AAD}\mpavbase.vdm
pool: 0xffff94895e562d70 | file object: 0xffff94895e562df0 | offsetby: 0x80
\Windows\System32\en-US\AppXDeploymentServer.dll.mui
pool: 0xffff94895e563090 | file object: 0xffff94895e563110 | offsetby: 0x80
\Windows\System32\spfileq.dll
pool: 0xffff94895e563220 | file object: 0xffff94895e5632a0 | offsetby: 0x80
\Windows\System32\en-US\mshtml.dll.mui
pool: 0xffff94895e5633b0 | file object: 0xffff94895e563430 | offsetby: 0x80
\Windows\System32\StorSvc.dll
pool: 0xffff94895e563540 | file object: 0xffff94895e5635c0 | offsetby: 0x80
\Windows\System32\pkeyhelper.dll
pool: 0xffff94895e5636d0 | file object: 0xffff94895e563750 | offsetby: 0x80
\System Volume Information\WPSettings.dat
pool: 0xffff94895e563860 | file object: 0xffff94895e5638e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e5639f0 | file object: 0xffff94895e563a70 | offsetby: 0x80
\Windows\System32\WofUtil.dll
pool: 0xffff94895e563b80 | file object: 0xffff94895e563c00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Templates.VB.ManagedCore.Project..vstman
pool: 0xffff94895e563d10 | file object: 0xffff94895e563d90 | offsetby: 0x80
\Windows\System32\bcd.dll
pool: 0xffff94895e564030 | file object: 0xffff94895e5640b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e5641c0 | file object: 0xffff94895e564240 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\windowsTerminal-910f6c624c5520971fbaf95c69131ba6.code
pool: 0xffff94895e564350 | file object: 0xffff94895e5643d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Vsix\Microsoft.VisualStudio.Data.Tools.Relational.Design.Package.pkgdef
pool: 0xffff94895e5644e0 | file object: 0xffff94895e564560 | offsetby: 0x80
\$Extend\$Deleted\000400000000F0AE2AA4A86Afinition Updates\{45BFE74E-A0A2-4B43-B3B6-1BC0C76E3AAD}\mpasbase.vdm
pool: 0xffff94895e564670 | file object: 0xffff94895e5646f0 | offsetby: 0x80
\Windows\System32\Microsoft\Protect\S-1-5-18\User\Preferred
pool: 0xffff94895e564800 | file object: 0xffff94895e564880 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e564990 | file object: 0xffff94895e564a10 | offsetby: 0x80
\Windows\System32\SettingsHandlers_nt.dll
pool: 0xffff94895e564b20 | file object: 0xffff94895e564ba0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e564cb0 | file object: 0xffff94895e564d30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e564e40 | file object: 0xffff94895e564ec0 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\DownloadedSettings\utc.cert.json
pool: 0xffff94895e565160 | file object: 0xffff94895e5651e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\XPS.Viewer~~1.0.mum
pool: 0xffff94895e5652f0 | file object: 0xffff94895e565370 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e565480 | file object: 0xffff94895e565500 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Templates.VB.ManagedCore.Resources.en-US.Project..vstman
pool: 0xffff94895e565610 | file object: 0xffff94895e565690 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Templates.VB.ManagedWeb.Project..vstman
pool: 0xffff94895e5657a0 | file object: 0xffff94895e565820 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.Storage.winmd
pool: 0xffff94895e565930 | file object: 0xffff94895e5659b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\IntelliCode\Microsoft.VisualStudio.Completion.Tests.dll
pool: 0xffff94895e565ac0 | file object: 0xffff94895e565b40 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\DownloadedSettings\utc.tracing.json
pool: 0xffff94895e565c50 | file object: 0xffff94895e565cd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e565de0 | file object: 0xffff94895e565e60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e566100 | file object: 0xffff94895e566180 | offsetby: 0x80
\Windows\System32\spp\store\2.0\cache\cache.dat
pool: 0xffff94895e566290 | file object: 0xffff94895e566310 | offsetby: 0x80
\$Directory
pool: 0xffff94895e566420 | file object: 0xffff94895e5664a0 | offsetby: 0x80
\Windows\System32\en-US\cryptsvc.dll.mui
pool: 0xffff94895e5665b0 | file object: 0xffff94895e566630 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e566740 | file object: 0xffff94895e5667c0 | offsetby: 0x80
\Windows\System32\en-US\taskhostw.exe.mui
pool: 0xffff94895e5668d0 | file object: 0xffff94895e566950 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e566a60 | file object: 0xffff94895e566ae0 | offsetby: 0x80
\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb
pool: 0xffff94895e566bf0 | file object: 0xffff94895e566c70 | offsetby: 0x80
\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
pool: 0xffff94895e566d80 | file object: 0xffff94895e566e00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e5670a0 | file object: 0xffff94895e567120 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\EventStore.db-shm
pool: 0xffff94895e567230 | file object: 0xffff94895e5672b0 | offsetby: 0x80
\Windows\DiagTrack\RemoteAggregatorTriggerCriteria.dat
pool: 0xffff94895e5673c0 | file object: 0xffff94895e567440 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895e567550 | file object: 0xffff94895e5675d0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Caches\cversions.3.db
pool: 0xffff94895e5676e0 | file object: 0xffff94895e567760 | offsetby: 0x80
\$Directory
pool: 0xffff94895e567870 | file object: 0xffff94895e5678f0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-UniversalTelemetryClient%4Operational.evtx
pool: 0xffff94895e567a00 | file object: 0xffff94895e567a80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e567b90 | file object: 0xffff94895e567c10 | offsetby: 0x80
\Windows\DiagTrack\analyticsevents.dat
pool: 0xffff94895e567d20 | file object: 0xffff94895e567da0 | offsetby: 0x80
\Windows\System32\en-US\ESENT.dll.mui
pool: 0xffff94895e568040 | file object: 0xffff94895e5680c0 | offsetby: 0x80
\Windows\DiagTrack\GetFileInfoActionAllowedList.dat
pool: 0xffff94895e5681d0 | file object: 0xffff94895e568250 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\EventStore.db
pool: 0xffff94895e568360 | file object: 0xffff94895e5683e0 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\ScenariosSqlStore\EventStore.db
pool: 0xffff94895e5684f0 | file object: 0xffff94895e568570 | offsetby: 0x80
\Windows\System32\FlightSettings.dll
pool: 0xffff94895e568680 | file object: 0xffff94895e568700 | offsetby: 0x80
\Windows\DiagTrack\GetFileActionAllowedList.dat
pool: 0xffff94895e568810 | file object: 0xffff94895e568890 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\ScenariosSqlStore\EventStore.db-shm
pool: 0xffff94895e5689a0 | file object: 0xffff94895e568a20 | offsetby: 0x80
\$Directory
pool: 0xffff94895e568b30 | file object: 0xffff94895e568bb0 | offsetby: 0x80
\Windows\DiagTrack\RunExeActionAllowedList.dat
pool: 0xffff94895e568cc0 | file object: 0xffff94895e568d40 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\TenantStorage\P-ARIA\EventStore.db
pool: 0xffff94895e568e50 | file object: 0xffff94895e568ed0 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\EventStore.db-wal
pool: 0xffff94895e569170 | file object: 0xffff94895e5691f0 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\ScenariosSqlStore\EventStore.db-wal
pool: 0xffff94895e569300 | file object: 0xffff94895e569380 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e569490 | file object: 0xffff94895e569510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e569620 | file object: 0xffff94895e5696a0 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\TenantStorage\P-ARIA\EventStore.db-wal
pool: 0xffff94895e5697b0 | file object: 0xffff94895e569830 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\TenantStorage\P-ARIA\EventStore.db-shm
pool: 0xffff94895e569940 | file object: 0xffff94895e5699c0 | offsetby: 0x80
\Windows\System32\wwapi.dll
pool: 0xffff94895e569ad0 | file object: 0xffff94895e569b50 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e569c60 | file object: 0xffff94895e569ce0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e569df0 | file object: 0xffff94895e569e70 | offsetby: 0x80
\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb.jfm
pool: 0xffff94895e56a110 | file object: 0xffff94895e56a190 | offsetby: 0x80
\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb.jfm
pool: 0xffff94895e56a2a0 | file object: 0xffff94895e56a320 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e56a430 | file object: 0xffff94895e56a4b0 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff94895e56a5c0 | file object: 0xffff94895e56a640 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e56a750 | file object: 0xffff94895e56a7d0 | offsetby: 0x80
\Windows\System32\catroot2\{127D0A1D-4EF2-11D1-8608-00C04FC295EE}\catdb
pool: 0xffff94895e56a8e0 | file object: 0xffff94895e56a960 | offsetby: 0x80
\$Directory
pool: 0xffff94895e56aa70 | file object: 0xffff94895e56aaf0 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.System.winmd
pool: 0xffff94895e56ac00 | file object: 0xffff94895e56ac80 | offsetby: 0x80
\Windows\System32\wpnsruprov.dll
pool: 0xffff94895e56ad90 | file object: 0xffff94895e56ae10 | offsetby: 0x80
\$Directory
pool: 0xffff94895e56b0b0 | file object: 0xffff94895e56b130 | offsetby: 0x80
\$Directory
pool: 0xffff94895e56b240 | file object: 0xffff94895e56b2c0 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.Web.winmd
pool: 0xffff94895e56b3d0 | file object: 0xffff94895e56b450 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e56b560 | file object: 0xffff94895e56b5e0 | offsetby: 0x80
\Windows\System32\en-US\bisrv.dll.mui
pool: 0xffff94895e56b6f0 | file object: 0xffff94895e56b770 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e56b880 | file object: 0xffff94895e56b900 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e56ba10 | file object: 0xffff94895e56ba90 | offsetby: 0x80
\Windows\System32\appsruprov.dll
pool: 0xffff94895e56bba0 | file object: 0xffff94895e56bc20 | offsetby: 0x80
\Windows\System32\winnlsres.dll
pool: 0xffff94895e56bd30 | file object: 0xffff94895e56bdb0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e56c050 | file object: 0xffff94895e56c0d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e56c1e0 | file object: 0xffff94895e56c260 | offsetby: 0x80
\Windows\System32\eeprov.dll
pool: 0xffff94895e56c370 | file object: 0xffff94895e56c3f0 | offsetby: 0x80
\Windows\System32\nduprov.dll
pool: 0xffff94895e56c500 | file object: 0xffff94895e56c580 | offsetby: 0x80
\Windows\System32\en-US\shell32.dll.mui
pool: 0xffff94895e56c690 | file object: 0xffff94895e56c710 | offsetby: 0x80
\Windows\System32\vfuprov.dll
pool: 0xffff94895e56c820 | file object: 0xffff94895e56c8a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e56c9b0 | file object: 0xffff94895e56ca30 | offsetby: 0x80
\Windows\System32\en-US\rasmans.dll.mui
pool: 0xffff94895e56cb40 | file object: 0xffff94895e56cbc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e56ccd0 | file object: 0xffff94895e56cd50 | offsetby: 0x80
\Windows\System32\en-US\wkssvc.dll.mui
pool: 0xffff94895e56ce60 | file object: 0xffff94895e56cee0 | offsetby: 0x80
\Windows\System32\en-US\comres.dll.mui
pool: 0xffff94895e56d180 | file object: 0xffff94895e56d200 | offsetby: 0x80
\Windows\System32\en-US\fhsvc.dll.mui
pool: 0xffff94895e56d310 | file object: 0xffff94895e56d390 | offsetby: 0x80
\Windows\System32\en-US\lmhsvc.dll.mui
pool: 0xffff94895e56d4a0 | file object: 0xffff94895e56d520 | offsetby: 0x80
\Windows\System32\en-US\umpnpmgr.dll.mui
pool: 0xffff94895e56d630 | file object: 0xffff94895e56d6b0 | offsetby: 0x80
\Windows\System32\ClipSVC.dll
pool: 0xffff94895e56d7c0 | file object: 0xffff94895e56d840 | offsetby: 0x80
\Windows\System32\en-US\semgrsvc.dll.mui
pool: 0xffff94895e56d950 | file object: 0xffff94895e56d9d0 | offsetby: 0x80
\Windows\System32\en-US\ncbservice.dll.mui
pool: 0xffff94895e56dae0 | file object: 0xffff94895e56db60 | offsetby: 0x80
\Windows\System32\en-US\sens.dll.mui
pool: 0xffff94895e56dc70 | file object: 0xffff94895e56dcf0 | offsetby: 0x80
\Windows\System32\en-US\umpo.dll.mui
pool: 0xffff94895e56de00 | file object: 0xffff94895e56de80 | offsetby: 0x80
\Windows\System32\en-US\samsrv.dll.mui
pool: 0xffff94895e56e120 | file object: 0xffff94895e56e1a0 | offsetby: 0x80
\Windows\System32\en-US\DispBroker.Desktop.dll.mui
pool: 0xffff94895e56e2b0 | file object: 0xffff94895e56e330 | offsetby: 0x80
\Windows\System32\en-US\wevtsvc.dll.mui
pool: 0xffff94895e56e440 | file object: 0xffff94895e56e4c0 | offsetby: 0x80
\Windows\System32\en-US\profsvc.dll.mui
pool: 0xffff94895e56e5d0 | file object: 0xffff94895e56e650 | offsetby: 0x80
\Windows\System32\en-US\sessenv.dll.mui
pool: 0xffff94895e56e760 | file object: 0xffff94895e56e7e0 | offsetby: 0x80
\Windows\System32\en-US\debugregsvc.dll.mui
pool: 0xffff94895e56e8f0 | file object: 0xffff94895e56e970 | offsetby: 0x80
\Windows\System32\en-US\dnsapi.dll.mui
pool: 0xffff94895e56ea80 | file object: 0xffff94895e56eb00 | offsetby: 0x80
\Windows\System32\en-US\dhcpcore.dll.mui
pool: 0xffff94895e56ec10 | file object: 0xffff94895e56ec90 | offsetby: 0x80
\Windows\System32\en-US\lsm.dll.mui
pool: 0xffff94895e56eda0 | file object: 0xffff94895e56ee20 | offsetby: 0x80
\Windows\System32\en-US\nlasvc.dll.mui
pool: 0xffff94895e56f0c0 | file object: 0xffff94895e56f140 | offsetby: 0x80
\Windows\System32\en-US\RpcEpMap.dll.mui
pool: 0xffff94895e56f250 | file object: 0xffff94895e56f2d0 | offsetby: 0x80
\Windows\System32\en-US\schedsvc.dll.mui
pool: 0xffff94895e56f3e0 | file object: 0xffff94895e56f460 | offsetby: 0x80
\Windows\System32\en-US\dusmsvc.dll.mui
pool: 0xffff94895e56f570 | file object: 0xffff94895e56f5f0 | offsetby: 0x80
\Windows\System32\en-US\srvsvc.dll.mui
pool: 0xffff94895e56f700 | file object: 0xffff94895e56f780 | offsetby: 0x80
\Windows\System32\en-US\nsisvc.dll.mui
pool: 0xffff94895e56f890 | file object: 0xffff94895e56f910 | offsetby: 0x80
\Windows\System32\en-US\combase.dll.mui
pool: 0xffff94895e56fa20 | file object: 0xffff94895e56faa0 | offsetby: 0x80
\Windows\System32\en-US\gpapi.dll.mui
pool: 0xffff94895e56fbb0 | file object: 0xffff94895e56fc30 | offsetby: 0x80
\Windows\System32\en-US\clipsvc.dll.mui
pool: 0xffff94895e56fd40 | file object: 0xffff94895e56fdc0 | offsetby: 0x80
\Windows\System32\en-US\FntCache.dll.mui
pool: 0xffff94895e570060 | file object: 0xffff94895e5700e0 | offsetby: 0x80
\Windows\System32\en-US\usermgr.dll.mui
pool: 0xffff94895e5701f0 | file object: 0xffff94895e570270 | offsetby: 0x80
\Windows\System32\en-US\trkwks.dll.mui
pool: 0xffff94895e570380 | file object: 0xffff94895e570400 | offsetby: 0x80
\Windows\System32\en-US\WpdBusEnum.dll.mui
pool: 0xffff94895e570510 | file object: 0xffff94895e570590 | offsetby: 0x80
\Windows\System32\ncuprov.dll
pool: 0xffff94895e5706a0 | file object: 0xffff94895e570720 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\php-language-features\package.nls.json
pool: 0xffff94895e570830 | file object: 0xffff94895e5708b0 | offsetby: 0x80
\Windows\servicing\Sessions\30816432_4264432168.xml
pool: 0xffff94895e5709c0 | file object: 0xffff94895e570a40 | offsetby: 0x80
\$Directory
pool: 0xffff94895e570b50 | file object: 0xffff94895e570bd0 | offsetby: 0x80
\Windows\System32\WaaSAssessment.dll
pool: 0xffff94895e570ce0 | file object: 0xffff94895e570d60 | offsetby: 0x80
\Windows\System32\en-US\wpnservice.dll.mui
pool: 0xffff94895e570e70 | file object: 0xffff94895e570ef0 | offsetby: 0x80
\Windows\System32\wlms
pool: 0xffff94895e571000 | file object: 0xffff94895e571080 | offsetby: 0x80
\Windows\System32\updatepolicy.dll
pool: 0xffff94895e571190 | file object: 0xffff94895e571210 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e571320 | file object: 0xffff94895e5713a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e5714b0 | file object: 0xffff94895e571530 | offsetby: 0x80
\Windows\System32\en-US\themeservice.dll.mui
pool: 0xffff94895e571640 | file object: 0xffff94895e5716c0 | offsetby: 0x80
\Windows\System32\Windows.Web.dll
pool: 0xffff94895e5717d0 | file object: 0xffff94895e571850 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e571960 | file object: 0xffff94895e5719e0 | offsetby: 0x80
\Windows\System32\en-US\winhttp.dll.mui
pool: 0xffff94895e571af0 | file object: 0xffff94895e571b70 | offsetby: 0x80
\Windows\System32\en-US\wdi.dll.mui
pool: 0xffff94895e571c80 | file object: 0xffff94895e571d00 | offsetby: 0x80
\Windows\System32\wlms\en-US\wlms.exe.mui
pool: 0xffff94895e571e10 | file object: 0xffff94895e571e90 | offsetby: 0x80
\Windows\System32\en-US\Windows.Web.dll.mui
pool: 0xffff94895e572130 | file object: 0xffff94895e5721b0 | offsetby: 0x80
\Windows\System32\en-US\Windows.StateRepository.dll.mui
pool: 0xffff94895e5722c0 | file object: 0xffff94895e572340 | offsetby: 0x80
\Windows\System32\en-US\sysmain.dll.mui
pool: 0xffff94895e572450 | file object: 0xffff94895e5724d0 | offsetby: 0x80
\Windows\System32\en-US\wuaueng.dll.mui
pool: 0xffff94895e5725e0 | file object: 0xffff94895e572660 | offsetby: 0x80
\Windows\System32\wbem\en-US\WMIsvc.dll.mui
pool: 0xffff94895e572770 | file object: 0xffff94895e5727f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e572900 | file object: 0xffff94895e572980 | offsetby: 0x80
\Windows\System32\en-US\TimeBrokerServer.dll.mui
pool: 0xffff94895e572a90 | file object: 0xffff94895e572b10 | offsetby: 0x80
\Windows\System32\en-US\wcmsvc.dll.mui
pool: 0xffff94895e572c20 | file object: 0xffff94895e572ca0 | offsetby: 0x80
\Windows\System32\en-US\SystemEventsBrokerServer.dll.mui
pool: 0xffff94895e572db0 | file object: 0xffff94895e572e30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e5730d0 | file object: 0xffff94895e573150 | offsetby: 0x80
\Windows\System32\globinputhost.dll
pool: 0xffff94895e573260 | file object: 0xffff94895e5732e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e5733f0 | file object: 0xffff94895e573470 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e573580 | file object: 0xffff94895e573600 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e573710 | file object: 0xffff94895e573790 | offsetby: 0x80
\$Directory
pool: 0xffff94895e5738a0 | file object: 0xffff94895e573920 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e573a30 | file object: 0xffff94895e573ab0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\Wizards\en\Microsoft.VC.Wizards.resources.dll
pool: 0xffff94895e573bc0 | file object: 0xffff94895e573c40 | offsetby: 0x80
\Windows\SoftwareDistribution\Download\a75e1456b7eea7fc8bbfe9d9b17072e2\Metadata\TurboStack.dll
pool: 0xffff94895e573d50 | file object: 0xffff94895e573dd0 | offsetby: 0x80
\Windows\System32\en-US\winnlsres.dll.mui
pool: 0xffff94895e574070 | file object: 0xffff94895e5740f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e574200 | file object: 0xffff94895e574280 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e574390 | file object: 0xffff94895e574410 | offsetby: 0x80
\$Directory
pool: 0xffff94895e574520 | file object: 0xffff94895e5745a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e5746b0 | file object: 0xffff94895e574730 | offsetby: 0x80
\Windows\System32\energyprov.dll
pool: 0xffff94895e574840 | file object: 0xffff94895e5748c0 | offsetby: 0x80
\Windows\System32\catroot2\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\catdb
pool: 0xffff94895e5749d0 | file object: 0xffff94895e574a50 | offsetby: 0x80
\Windows\System32\en-US\winlangdb.dll.mui
pool: 0xffff94895e574b60 | file object: 0xffff94895e574be0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e574cf0 | file object: 0xffff94895e574d70 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\Content\B398B80134F72209547439DB21AB308D_5FDD03068CBBD8A96F3AB9595BA10093
pool: 0xffff94895e575010 | file object: 0xffff94895e575090 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e5751a0 | file object: 0xffff94895e575220 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e575330 | file object: 0xffff94895e5753b0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\ClipSVC\tokens.dat
pool: 0xffff94895e5754c0 | file object: 0xffff94895e575540 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e575650 | file object: 0xffff94895e5756d0 | offsetby: 0x80
\Windows\System32\SleepStudy\ScreenOn\ScreenOnPowerStudyTraceSession-2020-06-03-23-20-43.etl
pool: 0xffff94895e5757e0 | file object: 0xffff94895e575860 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e575970 | file object: 0xffff94895e5759f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e575b00 | file object: 0xffff94895e575b80 | offsetby: 0x80
\$Directory
pool: 0xffff94895e575c90 | file object: 0xffff94895e575d10 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\promisify-3d2f693b2cac50553b0a2055913fdcb7.code
pool: 0xffff94895e575e20 | file object: 0xffff94895e575ea0 | offsetby: 0x80
\Windows\System32\Winlangdb.dll
pool: 0xffff94895e576140 | file object: 0xffff94895e5761c0 | offsetby: 0x80
\Windows\SystemResources\Winlangdb.dll.mun
pool: 0xffff94895e5762d0 | file object: 0xffff94895e576350 | offsetby: 0x80
\Windows\SystemResources\imageres.dll.mun
pool: 0xffff94895e576460 | file object: 0xffff94895e5764e0 | offsetby: 0x80
\Windows\System32\InputSwitch.dll
pool: 0xffff94895e5765f0 | file object: 0xffff94895e576670 | offsetby: 0x80
\$Directory
pool: 0xffff94895e576780 | file object: 0xffff94895e576800 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e576910 | file object: 0xffff94895e576990 | offsetby: 0x80
\Windows\System32\en-US\InputSwitch.dll.mui
pool: 0xffff94895e576aa0 | file object: 0xffff94895e576b20 | offsetby: 0x80
\Windows\System32\AuthExt.dll
pool: 0xffff94895e576c30 | file object: 0xffff94895e576cb0 | offsetby: 0x80
\Windows\System32\en-US\Windows.Graphics.dll.mui
pool: 0xffff94895e576dc0 | file object: 0xffff94895e576e40 | offsetby: 0x80
\Windows\System32\credprovs.dll
pool: 0xffff94895e5770e0 | file object: 0xffff94895e577160 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c\comctl32.dll
pool: 0xffff94895e577270 | file object: 0xffff94895e5772f0 | offsetby: 0x80
\Windows\System32\credprovhost.dll
pool: 0xffff94895e577400 | file object: 0xffff94895e577480 | offsetby: 0x80
\Windows\System32\en-US\batmeter.dll.mui
pool: 0xffff94895e577590 | file object: 0xffff94895e577610 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e577720 | file object: 0xffff94895e5777a0 | offsetby: 0x80
\Windows\System32\wuceffects.dll
pool: 0xffff94895e5778b0 | file object: 0xffff94895e577930 | offsetby: 0x80
\Windows\System32\input.dll
pool: 0xffff94895e577a40 | file object: 0xffff94895e577ac0 | offsetby: 0x80
\Windows\System32\batmeter.dll
pool: 0xffff94895e577bd0 | file object: 0xffff94895e577c50 | offsetby: 0x80
\Windows\System32\CredProvDataModel.dll
pool: 0xffff94895e577d60 | file object: 0xffff94895e577de0 | offsetby: 0x80
\Windows\System32\FontGlyphAnimator.dll
pool: 0xffff94895e578080 | file object: 0xffff94895e578100 | offsetby: 0x80
\Windows\SysWOW64\sxs.dll
pool: 0xffff94895e578210 | file object: 0xffff94895e578290 | offsetby: 0x80
\Windows\System32\credprovslegacy.dll
pool: 0xffff94895e5783a0 | file object: 0xffff94895e578420 | offsetby: 0x80
\Windows\System32\en-US\input.dll.mui
pool: 0xffff94895e578530 | file object: 0xffff94895e5785b0 | offsetby: 0x80
\Windows\WindowsShell.Manifest
pool: 0xffff94895e5786c0 | file object: 0xffff94895e578740 | offsetby: 0x80
\Windows\System32\wininet.dll
pool: 0xffff94895e578850 | file object: 0xffff94895e5788d0 | offsetby: 0x80
\Windows\System32\en-US\AuthExt.dll.mui
pool: 0xffff94895e5789e0 | file object: 0xffff94895e578a60 | offsetby: 0x80
\Windows\System32\NetworkStatus.dll
pool: 0xffff94895e578b70 | file object: 0xffff94895e578bf0 | offsetby: 0x80
\Windows\System32\threadpoolwinrt.dll
pool: 0xffff94895e578d00 | file object: 0xffff94895e578d80 | offsetby: 0x80
\ProgramData\Microsoft\Windows\SystemData\S-1-5-18\ReadOnly\LockScreen_Z\LockScreen___1920_1015_notdimmed.jpg
pool: 0xffff94895e579020 | file object: 0xffff94895e5790a0 | offsetby: 0x80
\Windows\SystemResources\batmeter.dll.mun
pool: 0xffff94895e5791b0 | file object: 0xffff94895e579230 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e579340 | file object: 0xffff94895e5793c0 | offsetby: 0x80
\Windows\System32\imageres.dll
pool: 0xffff94895e5794d0 | file object: 0xffff94895e579550 | offsetby: 0x80
\Windows\System32\SebBackgroundManagerPolicy.dll
pool: 0xffff94895e579660 | file object: 0xffff94895e5796e0 | offsetby: 0x80
\Windows\System32\facecredentialprovider.dll
pool: 0xffff94895e5797f0 | file object: 0xffff94895e579870 | offsetby: 0x80
\Windows\System32\StructuredQuery.dll
pool: 0xffff94895e579980 | file object: 0xffff94895e579a00 | offsetby: 0x80
\$Directory
pool: 0xffff94895e579b10 | file object: 0xffff94895e579b90 | offsetby: 0x80
\Windows\System32\en-US\credprovs.dll.mui
pool: 0xffff94895e579ca0 | file object: 0xffff94895e579d20 | offsetby: 0x80
\Windows\System32\Windows.Devices.Enumeration.dll
pool: 0xffff94895e579e30 | file object: 0xffff94895e579eb0 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.ApplicationModel.winmd
pool: 0xffff94895e8444f0 | file object: 0xffff94895e844550 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e846040 | file object: 0xffff94895e8460a0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e8461b0 | file object: 0xffff94895e846210 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e846320 | file object: 0xffff94895e846380 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e846490 | file object: 0xffff94895e8464f0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e846600 | file object: 0xffff94895e846660 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e846770 | file object: 0xffff94895e8467d0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e8468e0 | file object: 0xffff94895e846940 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e846a50 | file object: 0xffff94895e846ab0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e846bc0 | file object: 0xffff94895e846c20 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e846d30 | file object: 0xffff94895e846d90 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e847010 | file object: 0xffff94895e847070 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e847180 | file object: 0xffff94895e8471e0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e8472f0 | file object: 0xffff94895e847350 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e847460 | file object: 0xffff94895e8474c0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e8475d0 | file object: 0xffff94895e847630 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e847740 | file object: 0xffff94895e8477a0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e8478b0 | file object: 0xffff94895e847910 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e847a20 | file object: 0xffff94895e847a80 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e847b90 | file object: 0xffff94895e847bf0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e847d00 | file object: 0xffff94895e847d60 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e847e70 | file object: 0xffff94895e847ed0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e848150 | file object: 0xffff94895e8481b0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e8482c0 | file object: 0xffff94895e848320 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e848430 | file object: 0xffff94895e848490 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e8485a0 | file object: 0xffff94895e848600 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e848710 | file object: 0xffff94895e848770 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e848880 | file object: 0xffff94895e8488e0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e8489f0 | file object: 0xffff94895e848a50 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e848b60 | file object: 0xffff94895e848bc0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e848cd0 | file object: 0xffff94895e848d30 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e848e40 | file object: 0xffff94895e848ea0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e849120 | file object: 0xffff94895e849180 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e849290 | file object: 0xffff94895e8492f0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e849400 | file object: 0xffff94895e849460 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e849570 | file object: 0xffff94895e8495d0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e8496e0 | file object: 0xffff94895e849740 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e849850 | file object: 0xffff94895e8498b0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e8499c0 | file object: 0xffff94895e849a20 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e849b30 | file object: 0xffff94895e849b90 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e849ca0 | file object: 0xffff94895e849d00 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e849e10 | file object: 0xffff94895e849e70 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84a0f0 | file object: 0xffff94895e84a150 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84a260 | file object: 0xffff94895e84a2c0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84a3d0 | file object: 0xffff94895e84a430 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84a540 | file object: 0xffff94895e84a5a0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84a6b0 | file object: 0xffff94895e84a710 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84a820 | file object: 0xffff94895e84a880 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84a990 | file object: 0xffff94895e84a9f0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84ab00 | file object: 0xffff94895e84ab60 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84ac70 | file object: 0xffff94895e84acd0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84ade0 | file object: 0xffff94895e84ae40 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84b0c0 | file object: 0xffff94895e84b120 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84b230 | file object: 0xffff94895e84b290 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84b3a0 | file object: 0xffff94895e84b400 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84b510 | file object: 0xffff94895e84b570 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84b680 | file object: 0xffff94895e84b6e0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84b7f0 | file object: 0xffff94895e84b850 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84b960 | file object: 0xffff94895e84b9c0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84c4e0 | file object: 0xffff94895e84c540 | offsetby: 0x60
\Windows\System32\config\TxR\{fd9a35aa-49fe-11e9-aa2c-248a07783950}.TxR.1.regtrans-ms
pool: 0xffff94895e84d620 | file object: 0xffff94895e84d680 | offsetby: 0x60
\SystemRoot\System32\Config\TxR\{fd9a35aa-49fe-11e9-aa2c-248a07783950}.TxR
pool: 0xffff94895e84d900 | file object: 0xffff94895e84d960 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84da70 | file object: 0xffff94895e84dad0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84dd50 | file object: 0xffff94895e84ddb0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84e1a0 | file object: 0xffff94895e84e200 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84e310 | file object: 0xffff94895e84e370 | offsetby: 0x60
\Windows\System32\config\TxR\{fd9a35aa-49fe-11e9-aa2c-248a07783950}.TxR.blf
pool: 0xffff94895e84e5f0 | file object: 0xffff94895e84e650 | offsetby: 0x60
\Windows\System32\config\TxR\{fd9a35aa-49fe-11e9-aa2c-248a07783950}.TxR.0.regtrans-ms
pool: 0xffff94895e84e760 | file object: 0xffff94895e84e7c0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e84f450 | file object: 0xffff94895e84f4b0 | offsetby: 0x60
\Windows\System32\config\TxR\{fd9a35aa-49fe-11e9-aa2c-248a07783950}.TxR.2.regtrans-ms
pool: 0xffff94895e84fe60 | file object: 0xffff94895e84fec0 | offsetby: 0x60
\Windows\System32\config\TxR\{fd9a35aa-49fe-11e9-aa2c-248a07783950}.TxR.3.regtrans-ms
pool: 0xffff94895e851560 | file object: 0xffff94895e8515c0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895e853390 | file object: 0xffff94895e8533f0 | offsetby: 0x60
\$ConvertToNonresident
pool: 0xffff94895e854080 | file object: 0xffff94895e8540e0 | offsetby: 0x60
\Windows\System32\LogFiles\WMI\RtBackup\EtwRTDiagtrack-Listener.etl
pool: 0xffff94895e8575b0 | file object: 0xffff94895e857610 | offsetby: 0x60
\$PrepareToShrinkFileSize
pool: 0xffff94895e8640d0 | file object: 0xffff94895e864150 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e864260 | file object: 0xffff94895e8642e0 | offsetby: 0x80
\Windows\System32\cxcredprov.dll
pool: 0xffff94895e8643f0 | file object: 0xffff94895e864470 | offsetby: 0x80
壟퍱&䕆呁剕彅呈偔啟䕓乒䵁彅䅐卓佗
pool: 0xffff94895e864580 | file object: 0xffff94895e864600 | offsetby: 0x80
\Windows\System32\en-US\FirewallControlPanel.dll.mui
pool: 0xffff94895e864710 | file object: 0xffff94895e864790 | offsetby: 0x80
\Windows\System32\radardt.dll
pool: 0xffff94895e8648a0 | file object: 0xffff94895e864920 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e864a30 | file object: 0xffff94895e864ab0 | offsetby: 0x80
\Windows\System32\rasplap.dll
pool: 0xffff94895e864bc0 | file object: 0xffff94895e864c40 | offsetby: 0x80
\Windows\System32\BioCredProv.dll
pool: 0xffff94895e864d50 | file object: 0xffff94895e864dd0 | offsetby: 0x80
\Windows\System32\CredProv2faHelper.dll
pool: 0xffff94895e865070 | file object: 0xffff94895e8650f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e865200 | file object: 0xffff94895e865280 | offsetby: 0x80
\Windows\System32\MSWB7.dll
pool: 0xffff94895e865390 | file object: 0xffff94895e865410 | offsetby: 0x80
\Windows\System32\DevDispItemProvider.dll
pool: 0xffff94895e865520 | file object: 0xffff94895e8655a0 | offsetby: 0x80
\Windows\System32\ngccredprov.dll
pool: 0xffff94895e8656b0 | file object: 0xffff94895e865730 | offsetby: 0x80
\Windows\System32\D3D12.dll
pool: 0xffff94895e865840 | file object: 0xffff94895e8658c0 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\AppData\Local\ConnectedDevicesPlatform\L.User.cdp
pool: 0xffff94895e8659d0 | file object: 0xffff94895e865a50 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Storsvc%4Diagnostic.evtx
pool: 0xffff94895e865b60 | file object: 0xffff94895e865be0 | offsetby: 0x80
\Windows\System32\prm0009.dll
pool: 0xffff94895e865cf0 | file object: 0xffff94895e865d70 | offsetby: 0x80
\Windows\System32\RTWorkQ.dll
pool: 0xffff94895e866010 | file object: 0xffff94895e866090 | offsetby: 0x80
\Windows\System32\ngckeyenum.dll
pool: 0xffff94895e8661a0 | file object: 0xffff94895e866220 | offsetby: 0x80
\Windows\Prefetch\SGRMBROKER.EXE-0CA31CC6.pf
pool: 0xffff94895e866330 | file object: 0xffff94895e8663b0 | offsetby: 0x80
\Windows\System32\Windows.Media.dll
pool: 0xffff94895e8664c0 | file object: 0xffff94895e866540 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\1033\StructuredQuerySchema.bin
pool: 0xffff94895e866650 | file object: 0xffff94895e8666d0 | offsetby: 0x80
\Windows\System32\wlidcredprov.dll
pool: 0xffff94895e8667e0 | file object: 0xffff94895e866860 | offsetby: 0x80
\Windows\INF\swenum.PNF
pool: 0xffff94895e866970 | file object: 0xffff94895e8669f0 | offsetby: 0x80
\Windows\System32\SmartcardCredentialProvider.dll
pool: 0xffff94895e866b00 | file object: 0xffff94895e866b80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e866c90 | file object: 0xffff94895e866d10 | offsetby: 0x80
\Windows\System32\FirewallControlPanel.dll
pool: 0xffff94895e866e20 | file object: 0xffff94895e866ea0 | offsetby: 0x80
\Windows\System32\wosc.dll
pool: 0xffff94895e867140 | file object: 0xffff94895e8671c0 | offsetby: 0x80
\Windows\System32\CredProvHelper.dll
pool: 0xffff94895e8672d0 | file object: 0xffff94895e867350 | offsetby: 0x80
\$Directory
pool: 0xffff94895e867460 | file object: 0xffff94895e8674e0 | offsetby: 0x80
\Windows\System32\fveui.dll
pool: 0xffff94895e8675f0 | file object: 0xffff94895e867670 | offsetby: 0x80
\Windows\System32\en-US\NgcRecovery.dll.mui
pool: 0xffff94895e867780 | file object: 0xffff94895e867800 | offsetby: 0x80
\Windows\System32\PhotoMetadataHandler.dll
pool: 0xffff94895e867910 | file object: 0xffff94895e867990 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\DownloadedScenarios\WINDOWS.DIAGNOSTICS.xml
pool: 0xffff94895e867aa0 | file object: 0xffff94895e867b20 | offsetby: 0x80
\Windows\System32\WindowsPowerShell\v1.0\en-US\powershell.exe.mui
pool: 0xffff94895e867c30 | file object: 0xffff94895e867cb0 | offsetby: 0x80
\Windows\System32\en-US\ci.dll.mui
pool: 0xffff94895e867dc0 | file object: 0xffff94895e867e40 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff94895e8680e0 | file object: 0xffff94895e868160 | offsetby: 0x80
\Windows\System32\SecureTimeAggregator.dll
pool: 0xffff94895e868270 | file object: 0xffff94895e8682f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e868400 | file object: 0xffff94895e868480 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\parse.dat
pool: 0xffff94895e868590 | file object: 0xffff94895e868610 | offsetby: 0x80
\Windows\System32\en-US\fveui.dll.mui
pool: 0xffff94895e868720 | file object: 0xffff94895e8687a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e8688b0 | file object: 0xffff94895e868930 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.Windows.StartMenuExperienceHost_10.0.18362.449_neutral_neutral_cw5n1h2txyewy\ActivationStore.dat
pool: 0xffff94895e868a40 | file object: 0xffff94895e868ac0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeploymentServer%4Operational.evtx
pool: 0xffff94895e868bd0 | file object: 0xffff94895e868c50 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff94895e868d60 | file object: 0xffff94895e868de0 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\DownloadedScenarios\WINDOWS.SIUF.xml
pool: 0xffff94895e869080 | file object: 0xffff94895e869100 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e869210 | file object: 0xffff94895e869290 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e8693a0 | file object: 0xffff94895e869420 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Client-Licensing-Platform%4Admin.evtx
pool: 0xffff94895e869530 | file object: 0xffff94895e8695b0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeploymentServer%4Restricted.evtx
pool: 0xffff94895e8696c0 | file object: 0xffff94895e869740 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\DownloadedScenarios\WINDOWS.PERFTRACKESCALATIONS.xml
pool: 0xffff94895e869850 | file object: 0xffff94895e8698d0 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\DownloadedScenarios\WINDOWS.PERFTRACKPOINTDATA.xml
pool: 0xffff94895e8699e0 | file object: 0xffff94895e869a60 | offsetby: 0x80
\Windows\System32\IDStore.dll
pool: 0xffff94895e869b70 | file object: 0xffff94895e869bf0 | offsetby: 0x80
\Windows\System32\en-US\dnsapi.dll.mui
pool: 0xffff94895e869d00 | file object: 0xffff94895e869d80 | offsetby: 0x80
\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
pool: 0xffff94895e86a020 | file object: 0xffff94895e86a0a0 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff94895e86a1b0 | file object: 0xffff94895e86a230 | offsetby: 0x80
\Windows\System32\ngcrecovery.dll
pool: 0xffff94895e86a340 | file object: 0xffff94895e86a3c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e86a4d0 | file object: 0xffff94895e86a550 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ProjectSystem.Full,version=16.6.213.44640\_package.json
pool: 0xffff94895e86a660 | file object: 0xffff94895e86a6e0 | offsetby: 0x80
\Windows\SoftwareDistribution\ReportingEvents.log
pool: 0xffff94895e86a7f0 | file object: 0xffff94895e86a870 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.VisualStudio.LanguageServices.VisualBasic.dll
pool: 0xffff94895e86a980 | file object: 0xffff94895e86aa00 | offsetby: 0x80
\Windows\System32\SyncInfrastructure.dll
pool: 0xffff94895e86ab10 | file object: 0xffff94895e86ab90 | offsetby: 0x80
\ProgramData\Microsoft\Windows\OneSettings\config.json
pool: 0xffff94895e86aca0 | file object: 0xffff94895e86ad20 | offsetby: 0x80
\$Directory
pool: 0xffff94895e86ae30 | file object: 0xffff94895e86aeb0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e86b150 | file object: 0xffff94895e86b1d0 | offsetby: 0x80
\Windows\System32\wuapi.dll
pool: 0xffff94895e86b2e0 | file object: 0xffff94895e86b360 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e86b470 | file object: 0xffff94895e86b4f0 | offsetby: 0x80
\Windows\System32\winbio.dll
pool: 0xffff94895e86b600 | file object: 0xffff94895e86b680 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e86b790 | file object: 0xffff94895e86b810 | offsetby: 0x80
\Windows\System32\dusmapi.dll
pool: 0xffff94895e86b920 | file object: 0xffff94895e86b9a0 | offsetby: 0x80
\Windows\System32\wuauclt.exe
pool: 0xffff94895e86bab0 | file object: 0xffff94895e86bb30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e86bc40 | file object: 0xffff94895e86bcc0 | offsetby: 0x80
\Windows\System32\wuaueng.dll
pool: 0xffff94895e86bdd0 | file object: 0xffff94895e86be50 | offsetby: 0x80
\Windows\System32\wbem\wmipcima.dll
pool: 0xffff94895e86c0f0 | file object: 0xffff94895e86c170 | offsetby: 0x80
\Windows\Fonts\segoeuil.ttf
pool: 0xffff94895e86c280 | file object: 0xffff94895e86c300 | offsetby: 0x80
\Windows\System32\Windows.UI.Xaml.Resources.Common.dll
pool: 0xffff94895e86c410 | file object: 0xffff94895e86c490 | offsetby: 0x80
\Windows\System32\en-US\windows.ui.xaml.dll.mui
pool: 0xffff94895e86c5a0 | file object: 0xffff94895e86c620 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{DE23FAB5-9CC8-4BFA-A543-E98ADBFB59D4}.catalogItem
pool: 0xffff94895e86c730 | file object: 0xffff94895e86c7b0 | offsetby: 0x80
\Windows\System32\wuuhext.dll
pool: 0xffff94895e86c8c0 | file object: 0xffff94895e86c940 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e86ca50 | file object: 0xffff94895e86cad0 | offsetby: 0x80
\Device\HarddiskVolume2\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\MessageData-3802a37bceb4718e3ee7b129f5824690.codeip
pool: 0xffff94895e86cbe0 | file object: 0xffff94895e86cc60 | offsetby: 0x80
\Windows\System32\msxml6.dll
pool: 0xffff94895e86cd70 | file object: 0xffff94895e86cdf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e86d090 | file object: 0xffff94895e86d110 | offsetby: 0x80
\Windows\System32\Windows.Networking.Connectivity.dll
pool: 0xffff94895e86d220 | file object: 0xffff94895e86d2a0 | offsetby: 0x80
\Windows\System32\wuuhosdeployment.dll
pool: 0xffff94895e86d3b0 | file object: 0xffff94895e86d430 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e86d540 | file object: 0xffff94895e86d5c0 | offsetby: 0x80
\Windows\System32\msxml6r.dll
pool: 0xffff94895e86d6d0 | file object: 0xffff94895e86d750 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\6649bcffbc96cc74b5993794d96425d74efbfe31
pool: 0xffff94895e86d860 | file object: 0xffff94895e86d8e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e86d9f0 | file object: 0xffff94895e86da70 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\08682483de75936d3ce4c934b6b68918d0cc081e
pool: 0xffff94895e86db80 | file object: 0xffff94895e86dc00 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\65b16f3b35ac46b965ab559b8b0f80adf7c0a69e
pool: 0xffff94895e86dd10 | file object: 0xffff94895e86dd90 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\14f11893d43da7ec2888e5fba5c4d175cf6a1081
pool: 0xffff94895e86e030 | file object: 0xffff94895e86e0b0 | offsetby: 0x80
\Windows\SysWOW64\user32.dll
pool: 0xffff94895e86e1c0 | file object: 0xffff94895e86e240 | offsetby: 0x80
\Windows\SysWOW64\mshtml.dll
pool: 0xffff94895e86e350 | file object: 0xffff94895e86e3d0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\9a3c75e9f484283f4348eb840d3273afa88743a5
pool: 0xffff94895e86e4e0 | file object: 0xffff94895e86e560 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpenginedb.db
pool: 0xffff94895e86e670 | file object: 0xffff94895e86e6f0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-HelloForBusiness%4Operational.evtx
pool: 0xffff94895e86e800 | file object: 0xffff94895e86e880 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e86e990 | file object: 0xffff94895e86ea10 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\vrYtZwzZ6iVXfSzEvX8wZMKKACQ[1].css
pool: 0xffff94895e86eb20 | file object: 0xffff94895e86eba0 | offsetby: 0x80
\Windows\System32\cryptnet.dll
pool: 0xffff94895e86ecb0 | file object: 0xffff94895e86ed30 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\ff2ad53ff238ea9589cd142dec338f965e821c63
pool: 0xffff94895e86ee40 | file object: 0xffff94895e86eec0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e86f160 | file object: 0xffff94895e86f1e0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4ConnectionSecurity.evtx
pool: 0xffff94895e86f2f0 | file object: 0xffff94895e86f370 | offsetby: 0x80
\$Directory
pool: 0xffff94895e86f480 | file object: 0xffff94895e86f500 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Windows Firewall With Advanced Security%4FirewallDiagnostics.evtx
pool: 0xffff94895e86f610 | file object: 0xffff94895e86f690 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\928957ba2f93f4e736e05214b35eee5f48866dbd
pool: 0xffff94895e86f7a0 | file object: 0xffff94895e86f820 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\5a1e1e62547ee9bfbc12cfb2d8b969debe98af3f
pool: 0xffff94895e86f930 | file object: 0xffff94895e86f9b0 | offsetby: 0x80
\Windows\SysWOW64\gdi32.dll
pool: 0xffff94895e86fac0 | file object: 0xffff94895e86fb40 | offsetby: 0x80
\Windows\System32\DeviceCredential.dll
pool: 0xffff94895e86fc50 | file object: 0xffff94895e86fcd0 | offsetby: 0x80
\Windows\SysWOW64\kernel32.dll
pool: 0xffff94895e86fde0 | file object: 0xffff94895e86fe60 | offsetby: 0x80
\$Directory
pool: 0xffff94895e870100 | file object: 0xffff94895e870180 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\55726153163cff6ef729e0c81099ff734c5cac7e
pool: 0xffff94895e870290 | file object: 0xffff94895e870310 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e870420 | file object: 0xffff94895e8704a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e8705b0 | file object: 0xffff94895e870630 | offsetby: 0x80
\Device\HarddiskVolume2\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\dbcs-data-71ef95931dd7bd96b3309249704ed46d.codedel
pool: 0xffff94895e870740 | file object: 0xffff94895e8707c0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vf5c84124#\12f8a0c30f3f1d9794020c141ff51dd3\Microsoft.VisualStudio.Language.StandardClassification.ni.dll
pool: 0xffff94895e8708d0 | file object: 0xffff94895e870950 | offsetby: 0x80
\Windows\System32\SensorsClassExtension.dll
pool: 0xffff94895e870a60 | file object: 0xffff94895e870ae0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLCommon\150\Microsoft.VisualStudio.Data.Tools.SqlCommonPackage.pkgdef
pool: 0xffff94895e870bf0 | file object: 0xffff94895e870c70 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MpAsDesc.dll
pool: 0xffff94895e870d80 | file object: 0xffff94895e870e00 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\en-US\mpasdesc.dll.mui
pool: 0xffff94895e8710a0 | file object: 0xffff94895e871120 | offsetby: 0x80
\$Directory
pool: 0xffff94895e871230 | file object: 0xffff94895e8712b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e8713c0 | file object: 0xffff94895e871440 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\f97bbf8b5f6e5e86dc4b6e8964b2aad1b38d48d2
pool: 0xffff94895e871550 | file object: 0xffff94895e8715d0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\d9bc0b64a909964ef3847999724e71b4e4689e0b
pool: 0xffff94895e8716e0 | file object: 0xffff94895e871760 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\7989b71c994d8d3767b8896aaca972aea7c67ef4
pool: 0xffff94895e871870 | file object: 0xffff94895e8718f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\5bc22bdbb24836abc15ebf79e4b248e505e09e1e
pool: 0xffff94895e871a00 | file object: 0xffff94895e871a80 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\0538c6be2c2b295ff70dc5001a07b3a84f90dde9
pool: 0xffff94895e871b90 | file object: 0xffff94895e871c10 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\b1c1e95aeca120092be61ed07c376edb7df41eb2
pool: 0xffff94895e871d20 | file object: 0xffff94895e871da0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\e0a12eb9d9e3293784def44dd375abfc487d00b7
pool: 0xffff94895e872040 | file object: 0xffff94895e8720c0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\7adfc04113b4f32893c7f45f3e0902a40bea51e2
pool: 0xffff94895e8721d0 | file object: 0xffff94895e872250 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\9df72f9442839543bcfcfd77ea51998e6d5facec
pool: 0xffff94895e872360 | file object: 0xffff94895e8723e0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\9959e503190b4c738bb263399a3f77d19fcf44f6
pool: 0xffff94895e8724f0 | file object: 0xffff94895e872570 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\169ef87ec147da0e7e2d6fbd55c4c7f1e75bfdc0
pool: 0xffff94895e872680 | file object: 0xffff94895e872700 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\f4dd8063d7f11ac6240b4535021450d5131c2d71
pool: 0xffff94895e872810 | file object: 0xffff94895e872890 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\edf238a1f3872c9bf686da657507b387cf1e60b9
pool: 0xffff94895e8729a0 | file object: 0xffff94895e872a20 | offsetby: 0x80
Ő̐䵘薲舎￿阸计舎￿幽钉￿錠惸钉￿倀x|€鋐计舎￿..鋐计舎￿\Device\HarddiskVolume2\Windows\System32\en-US\shell32.dl
pool: 0xffff94895e872b30 | file object: 0xffff94895e872bb0 | offsetby: 0x80
Ő˸⯘讣舎￿␠愕钉￿ೀ恳钉￿退xd€Ⲑ讣舎￿..Ⲑ讣舎￿\Device\HarddiskVolume2\Windows\Fonts\segoeuiz.ttfx.nodell
pool: 0xffff94895e872cc0 | file object: 0xffff94895e872d40 | offsetby: 0x80
\Windows\System32\en-US\wscsvc.dll.mui
pool: 0xffff94895e872e50 | file object: 0xffff94895e872ed0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\bc824d75fddea791959c5f9fd6dc56addd6df9ab
pool: 0xffff94895e873170 | file object: 0xffff94895e8731f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\34b5c901257e67c4a343f28f82aacaab497158ca
pool: 0xffff94895e873300 | file object: 0xffff94895e873380 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\8hRsu9RXyJK71Ev1LywFHOSyrBA[1].css
pool: 0xffff94895e873490 | file object: 0xffff94895e873510 | offsetby: 0x80
\Windows\System32\wscsvc.dll
pool: 0xffff94895e873620 | file object: 0xffff94895e8736a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e8737b0 | file object: 0xffff94895e873830 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\0a7a7b5c39f0feb5ba974681825f5a496cbffdbd
pool: 0xffff94895e873940 | file object: 0xffff94895e8739c0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\RtSigs\Data\06581cc3ac6109beebfd1a030b4189fb6cd0d9bb
pool: 0xffff94895e873ad0 | file object: 0xffff94895e873b50 | offsetby: 0x80
\Users\User\NTUSER.DAT{fd9a35db-49fe-11e9-aa2c-248a07783950}.TMContainer00000000000000000001.regtrans-ms
pool: 0xffff94895e873c60 | file object: 0xffff94895e873ce0 | offsetby: 0x80
\Windows\System32\WsmAuto.dll
pool: 0xffff94895e873df0 | file object: 0xffff94895e873e70 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.UI.winmd
pool: 0xffff94895e874110 | file object: 0xffff94895e874190 | offsetby: 0x80
\Windows\System32\SystemSettings.DataModel.dll
pool: 0xffff94895e8742a0 | file object: 0xffff94895e874320 | offsetby: 0x80
\Windows\System32\microsoft-windows-system-events.dll
pool: 0xffff94895e874430 | file object: 0xffff94895e8744b0 | offsetby: 0x80
\Windows\System32\adtschema.dll
pool: 0xffff94895e8745c0 | file object: 0xffff94895e874640 | offsetby: 0x80
\Users\User\ntuser.dat.LOG1
pool: 0xffff94895e874750 | file object: 0xffff94895e8747d0 | offsetby: 0x80
\Users\User\NTUSER.DAT{fd9a35db-49fe-11e9-aa2c-248a07783950}.TM.blf
pool: 0xffff94895e8748e0 | file object: 0xffff94895e874960 | offsetby: 0x80
\Users\User\NTUSER.DAT
pool: 0xffff94895e874a70 | file object: 0xffff94895e874af0 | offsetby: 0x80
\Windows\System32\wbem\WinMgmtR.dll
pool: 0xffff94895e874c00 | file object: 0xffff94895e874c80 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\UsrClass.dat
pool: 0xffff94895e874d90 | file object: 0xffff94895e874e10 | offsetby: 0x80
\Users\User\NTUSER.DAT{fd9a35db-49fe-11e9-aa2c-248a07783950}.TMContainer00000000000000000002.regtrans-ms
pool: 0xffff94895e8750b0 | file object: 0xffff94895e875130 | offsetby: 0x80
\Windows\System32\wevtsvc.dll
pool: 0xffff94895e875240 | file object: 0xffff94895e8752c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Vsix\Microsoft.VisualStudio.Data.Tools.Package.SqlProfile.pkgdef
pool: 0xffff94895e8753d0 | file object: 0xffff94895e875450 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e875560 | file object: 0xffff94895e8755e0 | offsetby: 0x80
\Device\HarddiskVolume2\Users\User\NTUSER.DAT{fd9a35db-49fe-11e9-aa2c-248a07783950}.TM
pool: 0xffff94895e8756f0 | file object: 0xffff94895e875770 | offsetby: 0x80
\$Directory
pool: 0xffff94895e875880 | file object: 0xffff94895e875900 | offsetby: 0x80
\ProgramData\Microsoft\Diagnosis\Sideload
pool: 0xffff94895e875a10 | file object: 0xffff94895e875a90 | offsetby: 0x80
\$ConvertToNonresident
pool: 0xffff94895e875ba0 | file object: 0xffff94895e875c20 | offsetby: 0x80
\Windows\System32\en-US\microsoft-windows-system-events.dll.mui
pool: 0xffff94895e875d30 | file object: 0xffff94895e875db0 | offsetby: 0x80
\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
pool: 0xffff94895e876050 | file object: 0xffff94895e8760d0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Crypto-DPAPI%4Operational.evtx
pool: 0xffff94895e8761e0 | file object: 0xffff94895e876260 | offsetby: 0x80
\Windows\System32\wscapi.dll
pool: 0xffff94895e876370 | file object: 0xffff94895e8763f0 | offsetby: 0x80
\Windows\System32\wbem\en-US\WinMgmtR.dll.mui
pool: 0xffff94895e876500 | file object: 0xffff94895e876580 | offsetby: 0x80
\Windows\System32\en-US\adtschema.dll.mui
pool: 0xffff94895e876690 | file object: 0xffff94895e876710 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Crypto-DPAPI%4BackUpKeySvc.evtx
pool: 0xffff94895e876820 | file object: 0xffff94895e8768a0 | offsetby: 0x80
\Device\HarddiskVolume2\Users\User\NTUSER.DAT{fd9a35db-49fe-11e9-aa2c-248a07783950}.TM
pool: 0xffff94895e8769b0 | file object: 0xffff94895e876a30 | offsetby: 0x80
\Windows\System32\win32kbase.sys
pool: 0xffff94895e876b40 | file object: 0xffff94895e876bc0 | offsetby: 0x80
\Users\User\ntuser.dat.LOG2
pool: 0xffff94895e876cd0 | file object: 0xffff94895e876d50 | offsetby: 0x80
\ProgramData\Microsoft\Windows\OneSettings\CTAC.json
pool: 0xffff94895e876e60 | file object: 0xffff94895e876ee0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e877180 | file object: 0xffff94895e877200 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e877310 | file object: 0xffff94895e877390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e8774a0 | file object: 0xffff94895e877520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e877630 | file object: 0xffff94895e8776b0 | offsetby: 0x80
\Windows\appcompat\Programs\Amcache.hve.LOG1
pool: 0xffff94895e8777c0 | file object: 0xffff94895e877840 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e877950 | file object: 0xffff94895e8779d0 | offsetby: 0x80
\Windows\System32\srumapi.dll
pool: 0xffff94895e877ae0 | file object: 0xffff94895e877b60 | offsetby: 0x80
\$Directory
pool: 0xffff94895e877c70 | file object: 0xffff94895e877cf0 | offsetby: 0x80
\Windows\System32\Windows.CloudStore.dll
pool: 0xffff94895e877e00 | file object: 0xffff94895e877e80 | offsetby: 0x80
\Windows\System32\aepic.dll
pool: 0xffff94895e878120 | file object: 0xffff94895e8781a0 | offsetby: 0x80
\Windows\appcompat\Programs\Amcache.hve.LOG2
pool: 0xffff94895e8782b0 | file object: 0xffff94895e878330 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\E7FXakBj8G9LXNbpOThzxq0XBvI[1].css
pool: 0xffff94895e878440 | file object: 0xffff94895e8784c0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG1
pool: 0xffff94895e8785d0 | file object: 0xffff94895e878650 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e878760 | file object: 0xffff94895e8787e0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\UsrClass.dat.LOG2
pool: 0xffff94895e8788f0 | file object: 0xffff94895e878970 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\UsrClass.dat{5a434228-7db9-11ea-9ed8-00155d24f4a5}.TM.blf
pool: 0xffff94895e878a80 | file object: 0xffff94895e878b00 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\UsrClass.dat{5a434228-7db9-11ea-9ed8-00155d24f4a5}.TMContainer00000000000000000001.regtrans-ms
pool: 0xffff94895e878c10 | file object: 0xffff94895e878c90 | offsetby: 0x80
\Windows\appcompat\Programs\Amcache.hve
pool: 0xffff94895e878da0 | file object: 0xffff94895e878e20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e8790c0 | file object: 0xffff94895e879140 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\UsrClass.dat{5a434228-7db9-11ea-9ed8-00155d24f4a5}.TMContainer00000000000000000002.regtrans-ms
pool: 0xffff94895e879250 | file object: 0xffff94895e8792d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e8793e0 | file object: 0xffff94895e879460 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895e879570 | file object: 0xffff94895e8795f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e879700 | file object: 0xffff94895e879780 | offsetby: 0x80
\Windows\System32\en-US\smss.exe.mui
pool: 0xffff94895e879890 | file object: 0xffff94895e879910 | offsetby: 0x80
\$Directory
pool: 0xffff94895e879a20 | file object: 0xffff94895e879aa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e879bb0 | file object: 0xffff94895e879c30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e879d40 | file object: 0xffff94895e879dc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e87a060 | file object: 0xffff94895e87a0e0 | offsetby: 0x80
\Windows\System32\shacctprofile.dll
pool: 0xffff94895e87a1f0 | file object: 0xffff94895e87a270 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync%4Operational.evtx
pool: 0xffff94895e87a380 | file object: 0xffff94895e87a400 | offsetby: 0x80
\Windows\System32\efsutil.dll
pool: 0xffff94895e87a510 | file object: 0xffff94895e87a590 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-SettingSync%4Debug.evtx
pool: 0xffff94895e87a6a0 | file object: 0xffff94895e87a720 | offsetby: 0x80
\Windows\System32\OnDemandBrokerClient.dll
pool: 0xffff94895e87a830 | file object: 0xffff94895e87a8b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e87a9c0 | file object: 0xffff94895e87aa40 | offsetby: 0x80
\Windows\System32\dllhost.exe
pool: 0xffff94895e87ab50 | file object: 0xffff94895e87abd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e87ace0 | file object: 0xffff94895e87ad60 | offsetby: 0x80
\Windows\System32\Windows.Internal.SecurityMitigationsBroker.dll
pool: 0xffff94895e87ae70 | file object: 0xffff94895e87aef0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e87b000 | file object: 0xffff94895e87b080 | offsetby: 0x80
\Windows\System32\domgmt.dll
pool: 0xffff94895e87b190 | file object: 0xffff94895e87b210 | offsetby: 0x80
\Device\HarddiskVolume2\Users\User\AppData\Local\Microsoft\Windows\UsrClass.dat{5a434228-7db9-11ea-9ed8-00155d24f4a5}.TM
pool: 0xffff94895e87b320 | file object: 0xffff94895e87b3a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e87b4b0 | file object: 0xffff94895e87b530 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e87b640 | file object: 0xffff94895e87b6c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e87b7d0 | file object: 0xffff94895e87b850 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e87b960 | file object: 0xffff94895e87b9e0 | offsetby: 0x80
\Windows\System32\en-US\lsm.dll.mui
pool: 0xffff94895e87baf0 | file object: 0xffff94895e87bb70 | offsetby: 0x80
\Windows\System32\SettingSync.dll
pool: 0xffff94895e87bc80 | file object: 0xffff94895e87bd00 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-CloudStore%4Operational.evtx
pool: 0xffff94895e87be10 | file object: 0xffff94895e87be90 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895e87c130 | file object: 0xffff94895e87c1b0 | offsetby: 0x80
\Windows\System32\en-US\winsrv.dll.mui
pool: 0xffff94895e87c2c0 | file object: 0xffff94895e87c340 | offsetby: 0x80
\Windows\System32\en-US\user32.dll.mui
pool: 0xffff94895e87c450 | file object: 0xffff94895e87c4d0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Resource-Exhaustion-Detector%4Operational.evtx
pool: 0xffff94895e87c5e0 | file object: 0xffff94895e87c660 | offsetby: 0x80
\Device\HarddiskVolume2\Users\User\AppData\Local\Microsoft\Windows\UsrClass.dat{5a434228-7db9-11ea-9ed8-00155d24f4a5}.TM
pool: 0xffff94895e87c770 | file object: 0xffff94895e87c7f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e87c900 | file object: 0xffff94895e87c980 | offsetby: 0x80
\$Directory
pool: 0xffff94895e87ca90 | file object: 0xffff94895e87cb10 | offsetby: 0x80
\Windows\System32\fhcfg.dll
pool: 0xffff94895e87cc20 | file object: 0xffff94895e87cca0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-AppXDeployment%4Operational.evtx
pool: 0xffff94895e87cdb0 | file object: 0xffff94895e87ce30 | offsetby: 0x80
\Windows\System32\AppxAllUserStore.dll
pool: 0xffff94895e87d0d0 | file object: 0xffff94895e87d150 | offsetby: 0x80
\Windows\System32\deviceaccess.dll
pool: 0xffff94895e87d260 | file object: 0xffff94895e87d2e0 | offsetby: 0x80
\Windows\System32\lxss\LxssManager.dll
pool: 0xffff94895e87d3f0 | file object: 0xffff94895e87d470 | offsetby: 0x80
\Windows\System32\DesktopShellExt.dll
pool: 0xffff94895e87d580 | file object: 0xffff94895e87d600 | offsetby: 0x80
\Windows\System32\en-US\CBDHSvc.dll.mui
pool: 0xffff94895e87d710 | file object: 0xffff94895e87d790 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e87d8a0 | file object: 0xffff94895e87d920 | offsetby: 0x80
\Windows\System32\en-US\Microsoft.Bluetooth.UserService.dll.mui
pool: 0xffff94895e87da30 | file object: 0xffff94895e87dab0 | offsetby: 0x80
\Windows\System32\CredentialEnrollmentManager.exe
pool: 0xffff94895e87dbc0 | file object: 0xffff94895e87dc40 | offsetby: 0x80
\Windows\System32\lxss\en-US\LxssManager.dll.mui
pool: 0xffff94895e87dd50 | file object: 0xffff94895e87ddd0 | offsetby: 0x80
\Windows\System32\sihost.exe
pool: 0xffff94895e87e070 | file object: 0xffff94895e87e0f0 | offsetby: 0x80
\Windows\System32\en-US\cdpusersvc.dll.mui
pool: 0xffff94895e87e200 | file object: 0xffff94895e87e280 | offsetby: 0x80
\Windows\System32\en-US\CredentialEnrollmentManager.exe.mui
pool: 0xffff94895e87e390 | file object: 0xffff94895e87e410 | offsetby: 0x80
\Windows\System32\en-US\Windows.Devices.Picker.dll.mui
pool: 0xffff94895e87e520 | file object: 0xffff94895e87e5a0 | offsetby: 0x80
\Windows\System32\ConsentUxClient.dll
pool: 0xffff94895e87e6b0 | file object: 0xffff94895e87e730 | offsetby: 0x80
\Windows\System32\en-US\ConsentUxClient.dll.mui
pool: 0xffff94895e87e840 | file object: 0xffff94895e87e8c0 | offsetby: 0x80
\Windows\System32\Windows.Devices.Picker.dll
pool: 0xffff94895e87e9d0 | file object: 0xffff94895e87ea50 | offsetby: 0x80
\Windows\System32\DevicesFlowBroker.dll
pool: 0xffff94895e87eb60 | file object: 0xffff94895e87ebe0 | offsetby: 0x80
\Windows\System32\cdpusersvc.dll
pool: 0xffff94895e87ecf0 | file object: 0xffff94895e87ed70 | offsetby: 0x80
\Windows\System32\CBDHSvc.dll
pool: 0xffff94895e87f010 | file object: 0xffff94895e87f090 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e87f1a0 | file object: 0xffff94895e87f220 | offsetby: 0x80
\Windows\System32\CaptureService.dll
pool: 0xffff94895e87f330 | file object: 0xffff94895e87f3b0 | offsetby: 0x80
\Windows\System32\Sens.dll
pool: 0xffff94895e87f4c0 | file object: 0xffff94895e87f540 | offsetby: 0x80
\Windows\System32\MessagingService.dll
pool: 0xffff94895e87f650 | file object: 0xffff94895e87f6d0 | offsetby: 0x80
\Windows\System32\en-US\MessagingService.dll.mui
pool: 0xffff94895e87f7e0 | file object: 0xffff94895e87f860 | offsetby: 0x80
\Windows\System32\AarSvc.dll
pool: 0xffff94895e87f970 | file object: 0xffff94895e87f9f0 | offsetby: 0x80
\Windows\System32\en-US\APHostRes.dll.mui
pool: 0xffff94895e87fb00 | file object: 0xffff94895e87fb80 | offsetby: 0x80
\Windows\System32\en-US\DevicesFlowBroker.dll.mui
pool: 0xffff94895e87fc90 | file object: 0xffff94895e87fd10 | offsetby: 0x80
\Windows\System32\APHostRes.dll
pool: 0xffff94895e87fe20 | file object: 0xffff94895e87fea0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e880140 | file object: 0xffff94895e8801c0 | offsetby: 0x80
\Windows\System32\en-US\CaptureService.dll.mui
pool: 0xffff94895e8802d0 | file object: 0xffff94895e880350 | offsetby: 0x80
\Windows\System32\ActivationManager.dll
pool: 0xffff94895e880460 | file object: 0xffff94895e8804e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e8805f0 | file object: 0xffff94895e880670 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e880780 | file object: 0xffff94895e880800 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895e880910 | file object: 0xffff94895e880990 | offsetby: 0x80
\Windows\System32\WpnUserService.dll
pool: 0xffff94895e880aa0 | file object: 0xffff94895e880b20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e880c30 | file object: 0xffff94895e880cb0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e880dc0 | file object: 0xffff94895e880e40 | offsetby: 0x80
\Windows\System32\en-US\UserDataAccessRes.dll.mui
pool: 0xffff94895e8810e0 | file object: 0xffff94895e881160 | offsetby: 0x80
\Windows\System32\en-US\PrintWorkflowService.dll.mui
pool: 0xffff94895e881400 | file object: 0xffff94895e881480 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e881590 | file object: 0xffff94895e881610 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e881720 | file object: 0xffff94895e8817a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e8818b0 | file object: 0xffff94895e881930 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e881a40 | file object: 0xffff94895e881ac0 | offsetby: 0x80
\Windows\System32\en-US\WpnUserService.dll.mui
pool: 0xffff94895e881bd0 | file object: 0xffff94895e881c50 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e881d60 | file object: 0xffff94895e881de0 | offsetby: 0x80
\$Directory
pool: 0xffff94895e882080 | file object: 0xffff94895e882100 | offsetby: 0x80
\Users\User\AppData\Local\ConnectedDevicesPlatform\CDPGlobalSettings.cdp
pool: 0xffff94895e882210 | file object: 0xffff94895e882290 | offsetby: 0x80
\Windows\System32\UserDataAccessRes.dll
pool: 0xffff94895e8823a0 | file object: 0xffff94895e882420 | offsetby: 0x80
\Windows\System32\PrintWorkflowService.dll
pool: 0xffff94895e882530 | file object: 0xffff94895e8825b0 | offsetby: 0x80
\Windows\System32\Windows.Shell.ServiceHostBuilder.dll
pool: 0xffff94895e8826c0 | file object: 0xffff94895e882740 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895e882850 | file object: 0xffff94895e8828d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e8829e0 | file object: 0xffff94895e882a60 | offsetby: 0x80
\Windows\System32\ClipboardServer.dll
pool: 0xffff94895e882b70 | file object: 0xffff94895e882bf0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e882d00 | file object: 0xffff94895e882d80 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e883020 | file object: 0xffff94895e8830a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e8831b0 | file object: 0xffff94895e883230 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895e883340 | file object: 0xffff94895e8833c0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895e8834d0 | file object: 0xffff94895e883550 | offsetby: 0x80
\Windows\System32\taskhostw.exe
pool: 0xffff94895e883660 | file object: 0xffff94895e8836e0 | offsetby: 0x80
\Windows\System32\Windows.Security.Authentication.Web.Core.dll
pool: 0xffff94895e8837f0 | file object: 0xffff94895e883870 | offsetby: 0x80
\Windows\System32\en-US\TokenBroker.dll.mui
pool: 0xffff94895e883980 | file object: 0xffff94895e883a00 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895e883b10 | file object: 0xffff94895e883b90 | offsetby: 0x80
\$Directory
pool: 0xffff94895e883ca0 | file object: 0xffff94895e883d20 | offsetby: 0x80
\Windows\System32\TokenBroker.dll
pool: 0xffff94895e883e30 | file object: 0xffff94895e883eb0 | offsetby: 0x80
\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll
pool: 0xffff94895eb043f0 | file object: 0xffff94895eb04450 | offsetby: 0x60
\Windows\System32\drivers\p9rdr.sys
pool: 0xffff94895eb046d0 | file object: 0xffff94895eb04730 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895eb04c90 | file object: 0xffff94895eb04cf0 | offsetby: 0x60
[NOT READABLE]
pool: 0xffff94895eb25210 | file object: 0xffff94895eb25270 | offsetby: 0x60
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Desktop-Required-Package0412~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff94895eb650d0 | file object: 0xffff94895eb65150 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb65260 | file object: 0xffff94895eb652e0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Internet Explorer\MSIMGSIZ.DAT
pool: 0xffff94895eb653f0 | file object: 0xffff94895eb65470 | offsetby: 0x80
\Windows\System32\upshared.dll
pool: 0xffff94895eb65580 | file object: 0xffff94895eb65600 | offsetby: 0x80
\Windows\System32\modernexecserver.dll
pool: 0xffff94895eb65710 | file object: 0xffff94895eb65790 | offsetby: 0x80
\Windows\System32\tokenbinding.dll
pool: 0xffff94895eb658a0 | file object: 0xffff94895eb65920 | offsetby: 0x80
\Windows\SysWOW64\wkscli.dll
pool: 0xffff94895eb65a30 | file object: 0xffff94895eb65ab0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895eb65bc0 | file object: 0xffff94895eb65c40 | offsetby: 0x80
\Windows\SysWOW64\DataExchange.dll
pool: 0xffff94895eb65d50 | file object: 0xffff94895eb65dd0 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-0B3A9016.pf
pool: 0xffff94895eb66070 | file object: 0xffff94895eb660f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb66200 | file object: 0xffff94895eb66280 | offsetby: 0x80
\Windows\System32\AppointmentActivation.dll
pool: 0xffff94895eb66390 | file object: 0xffff94895eb66410 | offsetby: 0x80
\Windows\System32\en-US\MsCtfMonitor.dll.mui
pool: 0xffff94895eb66520 | file object: 0xffff94895eb665a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb666b0 | file object: 0xffff94895eb66730 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb66840 | file object: 0xffff94895eb668c0 | offsetby: 0x80
\Windows\System32\msutb.dll
pool: 0xffff94895eb669d0 | file object: 0xffff94895eb66a50 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895eb66b60 | file object: 0xffff94895eb66be0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb66cf0 | file object: 0xffff94895eb66d70 | offsetby: 0x80
\Windows\System32\OneCoreCommonProxyStub.dll
pool: 0xffff94895eb67010 | file object: 0xffff94895eb67090 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895eb671a0 | file object: 0xffff94895eb67220 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895eb67330 | file object: 0xffff94895eb673b0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895eb674c0 | file object: 0xffff94895eb67540 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb67650 | file object: 0xffff94895eb676d0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895eb677e0 | file object: 0xffff94895eb67860 | offsetby: 0x80
\Windows\System32\PlaySndSrv.dll
pool: 0xffff94895eb67970 | file object: 0xffff94895eb679f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb67b00 | file object: 0xffff94895eb67b80 | offsetby: 0x80
\Windows\System32\en-US\taskhostw.exe.mui
pool: 0xffff94895eb67c90 | file object: 0xffff94895eb67d10 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.dll
pool: 0xffff94895eb67e20 | file object: 0xffff94895eb67ea0 | offsetby: 0x80
\Windows\System32\MsCtfMonitor.dll
pool: 0xffff94895eb68140 | file object: 0xffff94895eb681c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb682d0 | file object: 0xffff94895eb68350 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb68460 | file object: 0xffff94895eb684e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb685f0 | file object: 0xffff94895eb68670 | offsetby: 0x80
\Windows\System32\TabSvc.dll
pool: 0xffff94895eb68780 | file object: 0xffff94895eb68800 | offsetby: 0x80
\Windows\System32\notificationplatformcomponent.dll
pool: 0xffff94895eb68910 | file object: 0xffff94895eb68990 | offsetby: 0x80
\Windows\System32\AppContracts.dll
pool: 0xffff94895eb68aa0 | file object: 0xffff94895eb68b20 | offsetby: 0x80
\Windows\System32\ACPBackgroundManagerPolicy.dll
pool: 0xffff94895eb68c30 | file object: 0xffff94895eb68cb0 | offsetby: 0x80
\Windows\System32\InputService.dll
pool: 0xffff94895eb68dc0 | file object: 0xffff94895eb68e40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb690e0 | file object: 0xffff94895eb69160 | offsetby: 0x80
\Windows\System32\WindowManagement.dll
pool: 0xffff94895eb69270 | file object: 0xffff94895eb692f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb69400 | file object: 0xffff94895eb69480 | offsetby: 0x80
\Windows\System32\en-US\TabSvc.dll.mui
pool: 0xffff94895eb69590 | file object: 0xffff94895eb69610 | offsetby: 0x80
\Users\User\AppData\Local\ConnectedDevicesPlatform\L.User.cdpresource
pool: 0xffff94895eb69720 | file object: 0xffff94895eb697a0 | offsetby: 0x80
\Windows\System32\Windows.StateRepositoryBroker.dll
pool: 0xffff94895eb698b0 | file object: 0xffff94895eb69930 | offsetby: 0x80
\Windows\System32\ctfmon.exe
pool: 0xffff94895eb69a40 | file object: 0xffff94895eb69ac0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895eb69bd0 | file object: 0xffff94895eb69c50 | offsetby: 0x80
\Windows\System32\wlidprov.dll
pool: 0xffff94895eb69d60 | file object: 0xffff94895eb69de0 | offsetby: 0x80
\Windows\System32\en-US\ctfmon.exe.mui
pool: 0xffff94895eb6a080 | file object: 0xffff94895eb6a100 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895eb6a210 | file object: 0xffff94895eb6a290 | offsetby: 0x80
\Windows\System32\Windows.System.Launcher.dll
pool: 0xffff94895eb6a3a0 | file object: 0xffff94895eb6a420 | offsetby: 0x80
\Windows\System32\PackageStateChangeHandler.dll
pool: 0xffff94895eb6a530 | file object: 0xffff94895eb6a5b0 | offsetby: 0x80
\Windows\System32\Windows.Networking.BackgroundTransfer.BackgroundManagerPolicy.dll
pool: 0xffff94895eb6a6c0 | file object: 0xffff94895eb6a740 | offsetby: 0x80
\Windows\System32\twinui.appcore.dll
pool: 0xffff94895eb6a850 | file object: 0xffff94895eb6a8d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb6a9e0 | file object: 0xffff94895eb6aa60 | offsetby: 0x80
\Windows\System32\UiaManager.dll
pool: 0xffff94895eb6ab70 | file object: 0xffff94895eb6abf0 | offsetby: 0x80
\Windows\System32\execmodelproxy.dll
pool: 0xffff94895eb6ad00 | file object: 0xffff94895eb6ad80 | offsetby: 0x80
\Windows\System32\TextInputMethodFormatter.dll
pool: 0xffff94895eb6b020 | file object: 0xffff94895eb6b0a0 | offsetby: 0x80
\Windows\System32\ShareHost.dll
pool: 0xffff94895eb6b1b0 | file object: 0xffff94895eb6b230 | offsetby: 0x80
\Windows\System32\BackgroundMediaPolicy.dll
pool: 0xffff94895eb6b340 | file object: 0xffff94895eb6b3c0 | offsetby: 0x80
\Windows\System32\srpapi.dll
pool: 0xffff94895eb6b4d0 | file object: 0xffff94895eb6b550 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb6b660 | file object: 0xffff94895eb6b6e0 | offsetby: 0x80
\Windows\System32\mssrch.dll
pool: 0xffff94895eb6b7f0 | file object: 0xffff94895eb6b870 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb6b980 | file object: 0xffff94895eb6ba00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895eb6bb10 | file object: 0xffff94895eb6bb90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895eb6bca0 | file object: 0xffff94895eb6bd20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb6be30 | file object: 0xffff94895eb6beb0 | offsetby: 0x80
\Windows\System32\daxexec.dll
pool: 0xffff94895eb6c150 | file object: 0xffff94895eb6c1d0 | offsetby: 0x80
\Windows\System32\InputLocaleManager.dll
pool: 0xffff94895eb6c2e0 | file object: 0xffff94895eb6c360 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb6c470 | file object: 0xffff94895eb6c4f0 | offsetby: 0x80
\Windows\System32\CoreShellExtFramework.dll
pool: 0xffff94895eb6c600 | file object: 0xffff94895eb6c680 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\History\Results\Quick\{38D9A220-6110-4661-9895-6AA5C39BE7AF}
pool: 0xffff94895eb6c790 | file object: 0xffff94895eb6c810 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb6c920 | file object: 0xffff94895eb6c9a0 | offsetby: 0x80
\Windows\System32\MTF.dll
pool: 0xffff94895eb6cab0 | file object: 0xffff94895eb6cb30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb6cc40 | file object: 0xffff94895eb6ccc0 | offsetby: 0x80
\Windows\System32\tquery.dll
pool: 0xffff94895eb6cdd0 | file object: 0xffff94895eb6ce50 | offsetby: 0x80
\Windows\System32\SmartCardBackgroundPolicy.dll
pool: 0xffff94895eb6d0f0 | file object: 0xffff94895eb6d170 | offsetby: 0x80
\Windows\System32\keyiso.dll
pool: 0xffff94895eb6d280 | file object: 0xffff94895eb6d300 | offsetby: 0x80
\Windows\System32\en-US\keyiso.dll.mui
pool: 0xffff94895eb6d410 | file object: 0xffff94895eb6d490 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Crypto\Keys\de7cf8a7901d2ad13e5c67c29e5d1662_373ee86b-ec20-4082-94ac-039dcac01c17
pool: 0xffff94895eb6d5a0 | file object: 0xffff94895eb6d620 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb6d730 | file object: 0xffff94895eb6d7b0 | offsetby: 0x80
\Windows\System32\container.dll
pool: 0xffff94895eb6d8c0 | file object: 0xffff94895eb6d940 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Protect\S-1-5-21-3234566417-3121902272-2793192418-1001\2851a24d-bb2f-40f9-b64f-15d9e46e6cff
pool: 0xffff94895eb6da50 | file object: 0xffff94895eb6dad0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Protect\CREDHIST
pool: 0xffff94895eb6dbe0 | file object: 0xffff94895eb6dc60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb6dd70 | file object: 0xffff94895eb6ddf0 | offsetby: 0x80
\Windows\System32\MTFServer.dll
pool: 0xffff94895eb6e090 | file object: 0xffff94895eb6e110 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb6e220 | file object: 0xffff94895eb6e2a0 | offsetby: 0x80
\Windows\System32\en-US\datamap.0409.dat
pool: 0xffff94895eb6e3b0 | file object: 0xffff94895eb6e430 | offsetby: 0x80
\Users\User\AppData\Local\ConnectedDevicesPlatform\Connected Devices Platform certificates.sst
pool: 0xffff94895eb6e540 | file object: 0xffff94895eb6e5c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb6e6d0 | file object: 0xffff94895eb6e750 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb6e860 | file object: 0xffff94895eb6e8e0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\UPPS\UPPS.bin
pool: 0xffff94895eb6e9f0 | file object: 0xffff94895eb6ea70 | offsetby: 0x80
\Windows\System32\wshbth.dll
pool: 0xffff94895eb6eb80 | file object: 0xffff94895eb6ec00 | offsetby: 0x80
\Windows\System32\en-US\userinit.exe.mui
pool: 0xffff94895eb6ed10 | file object: 0xffff94895eb6ed90 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.XboxIdentityProvider_12.64.28001.0_x64__8wekyb3d8bbwe\resources.pri
pool: 0xffff94895eb6f030 | file object: 0xffff94895eb6f0b0 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\AppData\Local\ConnectedDevicesPlatform\CDPGlobalSettings.cdp
pool: 0xffff94895eb6f1c0 | file object: 0xffff94895eb6f240 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\AppData\Local\ConnectedDevicesPlatform\Connected Devices Platform certificates.sst
pool: 0xffff94895eb6f350 | file object: 0xffff94895eb6f3d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb6f4e0 | file object: 0xffff94895eb6f560 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\AppData\Roaming\Microsoft\Crypto\Keys\de7cf8a7901d2ad13e5c67c29e5d1662_373ee86b-ec20-4082-94ac-039dcac01c17
pool: 0xffff94895eb6f670 | file object: 0xffff94895eb6f6f0 | offsetby: 0x80
\Windows\System32\userinitext.dll
pool: 0xffff94895eb6f800 | file object: 0xffff94895eb6f880 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff94895eb6f990 | file object: 0xffff94895eb6fa10 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff94895eb6fb20 | file object: 0xffff94895eb6fba0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895eb6fcb0 | file object: 0xffff94895eb6fd30 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb6fe40 | file object: 0xffff94895eb6fec0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Safety\shell\remote\script_336273089957297446437176090113554533354.rel.v2
pool: 0xffff94895eb70160 | file object: 0xffff94895eb701e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb702f0 | file object: 0xffff94895eb70370 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895eb70480 | file object: 0xffff94895eb70500 | offsetby: 0x80
\Windows\System32\vaultcli.dll
pool: 0xffff94895eb70610 | file object: 0xffff94895eb70690 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb707a0 | file object: 0xffff94895eb70820 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb70930 | file object: 0xffff94895eb709b0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\e2afd15b81ad9e33c4e89e5911ae01485d9fadf7\e2afd15b81ad9e33c4e89e5911ae01485d9fadf7.pieceshash
pool: 0xffff94895eb70ac0 | file object: 0xffff94895eb70b40 | offsetby: 0x80
\Windows\System32\userinit.exe
pool: 0xffff94895eb70c50 | file object: 0xffff94895eb70cd0 | offsetby: 0x80
\Windows\System32\sbservicetrigger.dll
pool: 0xffff94895eb70de0 | file object: 0xffff94895eb70e60 | offsetby: 0x80
\ProgramData\Microsoft\Windows Security Health\Logs\SHS-06032020-232121-7-3f-18362.1.amd64fre.19h1_release.190318-1202.etl
pool: 0xffff94895eb71100 | file object: 0xffff94895eb71180 | offsetby: 0x80
\Windows\System32\en-US\cdpsvc.dll.mui
pool: 0xffff94895eb71290 | file object: 0xffff94895eb71310 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895eb71420 | file object: 0xffff94895eb714a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb715b0 | file object: 0xffff94895eb71630 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb71740 | file object: 0xffff94895eb717c0 | offsetby: 0x80
\Windows\System32\cdpsvc.dll
pool: 0xffff94895eb718d0 | file object: 0xffff94895eb71950 | offsetby: 0x80
\Windows\explorer.exe
pool: 0xffff94895eb71a60 | file object: 0xffff94895eb71ae0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Caches\cversions.1.db
pool: 0xffff94895eb71bf0 | file object: 0xffff94895eb71c70 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895eb71d80 | file object: 0xffff94895eb71e00 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000007.db
pool: 0xffff94895eb720a0 | file object: 0xffff94895eb72120 | offsetby: 0x80
\Windows\en-US\explorer.exe.mui
pool: 0xffff94895eb72230 | file object: 0xffff94895eb722b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb723c0 | file object: 0xffff94895eb72440 | offsetby: 0x80
\Windows\System32\AppResolver.dll
pool: 0xffff94895eb72550 | file object: 0xffff94895eb725d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb726e0 | file object: 0xffff94895eb72760 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb72870 | file object: 0xffff94895eb728f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb72a00 | file object: 0xffff94895eb72a80 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb72b90 | file object: 0xffff94895eb72c10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb72d20 | file object: 0xffff94895eb72da0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\desktop.ini
pool: 0xffff94895eb73040 | file object: 0xffff94895eb730c0 | offsetby: 0x80
\Windows\System32\twinapi.dll
pool: 0xffff94895eb731d0 | file object: 0xffff94895eb73250 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb73360 | file object: 0xffff94895eb733e0 | offsetby: 0x80
\Users\User\Music\desktop.ini
pool: 0xffff94895eb734f0 | file object: 0xffff94895eb73570 | offsetby: 0x80
\Users\User\Pictures\desktop.ini
pool: 0xffff94895eb73680 | file object: 0xffff94895eb73700 | offsetby: 0x80
\Users\User\Downloads\desktop.ini
pool: 0xffff94895eb73810 | file object: 0xffff94895eb73890 | offsetby: 0x80
\Users\User\OneDrive\desktop.ini
pool: 0xffff94895eb739a0 | file object: 0xffff94895eb73a20 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\desktop.ini
pool: 0xffff94895eb73b30 | file object: 0xffff94895eb73bb0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu\desktop.ini
pool: 0xffff94895eb73cc0 | file object: 0xffff94895eb73d40 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu\Programs\desktop.ini
pool: 0xffff94895eb73e50 | file object: 0xffff94895eb73ed0 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb74170 | file object: 0xffff94895eb741f0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895eb74300 | file object: 0xffff94895eb74380 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb74490 | file object: 0xffff94895eb74510 | offsetby: 0x80
\Users\User\Videos\desktop.ini
pool: 0xffff94895eb74620 | file object: 0xffff94895eb746a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb747b0 | file object: 0xffff94895eb74830 | offsetby: 0x80
\Users\User\Documents\desktop.ini
pool: 0xffff94895eb74940 | file object: 0xffff94895eb749c0 | offsetby: 0x80
\Users\User\Desktop\desktop.ini
pool: 0xffff94895eb74ad0 | file object: 0xffff94895eb74b50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb74c60 | file object: 0xffff94895eb74ce0 | offsetby: 0x80
\Windows\System32\windows.immersiveshell.serviceprovider.dll
pool: 0xffff94895eb74df0 | file object: 0xffff94895eb74e70 | offsetby: 0x80
\Windows\System32\themeui.dll
pool: 0xffff94895eb75110 | file object: 0xffff94895eb75190 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895eb752a0 | file object: 0xffff94895eb75320 | offsetby: 0x80
\Windows\System32\en-US\oleaccrc.dll.mui
pool: 0xffff94895eb75430 | file object: 0xffff94895eb754b0 | offsetby: 0x80
\Windows\System32\en-US\ie4uinit.exe.mui
pool: 0xffff94895eb755c0 | file object: 0xffff94895eb75640 | offsetby: 0x80
\Windows\System32\en-US\themeui.dll.mui
pool: 0xffff94895eb75750 | file object: 0xffff94895eb757d0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895eb758e0 | file object: 0xffff94895eb75960 | offsetby: 0x80
\Windows\System32\en-US\propsys.dll.mui
pool: 0xffff94895eb75a70 | file object: 0xffff94895eb75af0 | offsetby: 0x80
\Windows\System32\SettingSyncCore.dll
pool: 0xffff94895eb75c00 | file object: 0xffff94895eb75c80 | offsetby: 0x80
\Windows\System32\twinui.pcshell.dll
pool: 0xffff94895eb75d90 | file object: 0xffff94895eb75e10 | offsetby: 0x80
\Windows\System32\TileDataRepository.dll
pool: 0xffff94895eb760b0 | file object: 0xffff94895eb76130 | offsetby: 0x80
\Windows\System32\en-US\shell32.dll.mui
pool: 0xffff94895eb76240 | file object: 0xffff94895eb762c0 | offsetby: 0x80
\Windows\System32\oleaccrc.dll
pool: 0xffff94895eb763d0 | file object: 0xffff94895eb76450 | offsetby: 0x80
\Windows\Fonts\segmdl2.ttf
pool: 0xffff94895eb76560 | file object: 0xffff94895eb765e0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Caches\cversions.3.db
pool: 0xffff94895eb766f0 | file object: 0xffff94895eb76770 | offsetby: 0x80
\Windows\System32\SndVolSSO.dll
pool: 0xffff94895eb76880 | file object: 0xffff94895eb76900 | offsetby: 0x80
\Windows\Fonts\StaticCache.dat
pool: 0xffff94895eb76a10 | file object: 0xffff94895eb76a90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb76ba0 | file object: 0xffff94895eb76c20 | offsetby: 0x80
\Windows\System32\wmploc.DLL
pool: 0xffff94895eb76d30 | file object: 0xffff94895eb76db0 | offsetby: 0x80
\Windows\System32\StartTileData.dll
pool: 0xffff94895eb77050 | file object: 0xffff94895eb770d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb771e0 | file object: 0xffff94895eb77260 | offsetby: 0x80
\Windows\System32\DataExchange.dll
pool: 0xffff94895eb77370 | file object: 0xffff94895eb773f0 | offsetby: 0x80
\Users\Public\Desktop\desktop.ini
pool: 0xffff94895eb77500 | file object: 0xffff94895eb77580 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895eb77690 | file object: 0xffff94895eb77710 | offsetby: 0x80
\Windows\System32\en-US\wmploc.DLL.mui
pool: 0xffff94895eb77820 | file object: 0xffff94895eb778a0 | offsetby: 0x80
\Windows\System32\oleacc.dll
pool: 0xffff94895eb779b0 | file object: 0xffff94895eb77a30 | offsetby: 0x80
\Windows\System32\ie4uinit.exe
pool: 0xffff94895eb77b40 | file object: 0xffff94895eb77bc0 | offsetby: 0x80
\Windows\System32\ExplorerFrame.dll
pool: 0xffff94895eb77cd0 | file object: 0xffff94895eb77d50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895eb77e60 | file object: 0xffff94895eb77ee0 | offsetby: 0x80
\Windows\ImmersiveControlPanel\pris\resources.en-US.pri
pool: 0xffff94895eb78180 | file object: 0xffff94895eb78200 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895eb78310 | file object: 0xffff94895eb78390 | offsetby: 0x80
\Windows\ImmersiveControlPanel\resources.pri
pool: 0xffff94895eb784a0 | file object: 0xffff94895eb78520 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb78630 | file object: 0xffff94895eb786b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb787c0 | file object: 0xffff94895eb78840 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb78950 | file object: 0xffff94895eb789d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb78ae0 | file object: 0xffff94895eb78b60 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895eb78c70 | file object: 0xffff94895eb78cf0 | offsetby: 0x80
\Windows\System32\Windows.Security.Authentication.OnlineId.dll
pool: 0xffff94895eb78e00 | file object: 0xffff94895eb78e80 | offsetby: 0x80
\Windows\System32\cldapi.dll
pool: 0xffff94895eb79120 | file object: 0xffff94895eb791a0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895eb792b0 | file object: 0xffff94895eb79330 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_16.db
pool: 0xffff94895eb79440 | file object: 0xffff94895eb794c0 | offsetby: 0x80
\Windows\rescache\_merged\2421516671\1474517922.pri
pool: 0xffff94895eb795d0 | file object: 0xffff94895eb79650 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_idx.db
pool: 0xffff94895eb79760 | file object: 0xffff94895eb797e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895eb798f0 | file object: 0xffff94895eb79970 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb79a80 | file object: 0xffff94895eb79b00 | offsetby: 0x80
\Windows\System32\edputil.dll
pool: 0xffff94895eb79c10 | file object: 0xffff94895eb79c90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\CPUSampling\Microsoft.DiagnosticsHub.CpuSampling.pkgdef
pool: 0xffff94895eb79da0 | file object: 0xffff94895eb79e20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895eb7a0c0 | file object: 0xffff94895eb7a140 | offsetby: 0x80
\Windows\SystemResources\shsvcs.dll.mun
pool: 0xffff94895eb7a250 | file object: 0xffff94895eb7a2d0 | offsetby: 0x80
\Windows\System32\thumbcache.dll
pool: 0xffff94895eb7a3e0 | file object: 0xffff94895eb7a460 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4ActionCenter.evtx
pool: 0xffff94895eb7a570 | file object: 0xffff94895eb7a5f0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4Operational.evtx
pool: 0xffff94895eb7a700 | file object: 0xffff94895eb7a780 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4AppDefaults.evtx
pool: 0xffff94895eb7a890 | file object: 0xffff94895eb7a910 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-Core%4LogonTasksChannel.evtx
pool: 0xffff94895eb7aa20 | file object: 0xffff94895eb7aaa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895eb7abb0 | file object: 0xffff94895eb7ac30 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb7ad40 | file object: 0xffff94895eb7adc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895eb7b060 | file object: 0xffff94895eb7b0e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb7b1f0 | file object: 0xffff94895eb7b270 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\e2afd15b81ad9e33c4e89e5911ae01485d9fadf7\47f30b515a1536f0ce55897ebcfee8b7e3c6fb60ad1761b502fbcf58eb79b45e
pool: 0xffff94895eb7b380 | file object: 0xffff94895eb7b400 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb7b510 | file object: 0xffff94895eb7b590 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\ParallelDebugger\GpuDebugEngine.pkgdef
pool: 0xffff94895eb7b6a0 | file object: 0xffff94895eb7b720 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{5D517814-A895-4CD6-B12E-471699AB34E6}.catalogItem
pool: 0xffff94895eb7b830 | file object: 0xffff94895eb7b8b0 | offsetby: 0x80
\Windows\System32\en-US\WLIDSvc.dll.mui
pool: 0xffff94895eb7b9c0 | file object: 0xffff94895eb7ba40 | offsetby: 0x80
\Users\User\AppData\Local\IconCache.db
pool: 0xffff94895eb7bb50 | file object: 0xffff94895eb7bbd0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\iconcache_48.db
pool: 0xffff94895eb7bce0 | file object: 0xffff94895eb7bd60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\TreeNavigation\Microsoft.VisualStudio.Shell.TreeNavigation.HierarchyProvider.pkgdef
pool: 0xffff94895eb7be70 | file object: 0xffff94895eb7bef0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895eb7c000 | file object: 0xffff94895eb7c080 | offsetby: 0x80
\Windows\System32\ntshrui.dll
pool: 0xffff94895eb7c190 | file object: 0xffff94895eb7c210 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895eb7c320 | file object: 0xffff94895eb7c3a0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Themes\CachedFiles\CachedImage_1920_1015_POS4.jpg
pool: 0xffff94895eb7c4b0 | file object: 0xffff94895eb7c530 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb7c640 | file object: 0xffff94895eb7c6c0 | offsetby: 0x80
\Windows\System32\wlidres.dll
pool: 0xffff94895eb7c7d0 | file object: 0xffff94895eb7c850 | offsetby: 0x80
\Windows\SysWOW64\d3d11.dll
pool: 0xffff94895eb7c960 | file object: 0xffff94895eb7c9e0 | offsetby: 0x80
\Windows\System32\wlidsvc.dll
pool: 0xffff94895eb7caf0 | file object: 0xffff94895eb7cb70 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_48.db
pool: 0xffff94895eb7cc80 | file object: 0xffff94895eb7cd00 | offsetby: 0x80
\Users\Public\desktop.ini
pool: 0xffff94895eb7ce10 | file object: 0xffff94895eb7ce90 | offsetby: 0x80
\Windows\System32\twinui.dll
pool: 0xffff94895eb7d130 | file object: 0xffff94895eb7d1b0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-LiveId%4Operational.evtx
pool: 0xffff94895eb7d2c0 | file object: 0xffff94895eb7d340 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff94895eb7d450 | file object: 0xffff94895eb7d4d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895eb7d5e0 | file object: 0xffff94895eb7d660 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895eb7d770 | file object: 0xffff94895eb7d7f0 | offsetby: 0x80
\Windows\System32\ApplicationFrame.dll
pool: 0xffff94895eb7d900 | file object: 0xffff94895eb7d980 | offsetby: 0x80
\Windows\System32\en-US\imageres.dll.mui
pool: 0xffff94895eb7da90 | file object: 0xffff94895eb7db10 | offsetby: 0x80
\Windows\System32\imageres.dll
pool: 0xffff94895eb7dc20 | file object: 0xffff94895eb7dca0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\iconcache_idx.db
pool: 0xffff94895eb7ddb0 | file object: 0xffff94895eb7de30 | offsetby: 0x80
\Users\desktop.ini
pool: 0xffff94895eb7e0d0 | file object: 0xffff94895eb7e150 | offsetby: 0x80
\Users\User\Desktop\Windows Dev Center.url
pool: 0xffff94895eb7e260 | file object: 0xffff94895eb7e2e0 | offsetby: 0x80
\Users\User\Contacts\desktop.ini
pool: 0xffff94895eb7e3f0 | file object: 0xffff94895eb7e470 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb7e580 | file object: 0xffff94895eb7e600 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb7e710 | file object: 0xffff94895eb7e790 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb7e8a0 | file object: 0xffff94895eb7e920 | offsetby: 0x80
\Windows\SysWOW64\dxgi.dll
pool: 0xffff94895eb7ea30 | file object: 0xffff94895eb7eab0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb7ebc0 | file object: 0xffff94895eb7ec40 | offsetby: 0x80
\Windows\SysWOW64\DXCore.dll
pool: 0xffff94895eb7ed50 | file object: 0xffff94895eb7edd0 | offsetby: 0x80
\Users\User\Searches\desktop.ini
pool: 0xffff94895eb7f070 | file object: 0xffff94895eb7f0f0 | offsetby: 0x80
\Users\User\Desktop\Microsoft Edge.lnk
pool: 0xffff94895eb7f200 | file object: 0xffff94895eb7f280 | offsetby: 0x80
\Windows\SysWOW64\msIso.dll
pool: 0xffff94895eb7f390 | file object: 0xffff94895eb7f410 | offsetby: 0x80
\Users\User\Saved Games\desktop.ini
pool: 0xffff94895eb7f520 | file object: 0xffff94895eb7f5a0 | offsetby: 0x80
\Windows\System32\msIso.dll
pool: 0xffff94895eb7f6b0 | file object: 0xffff94895eb7f730 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\clojure\package.json}.MANIFESTols.mui
pool: 0xffff94895eb7f840 | file object: 0xffff94895eb7f8c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb7f9d0 | file object: 0xffff94895eb7fa50 | offsetby: 0x80
\Users\User\Favorites\desktop.ini
pool: 0xffff94895eb7fb60 | file object: 0xffff94895eb7fbe0 | offsetby: 0x80
\Windows\SysWOW64\dcomp.dll
pool: 0xffff94895eb7fcf0 | file object: 0xffff94895eb7fd70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895eb80010 | file object: 0xffff94895eb80090 | offsetby: 0x80
\Windows\System32\linkinfo.dll
pool: 0xffff94895eb801a0 | file object: 0xffff94895eb80220 | offsetby: 0x80
\Windows\System32\ieframe.dll
pool: 0xffff94895eb80330 | file object: 0xffff94895eb803b0 | offsetby: 0x80
\Windows\System32\en-US\ieframe.dll.mui
pool: 0xffff94895eb804c0 | file object: 0xffff94895eb80540 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895eb80650 | file object: 0xffff94895eb806d0 | offsetby: 0x80
\Users\User\Desktop\Visual Studio 2019.lnk
pool: 0xffff94895eb807e0 | file object: 0xffff94895eb80860 | offsetby: 0x80
\ProgramData\Microsoft\IdentityCRL\production\wlidsvcconfig.xml
pool: 0xffff94895eb80970 | file object: 0xffff94895eb809f0 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\edb.jtx
pool: 0xffff94895eb80b00 | file object: 0xffff94895eb80b80 | offsetby: 0x80
\Program Files (x86)\desktop.ini
pool: 0xffff94895eb80c90 | file object: 0xffff94895eb80d10 | offsetby: 0x80
\Users\User\Links\desktop.ini
pool: 0xffff94895eb80e20 | file object: 0xffff94895eb80ea0 | offsetby: 0x80
\Users\User\Desktop\Visual Studio Code.lnk
pool: 0xffff94895eb81140 | file object: 0xffff94895eb811c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb812d0 | file object: 0xffff94895eb81350 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\amd64\FileSyncShell64.dll
pool: 0xffff94895eb81460 | file object: 0xffff94895eb814e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb815f0 | file object: 0xffff94895eb81670 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895eb81780 | file object: 0xffff94895eb81800 | offsetby: 0x80
\Windows\System32\EhStorShell.dll
pool: 0xffff94895eb81910 | file object: 0xffff94895eb81990 | offsetby: 0x80
\Windows\System32\cscui.dll
pool: 0xffff94895eb81aa0 | file object: 0xffff94895eb81b20 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb81c30 | file object: 0xffff94895eb81cb0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{B4507C69-3348-4271-AE07-5D5041555910}.catalogItem
pool: 0xffff94895eb81dc0 | file object: 0xffff94895eb81e40 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{E911846A-C806-4AFD-996E-3BA648394219}.catalogItem
pool: 0xffff94895eb820e0 | file object: 0xffff94895eb82160 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895eb82270 | file object: 0xffff94895eb822f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895eb82400 | file object: 0xffff94895eb82480 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895eb82590 | file object: 0xffff94895eb82610 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb82720 | file object: 0xffff94895eb827a0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{815709EB-54A1-4916-8668-AB029091690B}.catalogItem
pool: 0xffff94895eb828b0 | file object: 0xffff94895eb82930 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb82a40 | file object: 0xffff94895eb82ac0 | offsetby: 0x80
\Windows\System32\UNP\UpdateNotificationHelpers.dll
pool: 0xffff94895eb82bd0 | file object: 0xffff94895eb82c50 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895eb82d60 | file object: 0xffff94895eb82de0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Credentials
pool: 0xffff94895eb83080 | file object: 0xffff94895eb83100 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Credentials\DFBE70A7E5CC19A398EBF1B96859CE5D
pool: 0xffff94895eb83210 | file object: 0xffff94895eb83290 | offsetby: 0x80
\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-95871d36abc6cb7316ef593ccec81bb1.
pool: 0xffff94895eb833a0 | file object: 0xffff94895eb83420 | offsetby: 0x80
\Windows\System32\dllhost.exe
pool: 0xffff94895eb83530 | file object: 0xffff94895eb835b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb836c0 | file object: 0xffff94895eb83740 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Credentials\DFBE70A7E5CC19A398EBF1B96859CE5D
pool: 0xffff94895eb83850 | file object: 0xffff94895eb838d0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Credentials
pool: 0xffff94895eb839e0 | file object: 0xffff94895eb83a60 | offsetby: 0x80
\Windows\System32\HolographicExtensions.dll
pool: 0xffff94895eb83b70 | file object: 0xffff94895eb83bf0 | offsetby: 0x80
\Windows\System32\mfcore.dll
pool: 0xffff94895eb83d00 | file object: 0xffff94895eb83d80 | offsetby: 0x80
\Windows\System32\VirtualMonitorManager.dll
pool: 0xffff94895eb84020 | file object: 0xffff94895eb840a0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895eb841b0 | file object: 0xffff94895eb84230 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb84340 | file object: 0xffff94895eb843c0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895eb844d0 | file object: 0xffff94895eb84550 | offsetby: 0x80
\$Directory
pool: 0xffff94895eb84660 | file object: 0xffff94895eb846e0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.18362.752_none_17aba8d26da530da\GdiPlus.dll
pool: 0xffff94895eb847f0 | file object: 0xffff94895eb84870 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\MicrosoftEdgePDF.targetsize-48.png
pool: 0xffff94895eb84980 | file object: 0xffff94895eb84a00 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.18362.752_none_17aba8d26da530da
pool: 0xffff94895eb84b10 | file object: 0xffff94895eb84b90 | offsetby: 0x80
\Windows\System32\msauserext.dll
pool: 0xffff94895eb84ca0 | file object: 0xffff94895eb84d20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895eb84e30 | file object: 0xffff94895eb84eb0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed43160 | file object: 0xffff94895ed431e0 | offsetby: 0x80
\Windows\System32\QuietHours.dll
pool: 0xffff94895ed432f0 | file object: 0xffff94895ed43370 | offsetby: 0x80
\Windows\System32\Windows.System.UserProfile.DiagnosticsSettings.dll
pool: 0xffff94895ed43480 | file object: 0xffff94895ed43500 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\MicrosoftEdgeSquare44x44.scale-150.png
pool: 0xffff94895ed43610 | file object: 0xffff94895ed43690 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Vault\4BF4C442-9B8A-41A0-B380-DD4A704DDB28\Policy.vpol
pool: 0xffff94895ed437a0 | file object: 0xffff94895ed43820 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed43930 | file object: 0xffff94895ed439b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed43ac0 | file object: 0xffff94895ed43b40 | offsetby: 0x80
\Windows\rescache\_merged\861366399\770357905.pri
pool: 0xffff94895ed43c50 | file object: 0xffff94895ed43cd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed43de0 | file object: 0xffff94895ed43e60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\devenv.exe
pool: 0xffff94895ed44100 | file object: 0xffff94895ed44180 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\pris\resources.en-US.pri
pool: 0xffff94895ed44290 | file object: 0xffff94895ed44310 | offsetby: 0x80
\Windows\System32\NPSM.dll
pool: 0xffff94895ed44420 | file object: 0xffff94895ed444a0 | offsetby: 0x80
\Windows\System32\zipfldr.dll
pool: 0xffff94895ed445b0 | file object: 0xffff94895ed44630 | offsetby: 0x80
\Program Files\Common Files\System\Ole DB\oledb32.dll
pool: 0xffff94895ed44740 | file object: 0xffff94895ed447c0 | offsetby: 0x80
\Windows\System32\AboveLockAppHost.dll
pool: 0xffff94895ed448d0 | file object: 0xffff94895ed44950 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed44a60 | file object: 0xffff94895ed44ae0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed44bf0 | file object: 0xffff94895ed44c70 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff94895ed44d80 | file object: 0xffff94895ed44e00 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe
pool: 0xffff94895ed450a0 | file object: 0xffff94895ed45120 | offsetby: 0x80
\Windows\System32\ngcpopkeysrv.dll
pool: 0xffff94895ed45230 | file object: 0xffff94895ed452b0 | offsetby: 0x80
\Windows\SystemResources\zipfldr.dll.mun
pool: 0xffff94895ed453c0 | file object: 0xffff94895ed45440 | offsetby: 0x80
\Windows\System32\vbsapi.dll
pool: 0xffff94895ed45550 | file object: 0xffff94895ed455d0 | offsetby: 0x80
\Windows\System32\Windows.ApplicationModel.Store.dll
pool: 0xffff94895ed456e0 | file object: 0xffff94895ed45760 | offsetby: 0x80
\Windows\System32\SecurityCenterBroker.dll
pool: 0xffff94895ed45870 | file object: 0xffff94895ed458f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.MicrosoftEdge_44.18362.449.0_neutral__8wekyb3d8bbwe\S-1-5-21-3234566417-3121902272-2793192418-1001.pckgdep
pool: 0xffff94895ed45a00 | file object: 0xffff94895ed45a80 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_BEB37ABADF39714871232B4792417E04
pool: 0xffff94895ed45b90 | file object: 0xffff94895ed45c10 | offsetby: 0x80
\Windows\System32\en-US\twinui.pcshell.dll.mui
pool: 0xffff94895ed45d20 | file object: 0xffff94895ed45da0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\resources.pri
pool: 0xffff94895ed46040 | file object: 0xffff94895ed460c0 | offsetby: 0x80
\Windows\System32\Windows.Security.Integrity.dll
pool: 0xffff94895ed461d0 | file object: 0xffff94895ed46250 | offsetby: 0x80
\Windows\System32\en-US\zipfldr.dll.mui
pool: 0xffff94895ed46360 | file object: 0xffff94895ed463e0 | offsetby: 0x80
\Windows\rescache\_merged\1198001884\1920459783.pri
pool: 0xffff94895ed464f0 | file object: 0xffff94895ed46570 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed46680 | file object: 0xffff94895ed46700 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed46810 | file object: 0xffff94895ed46890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed469a0 | file object: 0xffff94895ed46a20 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed46b30 | file object: 0xffff94895ed46bb0 | offsetby: 0x80
\Windows\SystemResources\ShellComponents\ShellComponents.pri
pool: 0xffff94895ed46cc0 | file object: 0xffff94895ed46d40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed46e50 | file object: 0xffff94895ed46ed0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed47170 | file object: 0xffff94895ed471f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed47300 | file object: 0xffff94895ed47380 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\devenv.exe.config
pool: 0xffff94895ed47490 | file object: 0xffff94895ed47510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed47620 | file object: 0xffff94895ed476a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed477b0 | file object: 0xffff94895ed47830 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed47940 | file object: 0xffff94895ed479c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed47ad0 | file object: 0xffff94895ed47b50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed47c60 | file object: 0xffff94895ed47ce0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\iconcache_32.db
pool: 0xffff94895ed47df0 | file object: 0xffff94895ed47e70 | offsetby: 0x80
\Windows\System32\NotificationController.dll
pool: 0xffff94895ed48110 | file object: 0xffff94895ed48190 | offsetby: 0x80
\Windows\WinSxS\Manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_2e6decc4278ee012.manifest
pool: 0xffff94895ed482a0 | file object: 0xffff94895ed48320 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed48430 | file object: 0xffff94895ed484b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed485c0 | file object: 0xffff94895ed48640 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed48750 | file object: 0xffff94895ed487d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed488e0 | file object: 0xffff94895ed48960 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation.manifest
pool: 0xffff94895ed48a70 | file object: 0xffff94895ed48af0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Publish.dll
pool: 0xffff94895ed48c00 | file object: 0xffff94895ed48c80 | offsetby: 0x80
\Windows\WinSxS\Manifests\x86_microsoft.windows.c..-controls.resources_6595b64144ccf1df_6.0.18362.752_en-us_447935a9543511ff.manifest
pool: 0xffff94895ed48d90 | file object: 0xffff94895ed48e10 | offsetby: 0x80
\Windows\System32\dui70.dll
pool: 0xffff94895ed490b0 | file object: 0xffff94895ed49130 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\PenWorkspace\DiscoverCacheData.dat
pool: 0xffff94895ed49240 | file object: 0xffff94895ed492c0 | offsetby: 0x80
\Windows\System32\Windows.Shell.BlueLightReduction.dll
pool: 0xffff94895ed493d0 | file object: 0xffff94895ed49450 | offsetby: 0x80
\Windows\System32\Windows.Internal.Signals.dll
pool: 0xffff94895ed49560 | file object: 0xffff94895ed495e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\dte90a.olb.manifest
pool: 0xffff94895ed496f0 | file object: 0xffff94895ed49770 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\dteproperties100.tlb.manifest
pool: 0xffff94895ed49880 | file object: 0xffff94895ed49900 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\DiagnosticsTap.dll.manifest
pool: 0xffff94895ed49a10 | file object: 0xffff94895ed49a90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed49ba0 | file object: 0xffff94895ed49c20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\dte100.olb.manifest
pool: 0xffff94895ed49d30 | file object: 0xffff94895ed49db0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed4a050 | file object: 0xffff94895ed4a0d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\csiface.tlb.manifest
pool: 0xffff94895ed4a1e0 | file object: 0xffff94895ed4a260 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\dsref80.dll.manifest
pool: 0xffff94895ed4a370 | file object: 0xffff94895ed4a3f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\dteproperties90a.tlb.manifest
pool: 0xffff94895ed4a500 | file object: 0xffff94895ed4a580 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\contextp.dll.manifest
pool: 0xffff94895ed4a690 | file object: 0xffff94895ed4a710 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msdia140.dll.manifest
pool: 0xffff94895ed4a820 | file object: 0xffff94895ed4a8a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\dte80.olb.manifest
pool: 0xffff94895ed4a9b0 | file object: 0xffff94895ed4aa30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\dte80a.olb.manifest
pool: 0xffff94895ed4ab40 | file object: 0xffff94895ed4abc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\Packages\fpeditax.dll.manifest
pool: 0xffff94895ed4acd0 | file object: 0xffff94895ed4ad50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\dteproperties90.tlb.manifest
pool: 0xffff94895ed4ae60 | file object: 0xffff94895ed4aee0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\Microsoft.VisualStudio.ProductKeyDialog.tlb.manifest
pool: 0xffff94895ed4b180 | file object: 0xffff94895ed4b200 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\dteproperties.tlb.manifest
pool: 0xffff94895ed4b310 | file object: 0xffff94895ed4b390 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\adodb.manifest
pool: 0xffff94895ed4b4a0 | file object: 0xffff94895ed4b520 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\dteproperties120.tlb.manifest
pool: 0xffff94895ed4b630 | file object: 0xffff94895ed4b6b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\Microsoft.VisualStudio.CompilerHostObjectsProxy.dll.manifest
pool: 0xffff94895ed4b7c0 | file object: 0xffff94895ed4b840 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy\S-1-5-21-3234566417-3121902272-2793192418-1001.pckgdep
pool: 0xffff94895ed4b950 | file object: 0xffff94895ed4b9d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Publish.manifest
pool: 0xffff94895ed4bae0 | file object: 0xffff94895ed4bb60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\dteproperties110.tlb.manifest
pool: 0xffff94895ed4bc70 | file object: 0xffff94895ed4bcf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\DebuggerProxy.dll.manifest
pool: 0xffff94895ed4be00 | file object: 0xffff94895ed4be80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\CSCodeModelExtensibility.tlb.manifest
pool: 0xffff94895ed4c120 | file object: 0xffff94895ed4c1a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\clientbuildmgr.tlb.manifest
pool: 0xffff94895ed4c2b0 | file object: 0xffff94895ed4c330 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\coloader80.dll.manifest
pool: 0xffff94895ed4c440 | file object: 0xffff94895ed4c4c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\dte90.olb.manifest
pool: 0xffff94895ed4c5d0 | file object: 0xffff94895ed4c650 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.QualityTools.Wizard.TestProjectWizards.manifest
pool: 0xffff94895ed4c760 | file object: 0xffff94895ed4c7e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv80p.dll.manifest
pool: 0xffff94895ed4c8f0 | file object: 0xffff94895ed4c970 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\publish.tlb.manifest
pool: 0xffff94895ed4ca80 | file object: 0xffff94895ed4cb00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenvp.dll.manifest
pool: 0xffff94895ed4cc10 | file object: 0xffff94895ed4cc90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv90p.dll.manifest
pool: 0xffff94895ed4cda0 | file object: 0xffff94895ed4ce20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv155p.dll.manifest
pool: 0xffff94895ed4d0c0 | file object: 0xffff94895ed4d140 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv120p.dll.manifest
pool: 0xffff94895ed4d250 | file object: 0xffff94895ed4d2d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VS SCC\msemp.dll.manifest
pool: 0xffff94895ed4d3e0 | file object: 0xffff94895ed4d460 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv121p.dll.manifest
pool: 0xffff94895ed4d570 | file object: 0xffff94895ed4d5f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv150p.dll.manifest
pool: 0xffff94895ed4d700 | file object: 0xffff94895ed4d780 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv158p.dll.manifest
pool: 0xffff94895ed4d890 | file object: 0xffff94895ed4d910 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv151p.dll.manifest
pool: 0xffff94895ed4da20 | file object: 0xffff94895ed4daa0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv16p.dll.manifest
pool: 0xffff94895ed4dbb0 | file object: 0xffff94895ed4dc30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv141p.dll.manifest
pool: 0xffff94895ed4dd40 | file object: 0xffff94895ed4ddc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\stanpackage.manifest
pool: 0xffff94895ed4e060 | file object: 0xffff94895ed4e0e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\Packages\mswebprj.dll.manifest
pool: 0xffff94895ed4e1f0 | file object: 0xffff94895ed4e270 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv159p.dll.manifest
pool: 0xffff94895ed4e380 | file object: 0xffff94895ed4e400 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\textmgrp.dll.manifest
pool: 0xffff94895ed4e510 | file object: 0xffff94895ed4e590 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv140p.dll.manifest
pool: 0xffff94895ed4e6a0 | file object: 0xffff94895ed4e720 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\VBCodeModelExtensibility.tlb.manifest
pool: 0xffff94895ed4e830 | file object: 0xffff94895ed4e8b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\VCSharpExtensibilityLib.tlb.manifest
pool: 0xffff94895ed4e9c0 | file object: 0xffff94895ed4ea40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv157p.dll.manifest
pool: 0xffff94895ed4eb50 | file object: 0xffff94895ed4ebd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\VSDebug.dll.manifest
pool: 0xffff94895ed4ece0 | file object: 0xffff94895ed4ed60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\Tools\VDT\vdt80.dll.manifest
pool: 0xffff94895ed4ee70 | file object: 0xffff94895ed4eef0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\vsext.olb.manifest
pool: 0xffff94895ed4f000 | file object: 0xffff94895ed4f080 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv156p.dll.manifest
pool: 0xffff94895ed4f190 | file object: 0xffff94895ed4f210 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv100p.dll.manifest
pool: 0xffff94895ed4f320 | file object: 0xffff94895ed4f3a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv110p.dll.manifest
pool: 0xffff94895ed4f4b0 | file object: 0xffff94895ed4f530 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv2p.dll.manifest
pool: 0xffff94895ed4f640 | file object: 0xffff94895ed4f6c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenv153p.dll.manifest
pool: 0xffff94895ed4f7d0 | file object: 0xffff94895ed4f850 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\vshelp.tlb.manifest
pool: 0xffff94895ed4f960 | file object: 0xffff94895ed4f9e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\wfinterop.tlb.manifest
pool: 0xffff94895ed4faf0 | file object: 0xffff94895ed4fb70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VsWizards.manifest
pool: 0xffff94895ed4fc80 | file object: 0xffff94895ed4fd00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\VxExtensibilityLib3.tlb.manifest
pool: 0xffff94895ed4fe10 | file object: 0xffff94895ed4fe90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\WebProperties90.tlb.manifest
pool: 0xffff94895ed50130 | file object: 0xffff94895ed501b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\ssdebugps.dll.manifest
pool: 0xffff94895ed502c0 | file object: 0xffff94895ed50340 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed50450 | file object: 0xffff94895ed504d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\vsmso.olb.manifest
pool: 0xffff94895ed505e0 | file object: 0xffff94895ed50660 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_256.db
pool: 0xffff94895ed50770 | file object: 0xffff94895ed507f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\VxExtensibilityLib4.tlb.manifest
pool: 0xffff94895ed50900 | file object: 0xffff94895ed50980 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed50a90 | file object: 0xffff94895ed50b10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\vslangproj110.olb.manifest
pool: 0xffff94895ed50c20 | file object: 0xffff94895ed50ca0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed50db0 | file object: 0xffff94895ed50e30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\VxExtensibilityLib2.tlb.manifest
pool: 0xffff94895ed510d0 | file object: 0xffff94895ed51150 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\vslangproj140.olb.manifest
pool: 0xffff94895ed51260 | file object: 0xffff94895ed512e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\WebProperties110.tlb.manifest
pool: 0xffff94895ed513f0 | file object: 0xffff94895ed51470 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\VxExtensibilityLib.tlb.manifest
pool: 0xffff94895ed51580 | file object: 0xffff94895ed51600 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed51710 | file object: 0xffff94895ed51790 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\WebProperties100.tlb.manifest
pool: 0xffff94895ed518a0 | file object: 0xffff94895ed51920 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\vslangproj.olb.manifest
pool: 0xffff94895ed51a30 | file object: 0xffff94895ed51ab0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\VsLogP.dll.manifest
pool: 0xffff94895ed51bc0 | file object: 0xffff94895ed51c40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\vslangproj100.olb.manifest
pool: 0xffff94895ed51d50 | file object: 0xffff94895ed51dd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\vsprojhostproc.olb.manifest
pool: 0xffff94895ed52070 | file object: 0xffff94895ed520f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\vslangproj2.olb.manifest
pool: 0xffff94895ed52200 | file object: 0xffff94895ed52280 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\vslangproj80.olb.manifest
pool: 0xffff94895ed52390 | file object: 0xffff94895ed52410 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\vshelp80.tlb.manifest
pool: 0xffff94895ed52520 | file object: 0xffff94895ed525a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\vslangproj90.olb.manifest
pool: 0xffff94895ed526b0 | file object: 0xffff94895ed52730 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\WebProperties.tlb.manifest
pool: 0xffff94895ed52840 | file object: 0xffff94895ed528c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vc.manifest
pool: 0xffff94895ed529d0 | file object: 0xffff94895ed52a50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\dircontrol.manifest
pool: 0xffff94895ed52b60 | file object: 0xffff94895ed52be0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed52cf0 | file object: 0xffff94895ed52d70 | offsetby: 0x80
\Windows\System32\ContentDeliveryManager.Utilities.dll
pool: 0xffff94895ed53010 | file object: 0xffff94895ed53090 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed531a0 | file object: 0xffff94895ed53220 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Notifications\wpndatabase.db-wal
pool: 0xffff94895ed53330 | file object: 0xffff94895ed533b0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\logs\Personal\StandaloneUpdater-2020-06-04.0625.5652.1.odlgz04.0625.
pool: 0xffff94895ed534c0 | file object: 0xffff94895ed53540 | offsetby: 0x80
\Windows\SoftwareDistribution\DataStore\Logs\edb00047.l
pool: 0xffff94895ed53650 | file object: 0xffff94895ed536d0 | offsetby: 0x80
\Windows\SysWOW64\srpapi.dll
pool: 0xffff94895ed537e0 | file object: 0xffff94895ed53860 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\Project\Microsoft.VisualStudio.Project.VisualC.VCProjectEngine.dll
pool: 0xffff94895ed53970 | file object: 0xffff94895ed539f0 | offsetby: 0x80
\Windows\System32\Windows.CloudStore.Schema.Shell.dll
pool: 0xffff94895ed53b00 | file object: 0xffff94895ed53b80 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Notifications\wpndatabase.db
pool: 0xffff94895ed53c90 | file object: 0xffff94895ed53d10 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Notifications\wpndatabase.db-shm
pool: 0xffff94895ed53e20 | file object: 0xffff94895ed53ea0 | offsetby: 0x80
\Windows\System32\wpnapps.dll
pool: 0xffff94895ed54140 | file object: 0xffff94895ed541c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed542d0 | file object: 0xffff94895ed54350 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895ed54460 | file object: 0xffff94895ed544e0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat
pool: 0xffff94895ed545f0 | file object: 0xffff94895ed54670 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed54780 | file object: 0xffff94895ed54800 | offsetby: 0x80
\Windows\System32\en-US\netmsg.dll.mui
pool: 0xffff94895ed54910 | file object: 0xffff94895ed54990 | offsetby: 0x80
\Windows\System32\en-US\QuietHours.dll.mui
pool: 0xffff94895ed54aa0 | file object: 0xffff94895ed54b20 | offsetby: 0x80
\Windows\System32\wpnprv.dll
pool: 0xffff94895ed54c30 | file object: 0xffff94895ed54cb0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\7997414b18a4b905cf75b21f81ad7fd9f65e4693\fd128b2b49e043205b62b266d4f7364793c05fd003b696ef17efb43becf9384c
pool: 0xffff94895ed54dc0 | file object: 0xffff94895ed54e40 | offsetby: 0x80
\Windows\System32\wpnclient.dll
pool: 0xffff94895ed550e0 | file object: 0xffff94895ed55160 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed55270 | file object: 0xffff94895ed552f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed55400 | file object: 0xffff94895ed55480 | offsetby: 0x80
\Windows\SysWOW64\ieframe.dll
pool: 0xffff94895ed55590 | file object: 0xffff94895ed55610 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Notifications\wpndatabase.db
pool: 0xffff94895ed55720 | file object: 0xffff94895ed557a0 | offsetby: 0x80
\Windows\System32\windows.applicationmodel.datatransfer.dll
pool: 0xffff94895ed558b0 | file object: 0xffff94895ed55930 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\MicrosoftEdgeSquare44x44.scale-100.png
pool: 0xffff94895ed55a40 | file object: 0xffff94895ed55ac0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy\ActivationStore.dat
pool: 0xffff94895ed55bd0 | file object: 0xffff94895ed55c50 | offsetby: 0x80
\Windows\System32\en-US\windows.ui.xaml.dll.mui
pool: 0xffff94895ed55d60 | file object: 0xffff94895ed55de0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed56080 | file object: 0xffff94895ed56100 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Vault\4BF4C442-9B8A-41A0-B380-DD4A704DDB28\3CCD5499-87A8-4B10-A215-608888DD3B55.vsch
pool: 0xffff94895ed56210 | file object: 0xffff94895ed56290 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed563a0 | file object: 0xffff94895ed56420 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\WebCache\V01.log
pool: 0xffff94895ed56530 | file object: 0xffff94895ed565b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed566c0 | file object: 0xffff94895ed56740 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\WebCacheLock.dat
pool: 0xffff94895ed56850 | file object: 0xffff94895ed568d0 | offsetby: 0x80
\Windows\System32\MusNotificationUx.exe
pool: 0xffff94895ed569e0 | file object: 0xffff94895ed56a60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed56b70 | file object: 0xffff94895ed56bf0 | offsetby: 0x80
\Windows\System32\en-US\SecurityHealthAgent.dll.mui
pool: 0xffff94895ed56d00 | file object: 0xffff94895ed56d80 | offsetby: 0x80
\Windows\System32\dimsjob.dll
pool: 0xffff94895ed57020 | file object: 0xffff94895ed570a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed571b0 | file object: 0xffff94895ed57230 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed57340 | file object: 0xffff94895ed573c0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.OneConnect_5.2002.431.0_x64__8wekyb3d8bbwe\ActivationStore.dat
pool: 0xffff94895ed574d0 | file object: 0xffff94895ed57550 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
pool: 0xffff94895ed57660 | file object: 0xffff94895ed576e0 | offsetby: 0x80
\Windows\System32\en-US\MusNotificationUx.exe.mui
pool: 0xffff94895ed577f0 | file object: 0xffff94895ed57870 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff94895ed57980 | file object: 0xffff94895ed57a00 | offsetby: 0x80
\Windows\System32\en-US\ESENT.dll.mui
pool: 0xffff94895ed57b10 | file object: 0xffff94895ed57b90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed57ca0 | file object: 0xffff94895ed57d20 | offsetby: 0x80
\Windows\System32\mlang.dll
pool: 0xffff94895ed57e30 | file object: 0xffff94895ed57eb0 | offsetby: 0x80
\Windows\System32\en-US\winnlsres.dll.mui
pool: 0xffff94895ed58150 | file object: 0xffff94895ed581d0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_88614FFAD35D353421B8A7E1FE18FCE4
pool: 0xffff94895ed582e0 | file object: 0xffff94895ed58360 | offsetby: 0x80
\Windows\System32\NotificationControllerPS.dll
pool: 0xffff94895ed58470 | file object: 0xffff94895ed584f0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.OneConnect_5.2002.431.0_x64__8wekyb3d8bbwe\microsoft.system.package.metadata\S-1-5-21-3234566417-3121902272-2793192418-1001-MergedResources-1.pri
pool: 0xffff94895ed58600 | file object: 0xffff94895ed58680 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
pool: 0xffff94895ed58790 | file object: 0xffff94895ed58810 | offsetby: 0x80
\Windows\System32\SecurityHealthAgent.dll
pool: 0xffff94895ed58920 | file object: 0xffff94895ed589a0 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff94895ed58ab0 | file object: 0xffff94895ed58b30 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_88614FFAD35D353421B8A7E1FE18FCE4
pool: 0xffff94895ed58c40 | file object: 0xffff94895ed58cc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Microsoft.VisualStudio.Setup.dll
pool: 0xffff94895ed58dd0 | file object: 0xffff94895ed58e50 | offsetby: 0x80
\Windows\System32\TaskFlowDataEngine.dll
pool: 0xffff94895ed590f0 | file object: 0xffff94895ed59170 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed59280 | file object: 0xffff94895ed59300 | offsetby: 0x80
\Users\User\AppData\Local\ConnectedDevicesPlatform\L.User\ActivitiesCache.db-shm
pool: 0xffff94895ed59410 | file object: 0xffff94895ed59490 | offsetby: 0x80
\Windows\INF\cmbatt.PNF
pool: 0xffff94895ed595a0 | file object: 0xffff94895ed59620 | offsetby: 0x80
\Windows\INF\flpydisk.PNF
pool: 0xffff94895ed59730 | file object: 0xffff94895ed597b0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Caches\{384756BA-B905-4D30-88C9-B63C603DA134}.3.ver0x0000000000000001.db
pool: 0xffff94895ed598c0 | file object: 0xffff94895ed59940 | offsetby: 0x80
\Windows\INF\volmgr.PNF
pool: 0xffff94895ed59a50 | file object: 0xffff94895ed59ad0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat
pool: 0xffff94895ed59be0 | file object: 0xffff94895ed59c60 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\WebCache\V01.log
pool: 0xffff94895ed59d70 | file object: 0xffff94895ed59df0 | offsetby: 0x80
\Windows\System32\utcutil.dll
pool: 0xffff94895ed5a090 | file object: 0xffff94895ed5a110 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.dat
pool: 0xffff94895ed5a220 | file object: 0xffff94895ed5a2a0 | offsetby: 0x80
\Users\User\AppData\Local\ConnectedDevicesPlatform\L.User\ActivitiesCache.db
pool: 0xffff94895ed5a3b0 | file object: 0xffff94895ed5a430 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed5a540 | file object: 0xffff94895ed5a5c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed5a6d0 | file object: 0xffff94895ed5a750 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed5a860 | file object: 0xffff94895ed5a8e0 | offsetby: 0x80
\Users\User\AppData\Local\ConnectedDevicesPlatform\L.User\ActivitiesCache.db-wal
pool: 0xffff94895ed5a9f0 | file object: 0xffff94895ed5aa70 | offsetby: 0x80
\Windows\System32\Windows.Data.Activities.dll
pool: 0xffff94895ed5ab80 | file object: 0xffff94895ed5ac00 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\WebCache\WebCacheV01.jfm
pool: 0xffff94895ed5ad10 | file object: 0xffff94895ed5ad90 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\WebCache\V01.chk
pool: 0xffff94895ed5b030 | file object: 0xffff94895ed5b0b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed5b1c0 | file object: 0xffff94895ed5b240 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed5b350 | file object: 0xffff94895ed5b3d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed5b4e0 | file object: 0xffff94895ed5b560 | offsetby: 0x80
\Users\User\AppData\Local\ConnectedDevicesPlatform\L.User.cdp
pool: 0xffff94895ed5b670 | file object: 0xffff94895ed5b6f0 | offsetby: 0x80
\Windows\INF\wvmic_ext.PNF
pool: 0xffff94895ed5b800 | file object: 0xffff94895ed5b880 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed5b990 | file object: 0xffff94895ed5ba10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed5bb20 | file object: 0xffff94895ed5bba0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed5bcb0 | file object: 0xffff94895ed5bd30 | offsetby: 0x80
\Windows\INF\machine.PNF
pool: 0xffff94895ed5be40 | file object: 0xffff94895ed5bec0 | offsetby: 0x80
\Windows\INF\monitor.PNF
pool: 0xffff94895ed5c160 | file object: 0xffff94895ed5c1e0 | offsetby: 0x80
\Windows\INF\basicdisplay.PNF
pool: 0xffff94895ed5c2f0 | file object: 0xffff94895ed5c370 | offsetby: 0x80
\Windows\INF\mshdc.PNF
pool: 0xffff94895ed5c480 | file object: 0xffff94895ed5c500 | offsetby: 0x80
\Windows\INF\termkbd.PNF
pool: 0xffff94895ed5c610 | file object: 0xffff94895ed5c690 | offsetby: 0x80
\Windows\INF\wvmic_timesync.PNF
pool: 0xffff94895ed5c7a0 | file object: 0xffff94895ed5c820 | offsetby: 0x80
\Windows\INF\wvmbusvideo.PNF
pool: 0xffff94895ed5c930 | file object: 0xffff94895ed5c9b0 | offsetby: 0x80
\Windows\INF\wvmbus.PNF
pool: 0xffff94895ed5cac0 | file object: 0xffff94895ed5cb40 | offsetby: 0x80
\Windows\INF\hal.PNF
pool: 0xffff94895ed5cc50 | file object: 0xffff94895ed5ccd0 | offsetby: 0x80
\Windows\INF\usbport.PNF
pool: 0xffff94895ed5cde0 | file object: 0xffff94895ed5ce60 | offsetby: 0x80
\Windows\INF\pci.PNF
pool: 0xffff94895ed5d100 | file object: 0xffff94895ed5d180 | offsetby: 0x80
\Windows\INF\hdaudio.PNF
pool: 0xffff94895ed5d290 | file object: 0xffff94895ed5d310 | offsetby: 0x80
\Windows\INF\oem3.PNF
pool: 0xffff94895ed5d420 | file object: 0xffff94895ed5d4a0 | offsetby: 0x80
\Windows\INF\wvmic_shutdown.PNF
pool: 0xffff94895ed5d5b0 | file object: 0xffff94895ed5d630 | offsetby: 0x80
\Windows\INF\oem2.PNF
pool: 0xffff94895ed5d740 | file object: 0xffff94895ed5d7c0 | offsetby: 0x80
\Windows\INF\acpi.PNF
pool: 0xffff94895ed5d8d0 | file object: 0xffff94895ed5d950 | offsetby: 0x80
\Windows\INF\umbus.PNF
pool: 0xffff94895ed5da60 | file object: 0xffff94895ed5dae0 | offsetby: 0x80
\Windows\INF\spaceport.PNF
pool: 0xffff94895ed5dbf0 | file object: 0xffff94895ed5dc70 | offsetby: 0x80
\Windows\INF\basicrender.PNF
pool: 0xffff94895ed5dd80 | file object: 0xffff94895ed5de00 | offsetby: 0x80
\Windows\INF\keyboard.PNF
pool: 0xffff94895ed5e0a0 | file object: 0xffff94895ed5e120 | offsetby: 0x80
\Windows\INF\msmouse.PNF
pool: 0xffff94895ed5e230 | file object: 0xffff94895ed5e2b0 | offsetby: 0x80
\Windows\INF\wvid.PNF
pool: 0xffff94895ed5e3c0 | file object: 0xffff94895ed5e440 | offsetby: 0x80
\Windows\INF\compositebus.PNF
pool: 0xffff94895ed5e550 | file object: 0xffff94895ed5e5d0 | offsetby: 0x80
\Windows\INF\fdc.PNF
pool: 0xffff94895ed5e6e0 | file object: 0xffff94895ed5e760 | offsetby: 0x80
\Windows\INF\termmou.PNF
pool: 0xffff94895ed5e870 | file object: 0xffff94895ed5e8f0 | offsetby: 0x80
\Windows\INF\volume.PNF
pool: 0xffff94895ed5ea00 | file object: 0xffff94895ed5ea80 | offsetby: 0x80
\Windows\System32\Windows.UI.Core.TextInput.dll
pool: 0xffff94895ed5eb90 | file object: 0xffff94895ed5ec10 | offsetby: 0x80
\Windows\INF\vdrvroot.PNF
pool: 0xffff94895ed5ed20 | file object: 0xffff94895ed5eda0 | offsetby: 0x80
\Windows\INF\whyperkbd.PNF
pool: 0xffff94895ed5f040 | file object: 0xffff94895ed5f0c0 | offsetby: 0x80
\Windows\INF\input.PNF
pool: 0xffff94895ed5f1d0 | file object: 0xffff94895ed5f250 | offsetby: 0x80
\Windows\INF\ChargeArbitration.PNF
pool: 0xffff94895ed5f360 | file object: 0xffff94895ed5f3e0 | offsetby: 0x80
\Windows\INF\wvmic_heartbeat.PNF
pool: 0xffff94895ed5f4f0 | file object: 0xffff94895ed5f570 | offsetby: 0x80
\Windows\INF\rdpbus.PNF
pool: 0xffff94895ed5f680 | file object: 0xffff94895ed5f700 | offsetby: 0x80
\Windows\System32\PCShellCommonProxyStub.dll
pool: 0xffff94895ed5f810 | file object: 0xffff94895ed5f890 | offsetby: 0x80
\Windows\INF\ws3cap.PNF
pool: 0xffff94895ed5f9a0 | file object: 0xffff94895ed5fa20 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed5fb30 | file object: 0xffff94895ed5fbb0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed5fcc0 | file object: 0xffff94895ed5fd40 | offsetby: 0x80
\Windows\INF\tsusbhub.PNF
pool: 0xffff94895ed5fe50 | file object: 0xffff94895ed5fed0 | offsetby: 0x80
\Windows\INF\mssmbios.PNF
pool: 0xffff94895ed60170 | file object: 0xffff94895ed601f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed60300 | file object: 0xffff94895ed60380 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\MicrosoftEdgeFile.targetsize-48.png
pool: 0xffff94895ed60490 | file object: 0xffff94895ed60510 | offsetby: 0x80
\Windows\System32\en-US\SHCore.dll.mui
pool: 0xffff94895ed60620 | file object: 0xffff94895ed606a0 | offsetby: 0x80
\Windows\System32\elsTrans.dll
pool: 0xffff94895ed607b0 | file object: 0xffff94895ed60830 | offsetby: 0x80
\Windows\INF\hdaudbus.PNF
pool: 0xffff94895ed60940 | file object: 0xffff94895ed609c0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.Windows.StartMenuExperienceHost_10.0.18362.449_neutral_neutral_cw5n1h2txyewy\S-1-5-21-3234566417-3121902272-2793192418-1001.pckgdep
pool: 0xffff94895ed60ad0 | file object: 0xffff94895ed60b50 | offsetby: 0x80
\Windows\System32\ShellCommonCommonProxyStub.dll
pool: 0xffff94895ed60c60 | file object: 0xffff94895ed60ce0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed60df0 | file object: 0xffff94895ed60e70 | offsetby: 0x80
\Windows\System32\SIHClient.exe
pool: 0xffff94895ed61110 | file object: 0xffff94895ed61190 | offsetby: 0x80
\Windows\System32\elsTrans.dll
pool: 0xffff94895ed612a0 | file object: 0xffff94895ed61320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed61430 | file object: 0xffff94895ed614b0 | offsetby: 0x80
\Windows\INF\wvmic_kvpexchange.PNF
pool: 0xffff94895ed615c0 | file object: 0xffff94895ed61640 | offsetby: 0x80
\Windows\SysWOW64\wldp.dll
pool: 0xffff94895ed61750 | file object: 0xffff94895ed617d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed618e0 | file object: 0xffff94895ed61960 | offsetby: 0x80
\Windows\System32\en-US\elscore.dll.mui
pool: 0xffff94895ed61a70 | file object: 0xffff94895ed61af0 | offsetby: 0x80
\Windows\System32\ELSCore.dll
pool: 0xffff94895ed61c00 | file object: 0xffff94895ed61c80 | offsetby: 0x80
\Windows\INF\wgencounter.PNF
pool: 0xffff94895ed61d90 | file object: 0xffff94895ed61e10 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed620b0 | file object: 0xffff94895ed62130 | offsetby: 0x80
\Windows\INF\wvmbushid.PNF
pool: 0xffff94895ed62240 | file object: 0xffff94895ed622c0 | offsetby: 0x80
\Windows\INF\wstorvsc.PNF
pool: 0xffff94895ed623d0 | file object: 0xffff94895ed62450 | offsetby: 0x80
\Windows\INF\ndisvirtualbus.PNF
pool: 0xffff94895ed62560 | file object: 0xffff94895ed625e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed626f0 | file object: 0xffff94895ed62770 | offsetby: 0x80
\Registry\Machine\System\CurrentControlSet\Control\StateSeparation\RedirectionMap\Keys34-73a32824f
pool: 0xffff94895ed62880 | file object: 0xffff94895ed62900 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed62a10 | file object: 0xffff94895ed62a90 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy
pool: 0xffff94895ed62ba0 | file object: 0xffff94895ed62c20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed62d30 | file object: 0xffff94895ed62db0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.Windows.StartMenuExperienceHost_10.0.18362.449_neutral_neutral_cw5n1h2txyewy\ActivationStore.dat
pool: 0xffff94895ed63050 | file object: 0xffff94895ed630d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed631e0 | file object: 0xffff94895ed63260 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed63370 | file object: 0xffff94895ed633f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.Windows.StartMenuExperienceHost_10.0.18362.449_neutral_neutral_cw5n1h2txyewy\ActivationStore.dat.LOG1
pool: 0xffff94895ed63500 | file object: 0xffff94895ed63580 | offsetby: 0x80
\Windows\System32\LicenseManagerApi.dll
pool: 0xffff94895ed63690 | file object: 0xffff94895ed63710 | offsetby: 0x80
\Windows\System32\en-US\winnlsres.dll.mui
pool: 0xffff94895ed63820 | file object: 0xffff94895ed638a0 | offsetby: 0x80
\Windows\Prefetch\STARTMENUEXPERIENCEHOST.EXE-4612B8FC.pf
pool: 0xffff94895ed639b0 | file object: 0xffff94895ed63a30 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\StartMenuExperienceHost.exe
pool: 0xffff94895ed63b40 | file object: 0xffff94895ed63bc0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.Windows.StartMenuExperienceHost_10.0.18362.449_neutral_neutral_cw5n1h2txyewy\ActivationStore.dat.LOG2
pool: 0xffff94895ed63cd0 | file object: 0xffff94895ed63d50 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Microsoft.Onecore.StorageManagement~~1.0.mum
pool: 0xffff94895ed63e60 | file object: 0xffff94895ed63ee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed64180 | file object: 0xffff94895ed64200 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\OneDriveStandaloneUpdater.exe
pool: 0xffff94895ed64310 | file object: 0xffff94895ed64390 | offsetby: 0x80
\Windows\System32\fontgroupsoverride.dll
pool: 0xffff94895ed644a0 | file object: 0xffff94895ed64520 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895ed64630 | file object: 0xffff94895ed646b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed647c0 | file object: 0xffff94895ed64840 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-11FFA705.pf
pool: 0xffff94895ed64950 | file object: 0xffff94895ed649d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed64ae0 | file object: 0xffff94895ed64b60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed64c70 | file object: 0xffff94895ed64cf0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed64e00 | file object: 0xffff94895ed64e80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed65120 | file object: 0xffff94895ed651a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed652b0 | file object: 0xffff94895ed65330 | offsetby: 0x80
\Windows\System32\Windows.Services.TargetedContent.dll
pool: 0xffff94895ed65440 | file object: 0xffff94895ed654c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed655d0 | file object: 0xffff94895ed65650 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed65760 | file object: 0xffff94895ed657e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed658f0 | file object: 0xffff94895ed65970 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed65a80 | file object: 0xffff94895ed65b00 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff94895ed65c10 | file object: 0xffff94895ed65c90 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Microsoft.Windows.StorageManagement~~1.0.mum
pool: 0xffff94895ed65da0 | file object: 0xffff94895ed65e20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed660c0 | file object: 0xffff94895ed66140 | offsetby: 0x80
\Windows\rescache\_merged\4124255888\2684418851.pri
pool: 0xffff94895ed66250 | file object: 0xffff94895ed662d0 | offsetby: 0x80
\Windows\System32\Windows.Networking.Sockets.PushEnabledApplication.dll
pool: 0xffff94895ed663e0 | file object: 0xffff94895ed66460 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-D2CDAE5C.pf
pool: 0xffff94895ed66570 | file object: 0xffff94895ed665f0 | offsetby: 0x80
\Program Files\WindowsPowerShell\Modules\PSReadline\2.0.0\PSReadline.psm1\User Pinned\TaskBar\File Explorer.lnkage.json
pool: 0xffff94895ed66700 | file object: 0xffff94895ed66780 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed66890 | file object: 0xffff94895ed66910 | offsetby: 0x80
\Windows\ShellExperiences\StartUI.dll
pool: 0xffff94895ed66a20 | file object: 0xffff94895ed66aa0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed66bb0 | file object: 0xffff94895ed66c30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed66d40 | file object: 0xffff94895ed66dc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed67060 | file object: 0xffff94895ed670e0 | offsetby: 0x80
\Windows\System32\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
pool: 0xffff94895ed671f0 | file object: 0xffff94895ed67270 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed67380 | file object: 0xffff94895ed67400 | offsetby: 0x80
\Windows\System32\ngcsvc.dll
pool: 0xffff94895ed67510 | file object: 0xffff94895ed67590 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Store%4Operational.evtx
pool: 0xffff94895ed676a0 | file object: 0xffff94895ed67720 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\AppData\Local\FontCache\~FontCache-FontSet-S-1-5-21-3234566417-3121902272-2793192418-1001.dat
pool: 0xffff94895ed67830 | file object: 0xffff94895ed678b0 | offsetby: 0x80
\Windows\System32\ngcsvc.dll
pool: 0xffff94895ed679c0 | file object: 0xffff94895ed67a40 | offsetby: 0x80
\Windows\ServiceProfiles\LocalService\AppData\Local\FontCache\~FontCache-S-1-5-21-3234566417-3121902272-2793192418-1001.dat
pool: 0xffff94895ed67b50 | file object: 0xffff94895ed67bd0 | offsetby: 0x80
\Windows\System32\en-US\ngcsvc.dll.mui
pool: 0xffff94895ed67ce0 | file object: 0xffff94895ed67d60 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Microsoft.WebDriver~~1.0.mum
pool: 0xffff94895ed67e70 | file object: 0xffff94895ed67ef0 | offsetby: 0x80
\Windows\Prefetch\SEARCHUI.EXE-E4B0F2D1.pf
pool: 0xffff94895ed68000 | file object: 0xffff94895ed68080 | offsetby: 0x80
\Windows\System32\en-US\winmm.dll.mui
pool: 0xffff94895ed68190 | file object: 0xffff94895ed68210 | offsetby: 0x80
\Windows\System32\LicenseManager.dll
pool: 0xffff94895ed68320 | file object: 0xffff94895ed683a0 | offsetby: 0x80
\Windows\Fonts\segoeui.ttf
pool: 0xffff94895ed684b0 | file object: 0xffff94895ed68530 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed68640 | file object: 0xffff94895ed686c0 | offsetby: 0x80
\Windows\ShellExperiences\StartUI.dll
pool: 0xffff94895ed687d0 | file object: 0xffff94895ed68850 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\resources.pri
pool: 0xffff94895ed68960 | file object: 0xffff94895ed689e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed68af0 | file object: 0xffff94895ed68b70 | offsetby: 0x80
\Windows\System32\NgcCtnrSvc.dll
pool: 0xffff94895ed68c80 | file object: 0xffff94895ed68d00 | offsetby: 0x80
\Windows\SystemResources\Windows.UI.ShellCommon\Windows.UI.ShellCommon.pri
pool: 0xffff94895ed68e10 | file object: 0xffff94895ed68e90 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\Settings\settings.dat.LOG2
pool: 0xffff94895ed69130 | file object: 0xffff94895ed691b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed692c0 | file object: 0xffff94895ed69340 | offsetby: 0x80
\Windows\System32\NgcCtnrSvc.dll
pool: 0xffff94895ed69450 | file object: 0xffff94895ed694d0 | offsetby: 0x80
\Windows\System32\Windows.Storage.ApplicationData.dll
pool: 0xffff94895ed695e0 | file object: 0xffff94895ed69660 | offsetby: 0x80
\Windows\System32\RuntimeBroker.exe
pool: 0xffff94895ed69770 | file object: 0xffff94895ed697f0 | offsetby: 0x80
\Windows\System32\en-US\NgcCtnrSvc.dll.mui
pool: 0xffff94895ed69900 | file object: 0xffff94895ed69980 | offsetby: 0x80
\Windows\System32\ktmw32.dll
pool: 0xffff94895ed69a90 | file object: 0xffff94895ed69b10 | offsetby: 0x80
\Windows\rescache\_merged\372897047\3260902778.pri
pool: 0xffff94895ed69c20 | file object: 0xffff94895ed69ca0 | offsetby: 0x80
\Windows\System32\NgcCtnr.dll
pool: 0xffff94895ed69db0 | file object: 0xffff94895ed69e30 | offsetby: 0x80
\Windows\System32\cflapi.dll
pool: 0xffff94895ed6a0d0 | file object: 0xffff94895ed6a150 | offsetby: 0x80
\Windows\System32\ktmw32.dll
pool: 0xffff94895ed6a260 | file object: 0xffff94895ed6a2e0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\iconcache_48.db Code\resources\app\extensions\theme-monokai\pack
pool: 0xffff94895ed6a3f0 | file object: 0xffff94895ed6a470 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\Settings\settings.dat
pool: 0xffff94895ed6a580 | file object: 0xffff94895ed6a600 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\Settings\settings.dat.LOG1
pool: 0xffff94895ed6a710 | file object: 0xffff94895ed6a790 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed6a8a0 | file object: 0xffff94895ed6a920 | offsetby: 0x80
\Windows\System32\NgcCtnrGidsHandler.dll
pool: 0xffff94895ed6aa30 | file object: 0xffff94895ed6aab0 | offsetby: 0x80
\Windows\System32\en-US\dsreg.dll.mui
pool: 0xffff94895ed6abc0 | file object: 0xffff94895ed6ac40 | offsetby: 0x80
\Windows\System32\biwinrt.dll
pool: 0xffff94895ed6ad50 | file object: 0xffff94895ed6add0 | offsetby: 0x80
\Windows\System32\RuntimeBroker.exe
pool: 0xffff94895ed6b070 | file object: 0xffff94895ed6b0f0 | offsetby: 0x80
\Windows\System32\Windows.Storage.ApplicationData.dll
pool: 0xffff94895ed6b200 | file object: 0xffff94895ed6b280 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\7997414b18a4b905cf75b21f81ad7fd9f65e4693\7997414b18a4b905cf75b21f81ad7fd9f65e4693.pieceshash
pool: 0xffff94895ed6b390 | file object: 0xffff94895ed6b410 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed6b520 | file object: 0xffff94895ed6b5a0 | offsetby: 0x80
\Windows\System32\ShellExperiences\Windows.UI.Shell.SharedUtilities.dll
pool: 0xffff94895ed6b6b0 | file object: 0xffff94895ed6b730 | offsetby: 0x80
\Windows\System32\NgcCtnrGidsHandler.dll
pool: 0xffff94895ed6b840 | file object: 0xffff94895ed6b8c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed6b9d0 | file object: 0xffff94895ed6ba50 | offsetby: 0x80
\Windows\System32\NgcCtnr.dll
pool: 0xffff94895ed6bb60 | file object: 0xffff94895ed6bbe0 | offsetby: 0x80
\Windows\System32\fontgroupsoverride.dll
pool: 0xffff94895ed6bcf0 | file object: 0xffff94895ed6bd70 | offsetby: 0x80
\Windows\System32\Windows.Internal.Shell.Broker.dll
pool: 0xffff94895ed6c010 | file object: 0xffff94895ed6c090 | offsetby: 0x80
\Windows\SysWOW64\jscript9.dll
pool: 0xffff94895ed6c1a0 | file object: 0xffff94895ed6c220 | offsetby: 0x80
\Windows\System32\Windows.Shell.StartLayoutPopulationEvents.dll
pool: 0xffff94895ed6c330 | file object: 0xffff94895ed6c3b0 | offsetby: 0x80
\Windows\System32\en-US\Windows.Globalization.dll.mui
pool: 0xffff94895ed6c4c0 | file object: 0xffff94895ed6c540 | offsetby: 0x80
\Windows\Fonts\segoeuib.ttf
pool: 0xffff94895ed6c650 | file object: 0xffff94895ed6c6d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed6c7e0 | file object: 0xffff94895ed6c860 | offsetby: 0x80
\Windows\System32\Windows.Globalization.Fontgroups.dll
pool: 0xffff94895ed6c970 | file object: 0xffff94895ed6c9f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed6cb00 | file object: 0xffff94895ed6cb80 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed6cc90 | file object: 0xffff94895ed6cd10 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed6ce20 | file object: 0xffff94895ed6cea0 | offsetby: 0x80
\Windows\System32\biwinrt.dll
pool: 0xffff94895ed6d140 | file object: 0xffff94895ed6d1c0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\S-1-5-21-3234566417-3121902272-2793192418-1001.pckgdep
pool: 0xffff94895ed6d2d0 | file object: 0xffff94895ed6d350 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed6d460 | file object: 0xffff94895ed6d4e0 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff94895ed6d5f0 | file object: 0xffff94895ed6d670 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ed6d780 | file object: 0xffff94895ed6d800 | offsetby: 0x80
\Windows\System32\Windows.Globalization.Fontgroups.dll
pool: 0xffff94895ed6d910 | file object: 0xffff94895ed6d990 | offsetby: 0x80
\Windows\System32\Windows.Internal.Shell.Broker.dll
pool: 0xffff94895ed6daa0 | file object: 0xffff94895ed6db20 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff94895ed6dc30 | file object: 0xffff94895ed6dcb0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed6ddc0 | file object: 0xffff94895ed6de40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed6e0e0 | file object: 0xffff94895ed6e160 | offsetby: 0x80
\Windows\SystemResources\Windows.UI.ShellCommon\pris\Windows.UI.ShellCommon.en-US.pri
pool: 0xffff94895ed6e270 | file object: 0xffff94895ed6e2f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed6e400 | file object: 0xffff94895ed6e480 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed6e590 | file object: 0xffff94895ed6e610 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed6e720 | file object: 0xffff94895ed6e7a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed6e8b0 | file object: 0xffff94895ed6e930 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\TempState\StartUnifiedTileModelCache.dat
pool: 0xffff94895ed6ea40 | file object: 0xffff94895ed6eac0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed6ebd0 | file object: 0xffff94895ed6ec50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed6ed60 | file object: 0xffff94895ed6ede0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed6f080 | file object: 0xffff94895ed6f100 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed6f210 | file object: 0xffff94895ed6f290 | offsetby: 0x80
\Windows\System32\irprops.cpl
pool: 0xffff94895ed6f3a0 | file object: 0xffff94895ed6f420 | offsetby: 0x80
\Windows\System32\Windows.Services.TargetedContent.dll
pool: 0xffff94895ed6f530 | file object: 0xffff94895ed6f5b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed6f6c0 | file object: 0xffff94895ed6f740 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed6f850 | file object: 0xffff94895ed6f8d0 | offsetby: 0x80
\Windows\System32\RTMediaFrame.dll
pool: 0xffff94895ed6f9e0 | file object: 0xffff94895ed6fa60 | offsetby: 0x80
\Windows\SystemResources\Windows.UI.ShellCommon\StartUI\Assets\Fonts\BitMDL2.ttf
pool: 0xffff94895ed6fb70 | file object: 0xffff94895ed6fbf0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-ShellCommon-StartLayoutPopulation%4Operational.evtx
pool: 0xffff94895ed6fd00 | file object: 0xffff94895ed6fd80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed70020 | file object: 0xffff94895ed700a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed701b0 | file object: 0xffff94895ed70230 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed70340 | file object: 0xffff94895ed703c0 | offsetby: 0x80
\Windows\System32\Windows.Media.Speech.dll
pool: 0xffff94895ed704d0 | file object: 0xffff94895ed70550 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895ed70660 | file object: 0xffff94895ed706e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed707f0 | file object: 0xffff94895ed70870 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed70980 | file object: 0xffff94895ed70a00 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed70b10 | file object: 0xffff94895ed70b90 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed70ca0 | file object: 0xffff94895ed70d20 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\SearchUI.exe
pool: 0xffff94895ed70e30 | file object: 0xffff94895ed70eb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed71150 | file object: 0xffff94895ed711d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Data.bin
pool: 0xffff94895ed712e0 | file object: 0xffff94895ed71360 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll
pool: 0xffff94895ed71470 | file object: 0xffff94895ed714f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed71600 | file object: 0xffff94895ed71680 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed71790 | file object: 0xffff94895ed71810 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed71920 | file object: 0xffff94895ed719a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed71ab0 | file object: 0xffff94895ed71b30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed71c40 | file object: 0xffff94895ed71cc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed71dd0 | file object: 0xffff94895ed71e50 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.StartMenuExperienceHost_cw5n1h2txyewy\TempState\TileCache_100_0_Header.bin
pool: 0xffff94895ed720f0 | file object: 0xffff94895ed72170 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed72280 | file object: 0xffff94895ed72300 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.Foundation.winmd
pool: 0xffff94895ed72410 | file object: 0xffff94895ed72490 | offsetby: 0x80
\Windows\System32\ActionMgr.dll
pool: 0xffff94895ed725a0 | file object: 0xffff94895ed72620 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed72730 | file object: 0xffff94895ed727b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed728c0 | file object: 0xffff94895ed72940 | offsetby: 0x80
\Windows\System32\MicrosoftAccountWAMExtension.dll
pool: 0xffff94895ed72a50 | file object: 0xffff94895ed72ad0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed72be0 | file object: 0xffff94895ed72c60 | offsetby: 0x80
\Windows\System32\Windows.UI.Input.Inking.dll
pool: 0xffff94895ed72d70 | file object: 0xffff94895ed72df0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Tips.winmd
pool: 0xffff94895ed73090 | file object: 0xffff94895ed73110 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
pool: 0xffff94895ed73220 | file object: 0xffff94895ed732a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed733b0 | file object: 0xffff94895ed73430 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Search.winmd
pool: 0xffff94895ed73540 | file object: 0xffff94895ed735c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed736d0 | file object: 0xffff94895ed73750 | offsetby: 0x80
\Windows\System32\Windows.Cortana.PAL.Desktop.dll
pool: 0xffff94895ed73860 | file object: 0xffff94895ed738e0 | offsetby: 0x80
\Windows\System32\ConstraintIndex.Search.dll
pool: 0xffff94895ed739f0 | file object: 0xffff94895ed73a70 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.SPA.winmd
pool: 0xffff94895ed73b80 | file object: 0xffff94895ed73c00 | offsetby: 0x80
\Windows\System32\notepad.exe
pool: 0xffff94895ed73d10 | file object: 0xffff94895ed73d90 | offsetby: 0x80
\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll
pool: 0xffff94895ed74030 | file object: 0xffff94895ed740b0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019\Visual Studio Tools\VC\x86_x64 Cross Tools Command Prompt for VS 2019.lnk
pool: 0xffff94895ed741c0 | file object: 0xffff94895ed74240 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed74350 | file object: 0xffff94895ed743d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed744e0 | file object: 0xffff94895ed74560 | offsetby: 0x80
\Windows\System32\PersonaX.dll
pool: 0xffff94895ed74670 | file object: 0xffff94895ed746f0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
pool: 0xffff94895ed74800 | file object: 0xffff94895ed74880 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Internal.Search.winmd
pool: 0xffff94895ed74990 | file object: 0xffff94895ed74a10 | offsetby: 0x80
\Windows\System32\Speech_OneCore\common\sapi_onecore.dll
pool: 0xffff94895ed74b20 | file object: 0xffff94895ed74ba0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed74cb0 | file object: 0xffff94895ed74d30 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed74e40 | file object: 0xffff94895ed74ec0 | offsetby: 0x80
\Windows\System32\UserDataTypeHelperUtil.dll
pool: 0xffff94895ed75160 | file object: 0xffff94895ed751e0 | offsetby: 0x80
\Windows\System32\rometadata.dll
pool: 0xffff94895ed752f0 | file object: 0xffff94895ed75370 | offsetby: 0x80
\Windows\System32\icuuc.dll
pool: 0xffff94895ed75480 | file object: 0xffff94895ed75500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed75610 | file object: 0xffff94895ed75690 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed757a0 | file object: 0xffff94895ed75820 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed75930 | file object: 0xffff94895ed759b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\UqCKuwgmukgkXfFOcl4KebRY5Mw[1].js
pool: 0xffff94895ed75ac0 | file object: 0xffff94895ed75b40 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\HkpLvsXkCMkluzD--i9_Hl9v67o[1].js
pool: 0xffff94895ed75c50 | file object: 0xffff94895ed75cd0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\kfPDEjYze6gcezDqunK1uiPHVSA[1].js
pool: 0xffff94895ed75de0 | file object: 0xffff94895ed75e60 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\1DLLHrh5gD2BxyZsLN2_FxFV-Gc.br[1].js
pool: 0xffff94895ed76100 | file object: 0xffff94895ed76180 | offsetby: 0x80
⑐訧舎￿む悭钉￿㠸悭钉￿ﳘ
pool: 0xffff94895ed76290 | file object: 0xffff94895ed76310 | offsetby: 0x80
\Windows\System32\Chakra.dll
pool: 0xffff94895ed76420 | file object: 0xffff94895ed764a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\2XH_n8suDzbjeZvT1Zj4HAqTI80[1].js
pool: 0xffff94895ed765b0 | file object: 0xffff94895ed76630 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Tips.winmd
pool: 0xffff94895ed76740 | file object: 0xffff94895ed767c0 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.Security.winmd
pool: 0xffff94895ed768d0 | file object: 0xffff94895ed76950 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\H3Ssg8BFXUAUD1Jhomz9RV7YmVI[1].js
pool: 0xffff94895ed76a60 | file object: 0xffff94895ed76ae0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\2FaIoK0yAWpnQZstRqy7tkRQRUg[1].js
pool: 0xffff94895ed76bf0 | file object: 0xffff94895ed76c70 | offsetby: 0x80
\Windows\System32\EdgeManager.dll
pool: 0xffff94895ed76d80 | file object: 0xffff94895ed76e00 | offsetby: 0x80
\Windows\System32\icuin.dll
pool: 0xffff94895ed770a0 | file object: 0xffff94895ed77120 | offsetby: 0x80
\Windows\System32\UIAutomationCore.dll
pool: 0xffff94895ed77230 | file object: 0xffff94895ed772b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\Dae9F3uWr1j96ciQZxvUiMLiQ20[1].js
pool: 0xffff94895ed773c0 | file object: 0xffff94895ed77440 | offsetby: 0x80
\Windows\System32\icu.dll
pool: 0xffff94895ed77550 | file object: 0xffff94895ed775d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\XnMU5VFfsdIh8PsWJJY6-SgHHjk.br[1].js
pool: 0xffff94895ed776e0 | file object: 0xffff94895ed77760 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\UAraPktKl10pbSBJ1Tu-cJX2-nc[1].js
pool: 0xffff94895ed77870 | file object: 0xffff94895ed778f0 | offsetby: 0x80
\Windows\System32\mssprxy.dll
pool: 0xffff94895ed77a00 | file object: 0xffff94895ed77a80 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019\Visual Studio Tools\VC\x64 Native Tools Command Prompt for VS 2019.lnk
pool: 0xffff94895ed77b90 | file object: 0xffff94895ed77c10 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.Security.winmd
pool: 0xffff94895ed77d20 | file object: 0xffff94895ed77da0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed78040 | file object: 0xffff94895ed780c0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Caches\{AFBF9F1A-8EE8-4C77-AF34-C647E37CA0D9}.1.ver0x0000000000000006.db
pool: 0xffff94895ed781d0 | file object: 0xffff94895ed78250 | offsetby: 0x80
\Windows\System32\edgehtml.dll
pool: 0xffff94895ed78360 | file object: 0xffff94895ed783e0 | offsetby: 0x80
\Windows\System32\msdart.dll
pool: 0xffff94895ed784f0 | file object: 0xffff94895ed78570 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.Storage.winmd
pool: 0xffff94895ed78680 | file object: 0xffff94895ed78700 | offsetby: 0x80
\Windows\System32\en-US\netmsg.dll.mui
pool: 0xffff94895ed78810 | file object: 0xffff94895ed78890 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed789a0 | file object: 0xffff94895ed78a20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed78b30 | file object: 0xffff94895ed78bb0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed78cc0 | file object: 0xffff94895ed78d40 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed78e50 | file object: 0xffff94895ed78ed0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.XboxGameOverlay_1.52.3001.0_x64__8wekyb3d8bbwe
pool: 0xffff94895ed79170 | file object: 0xffff94895ed791f0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.18362.752_none_2a285cc246691ef5\comctl32.dll
pool: 0xffff94895ed79300 | file object: 0xffff94895ed79380 | offsetby: 0x80
\Windows\System32\SettingsEnvironment.Desktop.dll
pool: 0xffff94895ed79490 | file object: 0xffff94895ed79510 | offsetby: 0x80
\Program Files\Common Files\System\Ole DB\oledb32r.dll
pool: 0xffff94895ed79620 | file object: 0xffff94895ed796a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed797b0 | file object: 0xffff94895ed79830 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.SPA.winmd
pool: 0xffff94895ed79940 | file object: 0xffff94895ed799c0 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895ed79ad0 | file object: 0xffff94895ed79b50 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeBackgroundHost.exe
pool: 0xffff94895ed79c60 | file object: 0xffff94895ed79ce0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed79df0 | file object: 0xffff94895ed79e70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed7a110 | file object: 0xffff94895ed7a190 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed7a2a0 | file object: 0xffff94895ed7a320 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
pool: 0xffff94895ed7a430 | file object: 0xffff94895ed7a4b0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.18362.752_none_2a285cc246691ef5
pool: 0xffff94895ed7a5c0 | file object: 0xffff94895ed7a640 | offsetby: 0x80
\Windows\System32\EthernetMediaManager.dll
pool: 0xffff94895ed7a750 | file object: 0xffff94895ed7a7d0 | offsetby: 0x80
\Windows\System32\Windows.Storage.Search.dll
pool: 0xffff94895ed7a8e0 | file object: 0xffff94895ed7a960 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.XboxGameOverlay_1.52.3001.0_x64__8wekyb3d8bbwe\KnownGameListRS4.bin
pool: 0xffff94895ed7aa70 | file object: 0xffff94895ed7aaf0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
pool: 0xffff94895ed7ac00 | file object: 0xffff94895ed7ac80 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.jfm
pool: 0xffff94895ed7ad90 | file object: 0xffff94895ed7ae10 | offsetby: 0x80
\Windows\System32\Windows.Cortana.OneCore.dll
pool: 0xffff94895ed7b0b0 | file object: 0xffff94895ed7b130 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.System.winmd
pool: 0xffff94895ed7b240 | file object: 0xffff94895ed7b2c0 | offsetby: 0x80
\Windows\System32\en-US\dnsapi.dll.mui
pool: 0xffff94895ed7b3d0 | file object: 0xffff94895ed7b450 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed7b560 | file object: 0xffff94895ed7b5e0 | offsetby: 0x80
\Windows\SysWOW64\msimtf.dll
pool: 0xffff94895ed7b6f0 | file object: 0xffff94895ed7b770 | offsetby: 0x80
\Windows\rescache\_merged\1348407519\28789745.pri
pool: 0xffff94895ed7b880 | file object: 0xffff94895ed7b900 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\edb000B3.jtx
pool: 0xffff94895ed7ba10 | file object: 0xffff94895ed7ba90 | offsetby: 0x80
\Windows\SysWOW64\d2d1.dll
pool: 0xffff94895ed7bba0 | file object: 0xffff94895ed7bc20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed7bd30 | file object: 0xffff94895ed7bdb0 | offsetby: 0x80
\Windows\System32\ShellExperiences\WindowsInternal.Xaml.Controls.Tabs.dll
pool: 0xffff94895ed7c050 | file object: 0xffff94895ed7c0d0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.MicrosoftEdge_44.18362.449.0_neutral__8wekyb3d8bbwe\ActivationStore.dat.LOG1
pool: 0xffff94895ed7c1e0 | file object: 0xffff94895ed7c260 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed7c370 | file object: 0xffff94895ed7c3f0 | offsetby: 0x80
\Windows\System32\ieproxy.dll
pool: 0xffff94895ed7c500 | file object: 0xffff94895ed7c580 | offsetby: 0x80
\Windows\System32\EthernetMediaManager.dll
pool: 0xffff94895ed7c690 | file object: 0xffff94895ed7c710 | offsetby: 0x80
\Windows\System32\Windows.Web.Http.dll
pool: 0xffff94895ed7c820 | file object: 0xffff94895ed7c8a0 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb
pool: 0xffff94895ed7c9b0 | file object: 0xffff94895ed7ca30 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.MicrosoftEdge_44.18362.449.0_neutral__8wekyb3d8bbwe\ActivationStore.dat
pool: 0xffff94895ed7cb40 | file object: 0xffff94895ed7cbc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed7ccd0 | file object: 0xffff94895ed7cd50 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-CF79EE4C.pf
pool: 0xffff94895ed7ce60 | file object: 0xffff94895ed7cee0 | offsetby: 0x80
\Windows\System32\Windows.WARP.JITService.exe
pool: 0xffff94895ed7d180 | file object: 0xffff94895ed7d200 | offsetby: 0x80
\Windows\System32\Windows.ApplicationModel.Core.dll
pool: 0xffff94895ed7d310 | file object: 0xffff94895ed7d390 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed7d4a0 | file object: 0xffff94895ed7d520 | offsetby: 0x80
\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll
pool: 0xffff94895ed7d630 | file object: 0xffff94895ed7d6b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed7d7c0 | file object: 0xffff94895ed7d840 | offsetby: 0x80
\Windows\Prefetch\RUNTIMEBROKER.EXE-B81C072C.pf
pool: 0xffff94895ed7d950 | file object: 0xffff94895ed7d9d0 | offsetby: 0x80
\Windows\SysWOW64\ResourcePolicyClient.dll
pool: 0xffff94895ed7dae0 | file object: 0xffff94895ed7db60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed7dc70 | file object: 0xffff94895ed7dcf0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\NisSrv.exe
pool: 0xffff94895ed7de00 | file object: 0xffff94895ed7de80 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.MicrosoftEdge_44.18362.449.0_neutral__8wekyb3d8bbwe\ActivationStore.dat.LOG2
pool: 0xffff94895ed7e120 | file object: 0xffff94895ed7e1a0 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.Web.winmd
pool: 0xffff94895ed7e2b0 | file object: 0xffff94895ed7e330 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed7e440 | file object: 0xffff94895ed7e4c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed7e5d0 | file object: 0xffff94895ed7e650 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.jfm
pool: 0xffff94895ed7e760 | file object: 0xffff94895ed7e7e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\desktop.ini
pool: 0xffff94895ed7e8f0 | file object: 0xffff94895ed7e970 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed7ea80 | file object: 0xffff94895ed7eb00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed7ec10 | file object: 0xffff94895ed7ec90 | offsetby: 0x80
\Windows\SysWOW64\DWrite.dll
pool: 0xffff94895ed7eda0 | file object: 0xffff94895ed7ee20 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Visual Studio Code.lnk
pool: 0xffff94895ed7f0c0 | file object: 0xffff94895ed7f140 | offsetby: 0x80
\Windows\System32\Windows.UI.Shell.dll
pool: 0xffff94895ed7f250 | file object: 0xffff94895ed7f2d0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe
pool: 0xffff94895ed7f3e0 | file object: 0xffff94895ed7f460 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\File Explorer.lnk
pool: 0xffff94895ed7f570 | file object: 0xffff94895ed7f5f0 | offsetby: 0x80
\Windows\System32\ActivationClient.dll
pool: 0xffff94895ed7f700 | file object: 0xffff94895ed7f780 | offsetby: 0x80
\Windows\System32\en-US\winnlsres.dll.mui
pool: 0xffff94895ed7f890 | file object: 0xffff94895ed7f910 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed7fa20 | file object: 0xffff94895ed7faa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed7fbb0 | file object: 0xffff94895ed7fc30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed7fd40 | file object: 0xffff94895ed7fdc0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed80060 | file object: 0xffff94895ed800e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed801f0 | file object: 0xffff94895ed80270 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed80380 | file object: 0xffff94895ed80400 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ed80510 | file object: 0xffff94895ed80590 | offsetby: 0x80
\Windows\System32\Windows.WARP.JITService.dll
pool: 0xffff94895ed806a0 | file object: 0xffff94895ed80720 | offsetby: 0x80
\Windows\SystemResources\stobject.dll.mun
pool: 0xffff94895ed80830 | file object: 0xffff94895ed808b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed809c0 | file object: 0xffff94895ed80a40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed80b50 | file object: 0xffff94895ed80bd0 | offsetby: 0x80
\Windows\System32\atlthunk.dll
pool: 0xffff94895ed80ce0 | file object: 0xffff94895ed80d60 | offsetby: 0x80
\Windows\System32\en-US\stobject.dll.mui
pool: 0xffff94895ed80e70 | file object: 0xffff94895ed80ef0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Msix.PackagingTool.Driver~~1.0.mum
pool: 0xffff94895ed81000 | file object: 0xffff94895ed81080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ed81190 | file object: 0xffff94895ed81210 | offsetby: 0x80
\Windows\System32\stobject.dll
pool: 0xffff94895ed81320 | file object: 0xffff94895ed813a0 | offsetby: 0x80
\Windows\SystemResources\Windows.UI.ShellCommonInetCore\pris\Windows.UI.ShellCommonInetCore.en-US.pri
pool: 0xffff94895ed814b0 | file object: 0xffff94895ed81530 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed81640 | file object: 0xffff94895ed816c0 | offsetby: 0x80
\Windows\System32\en-US\InputSwitch.dll.mui
pool: 0xffff94895ed817d0 | file object: 0xffff94895ed81850 | offsetby: 0x80
\Windows\System32\en-US\batmeter.dll.mui
pool: 0xffff94895ed81960 | file object: 0xffff94895ed819e0 | offsetby: 0x80
\Windows\SysWOW64\OneCoreCommonProxyStub.dll
pool: 0xffff94895ed81af0 | file object: 0xffff94895ed81b70 | offsetby: 0x80
\Windows\Prefetch\MICROSOFTEDGESH.EXE-CFCB7D2B.pf
pool: 0xffff94895ed81c80 | file object: 0xffff94895ed81d00 | offsetby: 0x80
\Windows\System32\Geolocation.dll
pool: 0xffff94895ed81e10 | file object: 0xffff94895ed81e90 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfiguration\BingConfiguration_common.xml
pool: 0xffff94895ed82130 | file object: 0xffff94895ed821b0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895ed822c0 | file object: 0xffff94895ed82340 | offsetby: 0x80
\Windows\SysWOW64\d3d10warp.dll
pool: 0xffff94895ed82450 | file object: 0xffff94895ed824d0 | offsetby: 0x80
\Windows\SysWOW64\UIAutomationCore.dll
pool: 0xffff94895ed825e0 | file object: 0xffff94895ed82660 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfiguration\BingConfiguration_en-US.xml
pool: 0xffff94895ed82770 | file object: 0xffff94895ed827f0 | offsetby: 0x80
\Windows\System32\en-US\sndvolsso.dll.mui
pool: 0xffff94895ed82900 | file object: 0xffff94895ed82980 | offsetby: 0x80
\$Directory
pool: 0xffff94895ed82a90 | file object: 0xffff94895ed82b10 | offsetby: 0x80
\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
pool: 0xffff94895ed82c20 | file object: 0xffff94895ed82ca0 | offsetby: 0x80
\Windows\SystemResources\SndVolSSO.dll.mun
pool: 0xffff94895ed82db0 | file object: 0xffff94895ed82e30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f043160 | file object: 0xffff94895f0431e0 | offsetby: 0x80
\Windows\System32\en-US\propsys.dll.mui
pool: 0xffff94895f0432f0 | file object: 0xffff94895f043370 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\Settings\settings.dat
pool: 0xffff94895f043480 | file object: 0xffff94895f043500 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy
pool: 0xffff94895f043610 | file object: 0xffff94895f043690 | offsetby: 0x80
\Windows\System32\icu.dll
pool: 0xffff94895f0437a0 | file object: 0xffff94895f043820 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.dll
pool: 0xffff94895f043930 | file object: 0xffff94895f0439b0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.XboxGameOverlay_1.52.3001.0_x64__8wekyb3d8bbwe
pool: 0xffff94895f043ac0 | file object: 0xffff94895f043b40 | offsetby: 0x80
\Windows\System32\icuuc.dll
pool: 0xffff94895f043c50 | file object: 0xffff94895f043cd0 | offsetby: 0x80
\Windows\System32\icuin.dll
pool: 0xffff94895f043de0 | file object: 0xffff94895f043e60 | offsetby: 0x80
\Windows\System32\msimtf.dll
pool: 0xffff94895f044100 | file object: 0xffff94895f044180 | offsetby: 0x80
\Windows\System32\SpeechPal.dll
pool: 0xffff94895f044290 | file object: 0xffff94895f044310 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f044420 | file object: 0xffff94895f0444a0 | offsetby: 0x80
\Windows\System32\EdgeManager.dll
pool: 0xffff94895f0445b0 | file object: 0xffff94895f044630 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\BingConfigurationClient.dll
pool: 0xffff94895f044740 | file object: 0xffff94895f0447c0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy\ActivationStore.dat.LOG1
pool: 0xffff94895f0448d0 | file object: 0xffff94895f044950 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy\ActivationStore.dat.LOG2
pool: 0xffff94895f044a60 | file object: 0xffff94895f044ae0 | offsetby: 0x80
\Windows\System32\Chakra.dll
pool: 0xffff94895f044bf0 | file object: 0xffff94895f044c70 | offsetby: 0x80
\Windows\System32\ActionMgr.dll
pool: 0xffff94895f044d80 | file object: 0xffff94895f044e00 | offsetby: 0x80
\Windows\System32\Windows.Cortana.ProxyStub.dll
pool: 0xffff94895f0450a0 | file object: 0xffff94895f045120 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f045230 | file object: 0xffff94895f0452b0 | offsetby: 0x80
\Windows\System32\edgehtml.dll
pool: 0xffff94895f0453c0 | file object: 0xffff94895f045440 | offsetby: 0x80
\Windows\System32\srpapi.dll
pool: 0xffff94895f045550 | file object: 0xffff94895f0455d0 | offsetby: 0x80
\Windows\System32\edgeIso.dll
pool: 0xffff94895f0456e0 | file object: 0xffff94895f045760 | offsetby: 0x80
\Windows\System32\rometadata.dll
pool: 0xffff94895f045870 | file object: 0xffff94895f0458f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f045a00 | file object: 0xffff94895f045a80 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.Windows.Cortana_1.13.0.18362_neutral_neutral_cw5n1h2txyewy\ActivationStore.dat
pool: 0xffff94895f045b90 | file object: 0xffff94895f045c10 | offsetby: 0x80
\Windows\System32\Windows.Cortana.PAL.Desktop.dll
pool: 0xffff94895f045d20 | file object: 0xffff94895f045da0 | offsetby: 0x80
\Windows\System32\UIAutomationCore.dll
pool: 0xffff94895f046040 | file object: 0xffff94895f0460c0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Core.dll
pool: 0xffff94895f0461d0 | file object: 0xffff94895f046250 | offsetby: 0x80
\Windows\System32\msftedit.dll
pool: 0xffff94895f046360 | file object: 0xffff94895f0463e0 | offsetby: 0x80
\Windows\rescache\_merged\3616815529\1561332472.pri
pool: 0xffff94895f0464f0 | file object: 0xffff94895f046570 | offsetby: 0x80
\$Directory
pool: 0xffff94895f046680 | file object: 0xffff94895f046700 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203
pool: 0xffff94895f046810 | file object: 0xffff94895f046890 | offsetby: 0x80
\$Directory
pool: 0xffff94895f0469a0 | file object: 0xffff94895f046a20 | offsetby: 0x80
\Windows\System32\Speech_OneCore\common\sapi_onecore.dll
pool: 0xffff94895f046b30 | file object: 0xffff94895f046bb0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f046cc0 | file object: 0xffff94895f046d40 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.jfm
pool: 0xffff94895f046e50 | file object: 0xffff94895f046ed0 | offsetby: 0x80
\Windows\System32\RTMediaFrame.dll
pool: 0xffff94895f047170 | file object: 0xffff94895f0471f0 | offsetby: 0x80
\Windows\System32\RuntimeBroker.exe
pool: 0xffff94895f047300 | file object: 0xffff94895f047380 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f047490 | file object: 0xffff94895f047510 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\Microsoft\Internet Explorer\DOMStore\AZDRN8BV\www.bing[1].xml
pool: 0xffff94895f047620 | file object: 0xffff94895f0476a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Blend.exe
pool: 0xffff94895f0477b0 | file object: 0xffff94895f047830 | offsetby: 0x80
\Windows\System32\PersonaX.dll
pool: 0xffff94895f047940 | file object: 0xffff94895f0479c0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019\Visual Studio Tools\VC\x64_x86 Cross Tools Command Prompt for VS 2019.lnk
pool: 0xffff94895f047ad0 | file object: 0xffff94895f047b50 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\pris\resources.en-US.pri
pool: 0xffff94895f047c60 | file object: 0xffff94895f047ce0 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff94895f047df0 | file object: 0xffff94895f047e70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f048110 | file object: 0xffff94895f048190 | offsetby: 0x80
\Windows\System32\ConstraintIndex.Search.dll
pool: 0xffff94895f0482a0 | file object: 0xffff94895f048320 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu\Programs\Blend for Visual Studio 2019.lnk
pool: 0xffff94895f048430 | file object: 0xffff94895f0484b0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\resources.pri
pool: 0xffff94895f0485c0 | file object: 0xffff94895f048640 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\Settings\settings.dat.LOG1
pool: 0xffff94895f048750 | file object: 0xffff94895f0487d0 | offsetby: 0x80
\Windows\Fonts\segoeui.ttf
pool: 0xffff94895f0488e0 | file object: 0xffff94895f048960 | offsetby: 0x80
\Windows\System32\en-US\cmd.exe.mui
pool: 0xffff94895f048a70 | file object: 0xffff94895f048af0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203
pool: 0xffff94895f048c00 | file object: 0xffff94895f048c80 | offsetby: 0x80
\Windows\System32\cmd.exe
pool: 0xffff94895f048d90 | file object: 0xffff94895f048e10 | offsetby: 0x80
\Windows\System32\localspl.dll
pool: 0xffff94895f0490b0 | file object: 0xffff94895f049130 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\Settings\settings.dat.LOG2
pool: 0xffff94895f049240 | file object: 0xffff94895f0492c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f0493d0 | file object: 0xffff94895f049450 | offsetby: 0x80
\Windows\System32\Windows.Web.Http.dll
pool: 0xffff94895f049560 | file object: 0xffff94895f0495e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f0496f0 | file object: 0xffff94895f049770 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\TempState\Traces\CortanaTrace1.etl
pool: 0xffff94895f049880 | file object: 0xffff94895f049900 | offsetby: 0x80
\Windows\System32\PrintIsolationProxy.dll
pool: 0xffff94895f049a10 | file object: 0xffff94895f049a90 | offsetby: 0x80
\Windows\System32\en-US\localspl.dll.mui
pool: 0xffff94895f049ba0 | file object: 0xffff94895f049c20 | offsetby: 0x80
\$Directory
pool: 0xffff94895f049d30 | file object: 0xffff94895f049db0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\ConstraintIndex\Settings_{b8d50ec8-4156-4a36-83d7-a4e1d31864fb}\Settings.ft
pool: 0xffff94895f04a050 | file object: 0xffff94895f04a0d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\ConstraintIndex\Settings_{b8d50ec8-4156-4a36-83d7-a4e1d31864fb}\Settings.index
pool: 0xffff94895f04a1e0 | file object: 0xffff94895f04a260 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{06de659a-a216-4bfb-b4c7-545a67bfdfd9}\apps.csg
pool: 0xffff94895f04a370 | file object: 0xffff94895f04a3f0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\RemindersUI.dll
pool: 0xffff94895f04a500 | file object: 0xffff94895f04a580 | offsetby: 0x80
\Windows\System32\Windows.UI.Input.Inking.dll
pool: 0xffff94895f04a690 | file object: 0xffff94895f04a710 | offsetby: 0x80
\$Directory
pool: 0xffff94895f04a820 | file object: 0xffff94895f04a8a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f04a9b0 | file object: 0xffff94895f04aa30 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.ApplicationModel.winmd
pool: 0xffff94895f04ab40 | file object: 0xffff94895f04abc0 | offsetby: 0x80
\Windows\System32\SpeechPal.dll
pool: 0xffff94895f04acd0 | file object: 0xffff94895f04ad50 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\DeviceSearchCache\SettingsCache.txt
pool: 0xffff94895f04ae60 | file object: 0xffff94895f04aee0 | offsetby: 0x80
\Windows\System32\msftedit.dll
pool: 0xffff94895f04b180 | file object: 0xffff94895f04b200 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f04b310 | file object: 0xffff94895f04b390 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Actions.dll
pool: 0xffff94895f04b4a0 | file object: 0xffff94895f04b520 | offsetby: 0x80
\Windows\Fonts\segoeui.ttf
pool: 0xffff94895f04b630 | file object: 0xffff94895f04b6b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f04b7c0 | file object: 0xffff94895f04b840 | offsetby: 0x80
\Windows\System32\UserDataTypeHelperUtil.dll
pool: 0xffff94895f04b950 | file object: 0xffff94895f04b9d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f04bae0 | file object: 0xffff94895f04bb60 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\GameDVR\KnownGameList.bin
pool: 0xffff94895f04bc70 | file object: 0xffff94895f04bcf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Blend.exe.config
pool: 0xffff94895f04be00 | file object: 0xffff94895f04be80 | offsetby: 0x80
\Windows\System32\spoolss.dll
pool: 0xffff94895f04c120 | file object: 0xffff94895f04c1a0 | offsetby: 0x80
\Windows\System32\sfc_os.dll
pool: 0xffff94895f04c2b0 | file object: 0xffff94895f04c330 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\TokenBroker\Cache\95d9a2a97a42f02325559b453ba7f8fe839baa18.tbres
pool: 0xffff94895f04c440 | file object: 0xffff94895f04c4c0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{06de659a-a216-4bfb-b4c7-545a67bfdfd9}\settings.csg
pool: 0xffff94895f04c5d0 | file object: 0xffff94895f04c650 | offsetby: 0x80
\Windows\System32\mfplat.dll
pool: 0xffff94895f04c760 | file object: 0xffff94895f04c7e0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Safety\shell\remote\script
pool: 0xffff94895f04c8f0 | file object: 0xffff94895f04c970 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f04ca80 | file object: 0xffff94895f04cb00 | offsetby: 0x80
\$Directory
pool: 0xffff94895f04cc10 | file object: 0xffff94895f04cc90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f04cda0 | file object: 0xffff94895f04ce20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f04d0c0 | file object: 0xffff94895f04d140 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\93d3c66b647268c606511d307aafc707db3eb440\4e70b3a35af8fb80e84e478c823f9b3819340aa1e4b50670066a9c070015cccd
pool: 0xffff94895f04d250 | file object: 0xffff94895f04d2d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f04d3e0 | file object: 0xffff94895f04d460 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f04d570 | file object: 0xffff94895f04d5f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f04d700 | file object: 0xffff94895f04d780 | offsetby: 0x80
\Windows\System32\AppMon.dll
pool: 0xffff94895f04d890 | file object: 0xffff94895f04d910 | offsetby: 0x80

pool: 0xffff94895f04da20 | file object: 0xffff94895f04daa0 | offsetby: 0x80
\Windows\CSC\v2.0.6\namespace
pool: 0xffff94895f04dbb0 | file object: 0xffff94895f04dc30 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\LocalCache\perUserCache_0\index
pool: 0xffff94895f04dd40 | file object: 0xffff94895f04ddc0 | offsetby: 0x80
\Windows\System32\en-US\smartscreen.exe.mui
pool: 0xffff94895f04e060 | file object: 0xffff94895f04e0e0 | offsetby: 0x80
\Windows\System32\en-US\wlrmdr.exe.mui
pool: 0xffff94895f04e1f0 | file object: 0xffff94895f04e270 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.edb
pool: 0xffff94895f04e380 | file object: 0xffff94895f04e400 | offsetby: 0x80
\Windows\SysWOW64\wbem\wmiutils.dll
pool: 0xffff94895f04e510 | file object: 0xffff94895f04e590 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\setup\logs\Downloader_2020-06-04_062122_3812-3832.log
pool: 0xffff94895f04e6a0 | file object: 0xffff94895f04e720 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f04e830 | file object: 0xffff94895f04e8b0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f04e9c0 | file object: 0xffff94895f04ea40 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\TokenBroker\Cache\fbaf94e759052658216786bfbabcdced1b67a5c2.tbres
pool: 0xffff94895f04eb50 | file object: 0xffff94895f04ebd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f04ece0 | file object: 0xffff94895f04ed60 | offsetby: 0x80
\$Directory
pool: 0xffff94895f04ee70 | file object: 0xffff94895f04eef0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\93d3c66b647268c606511d307aafc707db3eb440\93d3c66b647268c606511d307aafc707db3eb440.pieceshash
pool: 0xffff94895f04f000 | file object: 0xffff94895f04f080 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f04f190 | file object: 0xffff94895f04f210 | offsetby: 0x80
sm
pool: 0xffff94895f04f320 | file object: 0xffff94895f04f3a0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\WinStore.Preview.dll
pool: 0xffff94895f04f4b0 | file object: 0xffff94895f04f530 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f04f640 | file object: 0xffff94895f04f6c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f04f7d0 | file object: 0xffff94895f04f850 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.Workspaces.dll
pool: 0xffff94895f04f960 | file object: 0xffff94895f04f9e0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
pool: 0xffff94895f04faf0 | file object: 0xffff94895f04fb70 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\Qt5Widgets.dll
pool: 0xffff94895f04fc80 | file object: 0xffff94895f04fd00 | offsetby: 0x80
\Windows\SysWOW64\iertutil.dll
pool: 0xffff94895f04fe10 | file object: 0xffff94895f04fe90 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\platforms\qwindows.dll
pool: 0xffff94895f050130 | file object: 0xffff94895f0501b0 | offsetby: 0x80
\Windows\System32\en-US\Windows.Web.Http.dll.mui
pool: 0xffff94895f0502c0 | file object: 0xffff94895f050340 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Vault\4BF4C442-9B8A-41A0-B380-DD4A704DDB28\Policy.vpol
pool: 0xffff94895f050450 | file object: 0xffff94895f0504d0 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895f0505e0 | file object: 0xffff94895f050660 | offsetby: 0x80
\Windows\WinSxS\Manifests\x86_microsoft.windows.systemcompatible_6595b64144ccf1df_6.0.18362.752_none_360a2fa7e425ce19.manifest
pool: 0xffff94895f050770 | file object: 0xffff94895f0507f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f050900 | file object: 0xffff94895f050980 | offsetby: 0x80
\Windows\System32\UserDataTimeUtil.dll
pool: 0xffff94895f050a90 | file object: 0xffff94895f050b10 | offsetby: 0x80
\Windows\SoftwareDistribution\DataStore\Logs\edb00046.l
pool: 0xffff94895f050c20 | file object: 0xffff94895f050ca0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f050db0 | file object: 0xffff94895f050e30 | offsetby: 0x80
\Windows\System32\appraiser.dll
pool: 0xffff94895f0510d0 | file object: 0xffff94895f051150 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\VisualStudio\16.0_0f5aa209\1033\CmdUI.PRF
pool: 0xffff94895f051260 | file object: 0xffff94895f0512e0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Vault\UserProfileRoaming\Latest.dat
pool: 0xffff94895f0513f0 | file object: 0xffff94895f051470 | offsetby: 0x80
\Windows\System32\DeviceUpdateCenterCsp.dll
pool: 0xffff94895f051580 | file object: 0xffff94895f051600 | offsetby: 0x80
\$Directory
pool: 0xffff94895f051710 | file object: 0xffff94895f051790 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\8d60a20bcb7b36d0ddf74b96d554c96e\mscorlib.ni.dll.aux
pool: 0xffff94895f0518a0 | file object: 0xffff94895f051920 | offsetby: 0x80
\$Directory
pool: 0xffff94895f051a30 | file object: 0xffff94895f051ab0 | offsetby: 0x80
\Windows
pool: 0xffff94895f051bc0 | file object: 0xffff94895f051c40 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Vault\UserProfileRoaming\Latest.dat
pool: 0xffff94895f051d50 | file object: 0xffff94895f051dd0 | offsetby: 0x80
₀廆钉￿
pool: 0xffff94895f052070 | file object: 0xffff94895f0520f0 | offsetby: 0x80
\Windows\System32\WinRtTracing.dll
pool: 0xffff94895f052200 | file object: 0xffff94895f052280 | offsetby: 0x80
\$Directory
pool: 0xffff94895f052390 | file object: 0xffff94895f052410 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f052520 | file object: 0xffff94895f0525a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f0526b0 | file object: 0xffff94895f052730 | offsetby: 0x80
\$Directory
pool: 0xffff94895f052840 | file object: 0xffff94895f0528c0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Vault\4BF4C442-9B8A-41A0-B380-DD4A704DDB28\1D4350A3-330D-4AF9-B3FF-A927A45998AC.vsch
pool: 0xffff94895f0529d0 | file object: 0xffff94895f052a50 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
pool: 0xffff94895f052b60 | file object: 0xffff94895f052be0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f052cf0 | file object: 0xffff94895f052d70 | offsetby: 0x80
\Windows\System32\SearchIndexer.exe
pool: 0xffff94895f053010 | file object: 0xffff94895f053090 | offsetby: 0x80
\Windows\SysWOW64\winmm.dll
pool: 0xffff94895f0531a0 | file object: 0xffff94895f053220 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.XboxGameOverlay_1.52.3001.0_x64__8wekyb3d8bbwe
pool: 0xffff94895f053330 | file object: 0xffff94895f0533b0 | offsetby: 0x80
\Windows\SysWOW64\dnsapi.dll
pool: 0xffff94895f0534c0 | file object: 0xffff94895f053540 | offsetby: 0x80
\Windows\SysWOW64\dbgcore.dll
pool: 0xffff94895f053650 | file object: 0xffff94895f0536d0 | offsetby: 0x80
\Windows\SysWOW64\wscapi.dll
pool: 0xffff94895f0537e0 | file object: 0xffff94895f053860 | offsetby: 0x80
\Windows\System32\aeevts.dll
pool: 0xffff94895f053970 | file object: 0xffff94895f0539f0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Telemetry.evtx
pool: 0xffff94895f053b00 | file object: 0xffff94895f053b80 | offsetby: 0x80
\Windows\SysWOW64\winmmbase.dll
pool: 0xffff94895f053c90 | file object: 0xffff94895f053d10 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_88614FFAD35D353421B8A7E1FE18FCE4
pool: 0xffff94895f053e20 | file object: 0xffff94895f053ea0 | offsetby: 0x80
\Windows\SysWOW64\dbghelp.dll
pool: 0xffff94895f054140 | file object: 0xffff94895f0541c0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\ssleay32.dll
pool: 0xffff94895f0542d0 | file object: 0xffff94895f054350 | offsetby: 0x80
\Windows\SysWOW64\cldapi.dll
pool: 0xffff94895f054460 | file object: 0xffff94895f0544e0 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_88614FFAD35D353421B8A7E1FE18FCE4
pool: 0xffff94895f0545f0 | file object: 0xffff94895f054670 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\libeay32.dll
pool: 0xffff94895f054780 | file object: 0xffff94895f054800 | offsetby: 0x80
\Windows\SysWOW64\srvcli.dll
pool: 0xffff94895f054910 | file object: 0xffff94895f054990 | offsetby: 0x80
\Program Files\Windows Defender\MpClient.dll
pool: 0xffff94895f054aa0 | file object: 0xffff94895f054b20 | offsetby: 0x80
\Windows\SysWOW64\fltLib.dll
pool: 0xffff94895f054c30 | file object: 0xffff94895f054cb0 | offsetby: 0x80
\Windows\SysWOW64\ntasn1.dll
pool: 0xffff94895f054dc0 | file object: 0xffff94895f054e40 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895f0550e0 | file object: 0xffff94895f055160 | offsetby: 0x80
\Windows\SysWOW64\netapi32.dll
pool: 0xffff94895f055270 | file object: 0xffff94895f0552f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f055400 | file object: 0xffff94895f055480 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\MsMpLics.dll
pool: 0xffff94895f055590 | file object: 0xffff94895f055610 | offsetby: 0x80
\Windows\SysWOW64\mswsock.dll
pool: 0xffff94895f055720 | file object: 0xffff94895f0557a0 | offsetby: 0x80
\Windows\SysWOW64\netutils.dll
pool: 0xffff94895f0558b0 | file object: 0xffff94895f055930 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\ActivationStore.dat
pool: 0xffff94895f055a40 | file object: 0xffff94895f055ac0 | offsetby: 0x80
\Windows\SysWOW64\mpr.dll
pool: 0xffff94895f055bd0 | file object: 0xffff94895f055c50 | offsetby: 0x80
\Windows\Prefetch\RUNTIMEBROKER.EXE-497F06BA.pf
pool: 0xffff94895f055d60 | file object: 0xffff94895f055de0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.XboxGameOverlay_1.52.3001.0_x64__8wekyb3d8bbwe\KnownGameList.bin
pool: 0xffff94895f056080 | file object: 0xffff94895f056100 | offsetby: 0x80
\Windows\System32\en-US\SearchIndexer.exe.mui
pool: 0xffff94895f056210 | file object: 0xffff94895f056290 | offsetby: 0x80
\Windows\Prefetch\SEARCHINDEXER.EXE-4A6353B9.pf
pool: 0xffff94895f0563a0 | file object: 0xffff94895f056420 | offsetby: 0x80
\Windows\System32\en-US\edgehtml.dll.mui
pool: 0xffff94895f056530 | file object: 0xffff94895f0565b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f0566c0 | file object: 0xffff94895f056740 | offsetby: 0x80
\Windows\System32\msimtf.dll
pool: 0xffff94895f056850 | file object: 0xffff94895f0568d0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f0569e0 | file object: 0xffff94895f056a60 | offsetby: 0x80
\$Directory
pool: 0xffff94895f056b70 | file object: 0xffff94895f056bf0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Compatibility-Assistant.evtx
pool: 0xffff94895f056d00 | file object: 0xffff94895f056d80 | offsetby: 0x80
\$Directory
pool: 0xffff94895f057020 | file object: 0xffff94895f0570a0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\8b6bf2141e0366fccda0fa011d31144baffa2cad\f9ae68858dc926ca2fa30929835e1ff4a781d9c1b7d0c2fbcf04a06289631e43
pool: 0xffff94895f0571b0 | file object: 0xffff94895f057230 | offsetby: 0x80
\$Directory
pool: 0xffff94895f057340 | file object: 0xffff94895f0573c0 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895f0574d0 | file object: 0xffff94895f057550 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\8b6bf2141e0366fccda0fa011d31144baffa2cad\8b6bf2141e0366fccda0fa011d31144baffa2cad.pieceshash
pool: 0xffff94895f057660 | file object: 0xffff94895f0576e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\Init[1].htm
pool: 0xffff94895f0577f0 | file object: 0xffff94895f057870 | offsetby: 0x80
\Windows\System32\CapabilityAccessManagerClient.dll
pool: 0xffff94895f057980 | file object: 0xffff94895f057a00 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\S-1-5-21-3234566417-3121902272-2793192418-1001.pckgdep
pool: 0xffff94895f057b10 | file object: 0xffff94895f057b90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f057ca0 | file object: 0xffff94895f057d20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f057e30 | file object: 0xffff94895f057eb0 | offsetby: 0x80
\Windows\System32\SearchIndexer.exe
pool: 0xffff94895f058150 | file object: 0xffff94895f0581d0 | offsetby: 0x80
\Windows\System32\en-US\SearchIndexer.exe.mui
pool: 0xffff94895f0582e0 | file object: 0xffff94895f058360 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff94895f058470 | file object: 0xffff94895f0584f0 | offsetby: 0x80
\Windows\System32\edgeIso.dll
pool: 0xffff94895f058600 | file object: 0xffff94895f058680 | offsetby: 0x80
\$Directory
pool: 0xffff94895f058790 | file object: 0xffff94895f058810 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f058920 | file object: 0xffff94895f0589a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f058ab0 | file object: 0xffff94895f058b30 | offsetby: 0x80
\Windows\System32\Windows.Cortana.OneCore.dll
pool: 0xffff94895f058c40 | file object: 0xffff94895f058cc0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\BBDBvk5AokRBwrox4FNOb3dTd1E[1].css
pool: 0xffff94895f058dd0 | file object: 0xffff94895f058e50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f0590f0 | file object: 0xffff94895f059170 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\KrMCCFSW8lpH72h04MfXP1r7Iwg.br[1].js
pool: 0xffff94895f059280 | file object: 0xffff94895f059300 | offsetby: 0x80
\Windows\System32\Windows.Cortana.ProxyStub.dll
pool: 0xffff94895f059410 | file object: 0xffff94895f059490 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Search.winmd
pool: 0xffff94895f0595a0 | file object: 0xffff94895f059620 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f059730 | file object: 0xffff94895f0597b0 | offsetby: 0x80
\Windows\System32\sru\SRU00082.l
pool: 0xffff94895f0598c0 | file object: 0xffff94895f059940 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\VD_yvlUb0tvp8Jzm6M5kckrk-G4[1].js
pool: 0xffff94895f059a50 | file object: 0xffff94895f059ad0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\YUZzL_Z2JA2fx-HeecWdeAth214.br[1].js
pool: 0xffff94895f059be0 | file object: 0xffff94895f059c60 | offsetby: 0x80
\Windows\SysWOW64\atlthunk.dll
pool: 0xffff94895f059d70 | file object: 0xffff94895f059df0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\2sxc17BhrWq7uny6sVsav94vDrk[1].js
pool: 0xffff94895f05a090 | file object: 0xffff94895f05a110 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.XboxGameOverlay_1.52.3001.0_x64__8wekyb3d8bbwe\KnownGameListRS3.bin
pool: 0xffff94895f05a220 | file object: 0xffff94895f05a2a0 | offsetby: 0x80
\Windows\SysWOW64\mlang.dll
pool: 0xffff94895f05a3b0 | file object: 0xffff94895f05a430 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\9sbvPkhkwbQemj6O7Nka01E6ITI.br[1].js
pool: 0xffff94895f05a540 | file object: 0xffff94895f05a5c0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\BkCFSCgkW-Wh02pJlYudqkJYDas[1].js
pool: 0xffff94895f05a6d0 | file object: 0xffff94895f05a750 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.XboxGamingOverlay_8wekyb3d8bbwe\LocalCache
pool: 0xffff94895f05a860 | file object: 0xffff94895f05a8e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f05a9f0 | file object: 0xffff94895f05aa70 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\GameDVR
pool: 0xffff94895f05ab80 | file object: 0xffff94895f05ac00 | offsetby: 0x80
\Windows\bcastdvr
pool: 0xffff94895f05ad10 | file object: 0xffff94895f05ad90 | offsetby: 0x80
\Windows\bcastdvr\KnownGameList.bin
pool: 0xffff94895f05b030 | file object: 0xffff94895f05b0b0 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff94895f05b1c0 | file object: 0xffff94895f05b240 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\MicrosoftEdge.exe
pool: 0xffff94895f05b350 | file object: 0xffff94895f05b3d0 | offsetby: 0x80
\Windows\System32\en-US\ESENT.dll.mui
pool: 0xffff94895f05b4e0 | file object: 0xffff94895f05b560 | offsetby: 0x80
\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
pool: 0xffff94895f05b670 | file object: 0xffff94895f05b6f0 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\edb.jtx
pool: 0xffff94895f05b800 | file object: 0xffff94895f05b880 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\ActivationStore.dat
pool: 0xffff94895f05b990 | file object: 0xffff94895f05ba10 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.Foundation.winmd
pool: 0xffff94895f05bb20 | file object: 0xffff94895f05bba0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\_ae0cB8fPDMkfSJUO5xUuczSt7E[1].css
pool: 0xffff94895f05bcb0 | file object: 0xffff94895f05bd30 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.Internal.Search.winmd
pool: 0xffff94895f05be40 | file object: 0xffff94895f05bec0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\rWodfSOe6oykZ3rDrp6kEsYBoUY.br[1].js
pool: 0xffff94895f05c160 | file object: 0xffff94895f05c1e0 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.jfm
pool: 0xffff94895f05c2f0 | file object: 0xffff94895f05c370 | offsetby: 0x80
\Windows\System32\mssprxy.dll
pool: 0xffff94895f05c480 | file object: 0xffff94895f05c500 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\i_YZcGgrGDS11TLJss9m0werwmQ[1].js
pool: 0xffff94895f05c610 | file object: 0xffff94895f05c690 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.MicrosoftEdge_44.18362.449.0_neutral__8wekyb3d8bbwe\ActivationStore.dat
pool: 0xffff94895f05c7a0 | file object: 0xffff94895f05c820 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.UI.winmd
pool: 0xffff94895f05c930 | file object: 0xffff94895f05c9b0 | offsetby: 0x80
\Windows\System32\rundll32.exe
pool: 0xffff94895f05cac0 | file object: 0xffff94895f05cb40 | offsetby: 0x80
\Windows\Prefetch\MICROSOFTEDGE.EXE-4239ED94.pf
pool: 0xffff94895f05cc50 | file object: 0xffff94895f05ccd0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f05cde0 | file object: 0xffff94895f05ce60 | offsetby: 0x80
\Windows\System32\prnfldr.dll
pool: 0xffff94895f05d100 | file object: 0xffff94895f05d180 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SecStore\CiST0000.000
pool: 0xffff94895f05d290 | file object: 0xffff94895f05d310 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\Microsoft\Internet Explorer\DOMStore\AZDRN8BV
pool: 0xffff94895f05d420 | file object: 0xffff94895f05d4a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\wutQTnZB8DSAVx0Uyj2lGLBomhU.br[1].js
pool: 0xffff94895f05d5b0 | file object: 0xffff94895f05d630 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\edb.jtx
pool: 0xffff94895f05d740 | file object: 0xffff94895f05d7c0 | offsetby: 0x80
\Windows\SysWOW64\AppXDeploymentClient.dll
pool: 0xffff94895f05d8d0 | file object: 0xffff94895f05d950 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\PropMap\CiPT0000.000
pool: 0xffff94895f05da60 | file object: 0xffff94895f05dae0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\tdtrFofSv8OyknEkD6yLgNTVtoI[1].js
pool: 0xffff94895f05dbf0 | file object: 0xffff94895f05dc70 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_C9FB72B5AE80778A08024D8B0FDECC6F
pool: 0xffff94895f05dd80 | file object: 0xffff94895f05de00 | offsetby: 0x80
\Windows\SystemResources\Chakra.dll.mun
pool: 0xffff94895f05e0a0 | file object: 0xffff94895f05e120 | offsetby: 0x80
\$Directory
pool: 0xffff94895f05e230 | file object: 0xffff94895f05e2b0 | offsetby: 0x80
\Windows\SystemResources\tquery.dll.mun
pool: 0xffff94895f05e3c0 | file object: 0xffff94895f05e440 | offsetby: 0x80
\Windows\System32\Windows.ApplicationModel.Background.TimeBroker.dll
pool: 0xffff94895f05e550 | file object: 0xffff94895f05e5d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\5080DC7A65DB6A5960ECD874088F3328_6CBA2C06D5985DD95AE59AF8FC7C6220
pool: 0xffff94895f05e6e0 | file object: 0xffff94895f05e760 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\lyn02bUVdkxg2w6l5Bh4OP8JOHY[1].js
pool: 0xffff94895f05e870 | file object: 0xffff94895f05e8f0 | offsetby: 0x80
\Windows\System32\NetworkUXBroker.dll
pool: 0xffff94895f05ea00 | file object: 0xffff94895f05ea80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f05eb90 | file object: 0xffff94895f05ec10 | offsetby: 0x80
\Program Files\Common Files\microsoft shared\ink\IpsPlugin.dll
pool: 0xffff94895f05ed20 | file object: 0xffff94895f05eda0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\dhJQjqX1fnpl5EFkYDpBSnHfyIc.br[1].js
pool: 0xffff94895f05f040 | file object: 0xffff94895f05f0c0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\AppCache\OYXS3CPL\17\GwhBA0TIhG5qv_YqoSVf3jbzOwY[1].js
pool: 0xffff94895f05f1d0 | file object: 0xffff94895f05f250 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\edb.jcp
pool: 0xffff94895f05f360 | file object: 0xffff94895f05f3e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_121FBDD5FFBF03460F5DFF73AC8B317B
pool: 0xffff94895f05f4f0 | file object: 0xffff94895f05f570 | offsetby: 0x80
\Windows\System32\ApplicationFrameHost.exe
pool: 0xffff94895f05f680 | file object: 0xffff94895f05f700 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\EDC238BFF48A31D55A97E1E93892934B_C31B2498754E340573F1336DE607D619
pool: 0xffff94895f05f810 | file object: 0xffff94895f05f890 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f05f9a0 | file object: 0xffff94895f05fa20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f05fb30 | file object: 0xffff94895f05fbb0 | offsetby: 0x80
\Windows\SysWOW64\FirewallAPI.dll
pool: 0xffff94895f05fcc0 | file object: 0xffff94895f05fd40 | offsetby: 0x80
\Windows\System32\notepad.exe
pool: 0xffff94895f05fe50 | file object: 0xffff94895f05fed0 | offsetby: 0x80
\Windows\Prefetch\APPLICATIONFRAMEHOST.EXE-CCEEF759.pf
pool: 0xffff94895f060170 | file object: 0xffff94895f0601f0 | offsetby: 0x80
\Windows\System32\en-US\notepad.exe.mui
pool: 0xffff94895f060300 | file object: 0xffff94895f060380 | offsetby: 0x80
\System Volume Information\IndexerVolumeGuid
pool: 0xffff94895f060490 | file object: 0xffff94895f060510 | offsetby: 0x80
\Windows\SysWOW64\StateRepository.Core.dll
pool: 0xffff94895f060620 | file object: 0xffff94895f0606a0 | offsetby: 0x80
\Windows\SysWOW64\fwbase.dll
pool: 0xffff94895f0607b0 | file object: 0xffff94895f060830 | offsetby: 0x80
\Windows\System32\SystemSettings.DataModel.dll
pool: 0xffff94895f060940 | file object: 0xffff94895f0609c0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe
pool: 0xffff94895f060ad0 | file object: 0xffff94895f060b50 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f060c60 | file object: 0xffff94895f060ce0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f060df0 | file object: 0xffff94895f060e70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f061110 | file object: 0xffff94895f061190 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\edb000B0.jtx
pool: 0xffff94895f0612a0 | file object: 0xffff94895f061320 | offsetby: 0x80
\Windows\System32\SearchFilterHost.exe
pool: 0xffff94895f061430 | file object: 0xffff94895f0614b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\CortanaAssist\AllowList.dat
pool: 0xffff94895f0615c0 | file object: 0xffff94895f061640 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\edb000B1.jtx
pool: 0xffff94895f061750 | file object: 0xffff94895f0617d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f0618e0 | file object: 0xffff94895f061960 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f061a70 | file object: 0xffff94895f061af0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f061c00 | file object: 0xffff94895f061c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f061d90 | file object: 0xffff94895f061e10 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\56D028D820B809707DD543ADC5BA740A_DA817912A0FF50B7ECED96A7A0B8B1D1
pool: 0xffff94895f0620b0 | file object: 0xffff94895f062130 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f062240 | file object: 0xffff94895f0622c0 | offsetby: 0x80
\Windows\System32\feclient.dll
pool: 0xffff94895f0623d0 | file object: 0xffff94895f062450 | offsetby: 0x80
\Windows\System32\ApplicationFrameHost.exe
pool: 0xffff94895f062560 | file object: 0xffff94895f0625e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\Recovery\Active\RecoveryStore.{0913F3ED-3CC5-413A-B33C-0C14AC3EDC9F}.dat
pool: 0xffff94895f0626f0 | file object: 0xffff94895f062770 | offsetby: 0x80
\$Directory
pool: 0xffff94895f062880 | file object: 0xffff94895f062900 | offsetby: 0x80
\Windows\System32\apisetschema.dll
pool: 0xffff94895f062a10 | file object: 0xffff94895f062a90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f062ba0 | file object: 0xffff94895f062c20 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eData.dll
pool: 0xffff94895f062d30 | file object: 0xffff94895f062db0 | offsetby: 0x80
\Windows\System32\en-US\ESENT.dll.mui
pool: 0xffff94895f063050 | file object: 0xffff94895f0630d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Settings\settings.dat
pool: 0xffff94895f0631e0 | file object: 0xffff94895f063260 | offsetby: 0x80
\$Directory
pool: 0xffff94895f063370 | file object: 0xffff94895f0633f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f063500 | file object: 0xffff94895f063580 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\bb572b74b79e4ae665d760c8d14e9eedb4f6b9c1\1fd859b1b07a5cdccc8eb815dce845ebedf83d3805d99e30273b0967b49cf1d3
pool: 0xffff94895f063690 | file object: 0xffff94895f063710 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f063820 | file object: 0xffff94895f0638a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Settings\settings.dat.LOG1
pool: 0xffff94895f0639b0 | file object: 0xffff94895f063a30 | offsetby: 0x80
\Windows\System32\eShims.dll
pool: 0xffff94895f063b40 | file object: 0xffff94895f063bc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f063cd0 | file object: 0xffff94895f063d50 | offsetby: 0x80
\$Directory
pool: 0xffff94895f063e60 | file object: 0xffff94895f063ee0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Settings\settings.dat.LOG2
pool: 0xffff94895f064180 | file object: 0xffff94895f064200 | offsetby: 0x80
\$Directory
pool: 0xffff94895f064310 | file object: 0xffff94895f064390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f0644a0 | file object: 0xffff94895f064520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f064630 | file object: 0xffff94895f0646b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f0647c0 | file object: 0xffff94895f064840 | offsetby: 0x80
\$Directory
pool: 0xffff94895f064950 | file object: 0xffff94895f0649d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f064ae0 | file object: 0xffff94895f064b60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f064c70 | file object: 0xffff94895f064cf0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\SkypeApp.exe
pool: 0xffff94895f064e00 | file object: 0xffff94895f064e80 | offsetby: 0x80
\Windows\SysWOW64\WinTypes.dll
pool: 0xffff94895f065120 | file object: 0xffff94895f0651a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f0652b0 | file object: 0xffff94895f065330 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f065440 | file object: 0xffff94895f0654c0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\bb572b74b79e4ae665d760c8d14e9eedb4f6b9c1\bb572b74b79e4ae665d760c8d14e9eedb4f6b9c1.pieceshash
pool: 0xffff94895f0655d0 | file object: 0xffff94895f065650 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eModel.dll
pool: 0xffff94895f065760 | file object: 0xffff94895f0657e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f0658f0 | file object: 0xffff94895f065970 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f065a80 | file object: 0xffff94895f065b00 | offsetby: 0x80
\Windows\System32\en-US\ApplicationFrame.dll.mui
pool: 0xffff94895f065c10 | file object: 0xffff94895f065c90 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eModel.dll
pool: 0xffff94895f065da0 | file object: 0xffff94895f065e20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f0660c0 | file object: 0xffff94895f066140 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\DataStore\Data\nouser1\120712-0049\DBStore\spartan.edb
pool: 0xffff94895f066250 | file object: 0xffff94895f0662d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\DataStore\Data\nouser1\120712-0049\DBStore\spartan.edb
pool: 0xffff94895f0663e0 | file object: 0xffff94895f066460 | offsetby: 0x80
\Windows\System32\browser_broker.exe
pool: 0xffff94895f066570 | file object: 0xffff94895f0665f0 | offsetby: 0x80
\Windows\System32\browser_broker.exe
pool: 0xffff94895f066700 | file object: 0xffff94895f066780 | offsetby: 0x80
\Windows\System32\en-US\user32.dll.mui
pool: 0xffff94895f066890 | file object: 0xffff94895f066910 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\F12703B35B1F82C21160A92376087C84_C69A6F941E6EF88B8485DE94A86B7BCC
pool: 0xffff94895f066a20 | file object: 0xffff94895f066aa0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f066bb0 | file object: 0xffff94895f066c30 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895f066d40 | file object: 0xffff94895f066dc0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\da53ab2cffb3ee4dcecda3d584ce2ff6c3ff69cc\da53ab2cffb3ee4dcecda3d584ce2ff6c3ff69cc.pieceshash
pool: 0xffff94895f067060 | file object: 0xffff94895f0670e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f0671f0 | file object: 0xffff94895f067270 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f067380 | file object: 0xffff94895f067400 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\edb000B2.jtx
pool: 0xffff94895f067510 | file object: 0xffff94895f067590 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f0676a0 | file object: 0xffff94895f067720 | offsetby: 0x80
\Windows\Prefetch\BROWSER_BROKER.EXE-E6357BB0.pf
pool: 0xffff94895f067830 | file object: 0xffff94895f0678b0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\fusion.dll
pool: 0xffff94895f0679c0 | file object: 0xffff94895f067a40 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\YourPhone.exe
pool: 0xffff94895f067b50 | file object: 0xffff94895f067bd0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f067ce0 | file object: 0xffff94895f067d60 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895f067e70 | file object: 0xffff94895f067ef0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f068000 | file object: 0xffff94895f068080 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\Application.manifest
pool: 0xffff94895f068190 | file object: 0xffff94895f068210 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f068320 | file object: 0xffff94895f0683a0 | offsetby: 0x80
\Windows\System32\aadWamExtension.dll
pool: 0xffff94895f0684b0 | file object: 0xffff94895f068530 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\DataStore\Data\nouser1\120712-0049\DBStore\spartan.jfm
pool: 0xffff94895f068640 | file object: 0xffff94895f0686c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f0687d0 | file object: 0xffff94895f068850 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f068960 | file object: 0xffff94895f0689e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f068af0 | file object: 0xffff94895f068b70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f068c80 | file object: 0xffff94895f068d00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f068e10 | file object: 0xffff94895f068e90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\VSIXConfigurationUpdater.exe
pool: 0xffff94895f069130 | file object: 0xffff94895f0691b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f0692c0 | file object: 0xffff94895f069340 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f069450 | file object: 0xffff94895f0694d0 | offsetby: 0x80
\Windows\SysWOW64\msxml6.dll
pool: 0xffff94895f0695e0 | file object: 0xffff94895f069660 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Protect\S-1-5-21-3234566417-3121902272-2793192418-1001\Preferred
pool: 0xffff94895f069770 | file object: 0xffff94895f0697f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f069900 | file object: 0xffff94895f069980 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eData.dll
pool: 0xffff94895f069a90 | file object: 0xffff94895f069b10 | offsetby: 0x80
\Windows\System32\en-US\ApplicationFrame.dll.mui
pool: 0xffff94895f069c20 | file object: 0xffff94895f069ca0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f069db0 | file object: 0xffff94895f069e30 | offsetby: 0x80
\Windows\Prefetch\NISSRV.EXE-269386BD.pf
pool: 0xffff94895f06a0d0 | file object: 0xffff94895f06a150 | offsetby: 0x80
\Windows\System32\Windows.Internal.SecurityMitigationsBroker.dll
pool: 0xffff94895f06a260 | file object: 0xffff94895f06a2e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\ProTools\VSData_Package_Reg_VS.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94895f06a3f0 | file object: 0xffff94895f06a470 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f06a580 | file object: 0xffff94895f06a600 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f06a710 | file object: 0xffff94895f06a790 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-VPN%4Operational.evtx
pool: 0xffff94895f06a8a0 | file object: 0xffff94895f06a920 | offsetby: 0x80
\Windows\System32\Windows.ApplicationModel.Background.SystemEventsBroker.dll
pool: 0xffff94895f06aa30 | file object: 0xffff94895f06aab0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\MicrosoftEdgeSplashScreen.scale-100.png
pool: 0xffff94895f06abc0 | file object: 0xffff94895f06ac40 | offsetby: 0x80
\$Directory
pool: 0xffff94895f06ad50 | file object: 0xffff94895f06add0 | offsetby: 0x80
\Windows\System32\eShims.dll
pool: 0xffff94895f06b070 | file object: 0xffff94895f06b0f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.AAD.BrokerPlugin_1000.18362.449.0_neutral_neutral_cw5n1h2txyewy\ActivationStore.dat
pool: 0xffff94895f06b200 | file object: 0xffff94895f06b280 | offsetby: 0x80
\Windows\System32\browserbroker.dll
pool: 0xffff94895f06b390 | file object: 0xffff94895f06b410 | offsetby: 0x80
\$Directory
pool: 0xffff94895f06b520 | file object: 0xffff94895f06b5a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f06b6b0 | file object: 0xffff94895f06b730 | offsetby: 0x80
\Windows\System32\Windows.WARP.JITService.dll
pool: 0xffff94895f06b840 | file object: 0xffff94895f06b8c0 | offsetby: 0x80
\Windows\System32\browserbroker.dll
pool: 0xffff94895f06b9d0 | file object: 0xffff94895f06ba50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f06bb60 | file object: 0xffff94895f06bbe0 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\PropMap\CiPT0000.000
pool: 0xffff94895f06bcf0 | file object: 0xffff94895f06bd70 | offsetby: 0x80
\$Directory
pool: 0xffff94895f06c010 | file object: 0xffff94895f06c090 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\DataStore\Data\nouser1\120712-0049\DBStore\edb.chk
pool: 0xffff94895f06c1a0 | file object: 0xffff94895f06c220 | offsetby: 0x80
\Windows\Prefetch\WINDOWS.WARP.JITSERVICE.EXE-CC70B00D.pf
pool: 0xffff94895f06c330 | file object: 0xffff94895f06c3b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\DataStore\Data\nouser1\120712-0049\DBStore\LogFiles\edb.log
pool: 0xffff94895f06c4c0 | file object: 0xffff94895f06c540 | offsetby: 0x80
\Windows\Fonts\StaticCache.dat
pool: 0xffff94895f06c650 | file object: 0xffff94895f06c6d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f06c7e0 | file object: 0xffff94895f06c860 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f06c970 | file object: 0xffff94895f06c9f0 | offsetby: 0x80
\Windows\System32\en-US\Conhost.exe.mui
pool: 0xffff94895f06cb00 | file object: 0xffff94895f06cb80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f06cc90 | file object: 0xffff94895f06cd10 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895f06ce20 | file object: 0xffff94895f06cea0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.AAD.BrokerPlugin_1000.18362.449.0_neutral_neutral_cw5n1h2txyewy\S-1-5-21-3234566417-3121902272-2793192418-1001.pckgdep
pool: 0xffff94895f06d140 | file object: 0xffff94895f06d1c0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\DataStore\Data\nouser1\120712-0049\DBStore\spartan.jfm
pool: 0xffff94895f06d2d0 | file object: 0xffff94895f06d350 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Security-LessPrivilegedAppContainer%4Operational.evtx
pool: 0xffff94895f06d460 | file object: 0xffff94895f06d4e0 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\PropMap\CiPT0000.002
pool: 0xffff94895f06d5f0 | file object: 0xffff94895f06d670 | offsetby: 0x80
\Windows\System32\Windows.System.Profile.RetailInfo.dll
pool: 0xffff94895f06d780 | file object: 0xffff94895f06d800 | offsetby: 0x80
\Windows\System32\AssignedAccessRuntime.dll
pool: 0xffff94895f06d910 | file object: 0xffff94895f06d990 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eView.dll
pool: 0xffff94895f06daa0 | file object: 0xffff94895f06db20 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\Temp\~DF86857E4B654C726A.TMP
pool: 0xffff94895f06dc30 | file object: 0xffff94895f06dcb0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f06ddc0 | file object: 0xffff94895f06de40 | offsetby: 0x80
\$Directory
pool: 0xffff94895f06e0e0 | file object: 0xffff94895f06e160 | offsetby: 0x80
\Windows\Fonts\segoeui.ttf
pool: 0xffff94895f06e270 | file object: 0xffff94895f06e2f0 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\Windows.edb
pool: 0xffff94895f06e400 | file object: 0xffff94895f06e480 | offsetby: 0x80
\$ConvertToNonresident
pool: 0xffff94895f06e590 | file object: 0xffff94895f06e610 | offsetby: 0x80
\Windows\System32\Windows.System.Diagnostics.dll
pool: 0xffff94895f06e720 | file object: 0xffff94895f06e7a0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f06e8b0 | file object: 0xffff94895f06e930 | offsetby: 0x80
\$PrepareToShrinkFileSize
pool: 0xffff94895f06ea40 | file object: 0xffff94895f06eac0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f06ebd0 | file object: 0xffff94895f06ec50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f06ed60 | file object: 0xffff94895f06ede0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f06f080 | file object: 0xffff94895f06f100 | offsetby: 0x80
\Windows\System32\MicrosoftEdgeCP.exe
pool: 0xffff94895f06f210 | file object: 0xffff94895f06f290 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f06f3a0 | file object: 0xffff94895f06f420 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f06f530 | file object: 0xffff94895f06f5b0 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SecStore\CiST0000.000
pool: 0xffff94895f06f6c0 | file object: 0xffff94895f06f740 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f06f850 | file object: 0xffff94895f06f8d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f06f9e0 | file object: 0xffff94895f06fa60 | offsetby: 0x80
\Windows\System32\ieproxy.dll
pool: 0xffff94895f06fb70 | file object: 0xffff94895f06fbf0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_48.db
pool: 0xffff94895f06fd00 | file object: 0xffff94895f06fd80 | offsetby: 0x80
\Windows\System32\backgroundTaskHost.exe
pool: 0xffff94895f070020 | file object: 0xffff94895f0700a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f0701b0 | file object: 0xffff94895f070230 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\da53ab2cffb3ee4dcecda3d584ce2ff6c3ff69cc\ef14ecac6b7b126a5ad6df32af131342e7dcb20ed7c03ef845d4135a41f00926
pool: 0xffff94895f070340 | file object: 0xffff94895f0703c0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895f0704d0 | file object: 0xffff94895f070550 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f070660 | file object: 0xffff94895f0706e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f0707f0 | file object: 0xffff94895f070870 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f070980 | file object: 0xffff94895f070a00 | offsetby: 0x80
\Windows\SystemResources\batmeter.dll.mun
pool: 0xffff94895f070b10 | file object: 0xffff94895f070b90 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_256.db
pool: 0xffff94895f070ca0 | file object: 0xffff94895f070d20 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SecStore\CiST0000.001
pool: 0xffff94895f070e30 | file object: 0xffff94895f070eb0 | offsetby: 0x80
\Windows\System32\MicrosoftEdgeSH.exe
pool: 0xffff94895f071150 | file object: 0xffff94895f0711d0 | offsetby: 0x80
\Windows\System32\Windows.System.Profile.RetailInfo.dll
pool: 0xffff94895f0712e0 | file object: 0xffff94895f071360 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f071470 | file object: 0xffff94895f0714f0 | offsetby: 0x80
\Windows\System32\AssignedAccessRuntime.dll
pool: 0xffff94895f071600 | file object: 0xffff94895f071680 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f071790 | file object: 0xffff94895f071810 | offsetby: 0x80
\Windows\System32\RuntimeBroker.exe
pool: 0xffff94895f071920 | file object: 0xffff94895f0719a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f071ab0 | file object: 0xffff94895f071b30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f071c40 | file object: 0xffff94895f071cc0 | offsetby: 0x80
\Windows\System32\ShellExperiences\WindowsInternal.Xaml.Controls.Tabs.dll
pool: 0xffff94895f071dd0 | file object: 0xffff94895f071e50 | offsetby: 0x80
\Windows\Prefetch\BACKGROUNDTASKHOST.EXE-A4F5A8B5.pf
pool: 0xffff94895f0720f0 | file object: 0xffff94895f072170 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f072280 | file object: 0xffff94895f072300 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895f072410 | file object: 0xffff94895f072490 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f0725a0 | file object: 0xffff94895f072620 | offsetby: 0x80
\Windows\SystemApps\Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy\AAD.Core.dll
pool: 0xffff94895f072730 | file object: 0xffff94895f0727b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f0728c0 | file object: 0xffff94895f072940 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f072a50 | file object: 0xffff94895f072ad0 | offsetby: 0x80
\Windows\System32\UserDeviceRegistration.dll
pool: 0xffff94895f072be0 | file object: 0xffff94895f072c60 | offsetby: 0x80
\Windows\SysWOW64\Windows.Networking.Connectivity.dll
pool: 0xffff94895f072d70 | file object: 0xffff94895f072df0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f073090 | file object: 0xffff94895f073110 | offsetby: 0x80
\Windows\System32\Windows.System.Diagnostics.dll
pool: 0xffff94895f073220 | file object: 0xffff94895f0732a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f0733b0 | file object: 0xffff94895f073430 | offsetby: 0x80
\Windows\Prefetch\MICROSOFTEDGECP.EXE-13523D81.pf
pool: 0xffff94895f073540 | file object: 0xffff94895f0735c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f0736d0 | file object: 0xffff94895f073750 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f073860 | file object: 0xffff94895f0738e0 | offsetby: 0x80
\Windows\SysWOW64\twinapi.appcore.dll
pool: 0xffff94895f0739f0 | file object: 0xffff94895f073a70 | offsetby: 0x80
\$Directory
pool: 0xffff94895f073b80 | file object: 0xffff94895f073c00 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\eView.dll
pool: 0xffff94895f073d10 | file object: 0xffff94895f073d90 | offsetby: 0x80
\Windows\SysWOW64\rmclient.dll
pool: 0xffff94895f074030 | file object: 0xffff94895f0740b0 | offsetby: 0x80
\Windows\SysWOW64\FamilySafetyExt.dll
pool: 0xffff94895f0741c0 | file object: 0xffff94895f074240 | offsetby: 0x80
\Windows\SysWOW64\Wpc.dll
pool: 0xffff94895f074350 | file object: 0xffff94895f0743d0 | offsetby: 0x80
\Windows\Prefetch\BACKGROUNDTASKHOST.EXE-901440A8.pf
pool: 0xffff94895f0744e0 | file object: 0xffff94895f074560 | offsetby: 0x80
pool: 0xffff94895f074670 | file object: 0xffff94895f0746f0 | offsetby: 0x80
\Windows\SysWOW64\wlidprov.dll
pool: 0xffff94895f074800 | file object: 0xffff94895f074880 | offsetby: 0x80
\Windows\System32\Windows.System.UserProfile.DiagnosticsSettings.dll
pool: 0xffff94895f074990 | file object: 0xffff94895f074a10 | offsetby: 0x80
\Windows\System32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
pool: 0xffff94895f074b20 | file object: 0xffff94895f074ba0 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff94895f074cb0 | file object: 0xffff94895f074d30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f074e40 | file object: 0xffff94895f074ec0 | offsetby: 0x80
\Windows\System32\Windows.ApplicationModel.Core.dll
pool: 0xffff94895f075160 | file object: 0xffff94895f0751e0 | offsetby: 0x80
\Windows\SystemResources\Windows.UI.ShellCommonInetCore\WindowsInternal.Xaml.Controls.Tabs\Assets\Fonts\BrowserMDL.ttf
pool: 0xffff94895f0752f0 | file object: 0xffff94895f075370 | offsetby: 0x80
\Windows\SysWOW64\mssprxy.dll
pool: 0xffff94895f075480 | file object: 0xffff94895f075500 | offsetby: 0x80
\Windows\System32\webplatstorageserver.dll
pool: 0xffff94895f075610 | file object: 0xffff94895f075690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f0757a0 | file object: 0xffff94895f075820 | offsetby: 0x80
\$Directory
pool: 0xffff94895f075930 | file object: 0xffff94895f0759b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f075ac0 | file object: 0xffff94895f075b40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f075c50 | file object: 0xffff94895f075cd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f075de0 | file object: 0xffff94895f075e60 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\b9d4f671d73c2e162e766b3cd991aa31e2d4cabd\b9d4f671d73c2e162e766b3cd991aa31e2d4cabd.pieceshash
pool: 0xffff94895f076100 | file object: 0xffff94895f076180 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\Fonts\BrowserMDL.ttf
pool: 0xffff94895f076290 | file object: 0xffff94895f076310 | offsetby: 0x80
\Windows\SysWOW64\edputil.dll
pool: 0xffff94895f076420 | file object: 0xffff94895f0764a0 | offsetby: 0x80
\Windows\System32\ActivationClient.dll
pool: 0xffff94895f0765b0 | file object: 0xffff94895f076630 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f076740 | file object: 0xffff94895f0767c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f0768d0 | file object: 0xffff94895f076950 | offsetby: 0x80
\$Directory
pool: 0xffff94895f076a60 | file object: 0xffff94895f076ae0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f076bf0 | file object: 0xffff94895f076c70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f076d80 | file object: 0xffff94895f076e00 | offsetby: 0x80
\Windows\System32\wshext.dll
pool: 0xffff94895f0770a0 | file object: 0xffff94895f077120 | offsetby: 0x80
\Windows\SysWOW64\Windows.Services.TargetedContent.dll
pool: 0xffff94895f077230 | file object: 0xffff94895f0772b0 | offsetby: 0x80
\Windows\System32\en-US\vsstrace.dll.mui
pool: 0xffff94895f0773c0 | file object: 0xffff94895f077440 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
pool: 0xffff94895f077550 | file object: 0xffff94895f0775d0 | offsetby: 0x80
\Windows\System32\InstallService.dll
pool: 0xffff94895f0776e0 | file object: 0xffff94895f077760 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\ImageStore\ytdy751\imagestore.dat
pool: 0xffff94895f077870 | file object: 0xffff94895f0778f0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\ContextMenu\HandleDefine.js
pool: 0xffff94895f077a00 | file object: 0xffff94895f077a80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f077b90 | file object: 0xffff94895f077c10 | offsetby: 0x80
\Windows\System32\en-US\hcproviders.dll.mui
pool: 0xffff94895f077d20 | file object: 0xffff94895f077da0 | offsetby: 0x80
\Windows\SysWOW64\samcli.dll
pool: 0xffff94895f078040 | file object: 0xffff94895f0780c0 | offsetby: 0x80
\Windows\System32\ieframe.dll
pool: 0xffff94895f0781d0 | file object: 0xffff94895f078250 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f078360 | file object: 0xffff94895f0783e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f0784f0 | file object: 0xffff94895f078570 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f078680 | file object: 0xffff94895f078700 | offsetby: 0x80
\Windows\System32\dxva2.dll
pool: 0xffff94895f078810 | file object: 0xffff94895f078890 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\Cortana.BackgroundTask.dll
pool: 0xffff94895f0789a0 | file object: 0xffff94895f078a20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f078b30 | file object: 0xffff94895f078bb0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_32.db
pool: 0xffff94895f078cc0 | file object: 0xffff94895f078d40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f078e50 | file object: 0xffff94895f078ed0 | offsetby: 0x80
\Windows\System32\en-US\wshext.dll.mui
pool: 0xffff94895f079170 | file object: 0xffff94895f0791f0 | offsetby: 0x80
\Windows\System32\AppxStreamingDataSourcePS.dll
pool: 0xffff94895f079300 | file object: 0xffff94895f079380 | offsetby: 0x80
\Windows\TextInput\WindowsInternal.ComposableShell.Experiences.TextInput.LayoutData.dll
pool: 0xffff94895f079490 | file object: 0xffff94895f079510 | offsetby: 0x80
\Windows\SystemApps\Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy\AAD.Core.dll
pool: 0xffff94895f079620 | file object: 0xffff94895f0796a0 | offsetby: 0x80
탲滧疸贶舎￿.䥍剃协䙏⹔䕎⹔䅎䥔䕖刮乕䥔䕍㈮㈮㡟䕗奋㍂㡄
pool: 0xffff94895f0797b0 | file object: 0xffff94895f079830 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\microsoft.system.package.metadata\S-1-5-21-3234566417-3121902272-2793192418-1001-MergedResources-1.pri
pool: 0xffff94895f079940 | file object: 0xffff94895f0799c0 | offsetby: 0x80
\Windows\System32\lfsvc.dll
pool: 0xffff94895f079ad0 | file object: 0xffff94895f079b50 | offsetby: 0x80
\$Directory
pool: 0xffff94895f079c60 | file object: 0xffff94895f079ce0 | offsetby: 0x80
\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12827.20200.0_x64__8wekyb3d8bbwe\resources.pri
pool: 0xffff94895f079df0 | file object: 0xffff94895f079e70 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\File Explorer.lnk
pool: 0xffff94895f07a110 | file object: 0xffff94895f07a190 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\Visual Studio 2019.lnk
pool: 0xffff94895f07a2a0 | file object: 0xffff94895f07a320 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f07a430 | file object: 0xffff94895f07a4b0 | offsetby: 0x80
\Program Files\desktop.ini
pool: 0xffff94895f07a5c0 | file object: 0xffff94895f07a640 | offsetby: 0x80
\$Directory
pool: 0xffff94895f07a750 | file object: 0xffff94895f07a7d0 | offsetby: 0x80
\Windows\SysWOW64\StructuredQuery.dll
pool: 0xffff94895f07a8e0 | file object: 0xffff94895f07a960 | offsetby: 0x80
\$Directory
pool: 0xffff94895f07aa70 | file object: 0xffff94895f07aaf0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\resources.pri
pool: 0xffff94895f07ac00 | file object: 0xffff94895f07ac80 | offsetby: 0x80
\Windows\System32\EdgeContent.dll
pool: 0xffff94895f07ad90 | file object: 0xffff94895f07ae10 | offsetby: 0x80
\Windows\System32\POSyncServices.dll
pool: 0xffff94895f07b0b0 | file object: 0xffff94895f07b130 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f07b240 | file object: 0xffff94895f07b2c0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_5.82.18362.752_none_2a285cc246691ef5
pool: 0xffff94895f07b3d0 | file object: 0xffff94895f07b450 | offsetby: 0x80
\Windows\System32\wshext.dll
pool: 0xffff94895f07b560 | file object: 0xffff94895f07b5e0 | offsetby: 0x80
\Windows\SysWOW64\rasadhlp.dll
pool: 0xffff94895f07b6f0 | file object: 0xffff94895f07b770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f07b880 | file object: 0xffff94895f07b900 | offsetby: 0x80
\Windows\SysWOW64\Windows.Storage.Search.dll
pool: 0xffff94895f07ba10 | file object: 0xffff94895f07ba90 | offsetby: 0x80
\Windows\SysWOW64\wshqos.dll
pool: 0xffff94895f07bba0 | file object: 0xffff94895f07bc20 | offsetby: 0x80
\Windows\SysWOW64\schannel.dll
pool: 0xffff94895f07bd30 | file object: 0xffff94895f07bdb0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f07c050 | file object: 0xffff94895f07c0d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f07c1e0 | file object: 0xffff94895f07c260 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\desktop.ini
pool: 0xffff94895f07c370 | file object: 0xffff94895f07c3f0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Desktop.ini
pool: 0xffff94895f07c500 | file object: 0xffff94895f07c580 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\desktop.ini
pool: 0xffff94895f07c690 | file object: 0xffff94895f07c710 | offsetby: 0x80
\Windows\SysWOW64\WindowsCodecs.dll
pool: 0xffff94895f07c820 | file object: 0xffff94895f07c8a0 | offsetby: 0x80
\Windows\SysWOW64\cscapi.dll
pool: 0xffff94895f07c9b0 | file object: 0xffff94895f07ca30 | offsetby: 0x80
\Windows\SysWOW64\OnDemandConnRouteHelper.dll
pool: 0xffff94895f07cb40 | file object: 0xffff94895f07cbc0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f07ccd0 | file object: 0xffff94895f07cd50 | offsetby: 0x80
\Windows\SysWOW64\FWPUCLNT.DLL
pool: 0xffff94895f07ce60 | file object: 0xffff94895f07cee0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Caches\{3DA71D5A-20CC-432F-A115-DFE92379E91F}.3.ver0x0000000000000036.db
pool: 0xffff94895f07d180 | file object: 0xffff94895f07d200 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessibility\Desktop.ini
pool: 0xffff94895f07d310 | file object: 0xffff94895f07d390 | offsetby: 0x80
\Windows\SysWOW64\apphelp.dll
pool: 0xffff94895f07d4a0 | file object: 0xffff94895f07d520 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Administrative Tools\desktop.ini
pool: 0xffff94895f07d630 | file object: 0xffff94895f07d6b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Desktop.ini
pool: 0xffff94895f07d7c0 | file object: 0xffff94895f07d840 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\desktop.ini
pool: 0xffff94895f07d950 | file object: 0xffff94895f07d9d0 | offsetby: 0x80
\Windows\SysWOW64\Windows.StateRepositoryPS.dll
pool: 0xffff94895f07dae0 | file object: 0xffff94895f07db60 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessibility\desktop.ini
pool: 0xffff94895f07dc70 | file object: 0xffff94895f07dcf0 | offsetby: 0x80
\Windows\SysWOW64\winnsi.dll
pool: 0xffff94895f07de00 | file object: 0xffff94895f07de80 | offsetby: 0x80
嗭͘訦舎￿&䅻㥄㐷䕁ⴲ㉅㈹㐭㠰ⴳ㉁〸〭㐳
pool: 0xffff94895f07e120 | file object: 0xffff94895f07e1a0 | offsetby: 0x80
\Windows\System32\MicrosoftEdgeSH.exe
pool: 0xffff94895f07e2b0 | file object: 0xffff94895f07e330 | offsetby: 0x80
\Windows\SysWOW64\ntshrui.dll
pool: 0xffff94895f07e440 | file object: 0xffff94895f07e4c0 | offsetby: 0x80
\Windows\SysWOW64\dpapi.dll
pool: 0xffff94895f07e5d0 | file object: 0xffff94895f07e650 | offsetby: 0x80
\Windows\System32\EdgeContent.dll
pool: 0xffff94895f07e760 | file object: 0xffff94895f07e7e0 | offsetby: 0x80
\Windows\System32\Cortana.Persona.dll
pool: 0xffff94895f07e8f0 | file object: 0xffff94895f07e970 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu\Programs\Administrative Tools\desktop.ini
pool: 0xffff94895f07ea80 | file object: 0xffff94895f07eb00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f07ec10 | file object: 0xffff94895f07ec90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f07eda0 | file object: 0xffff94895f07ee20 | offsetby: 0x80
\$Directory
pool: 0xffff94895f07f0c0 | file object: 0xffff94895f07f140 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu\Programs\System Tools\desktop.ini
pool: 0xffff94895f07f250 | file object: 0xffff94895f07f2d0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895f07f3e0 | file object: 0xffff94895f07f460 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f07f570 | file object: 0xffff94895f07f5f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f07f700 | file object: 0xffff94895f07f780 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f07f890 | file object: 0xffff94895f07f910 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu\Programs\Accessories\System Tools\desktop.ini
pool: 0xffff94895f07fa20 | file object: 0xffff94895f07faa0 | offsetby: 0x80
\Windows\System32\msi.dll
pool: 0xffff94895f07fbb0 | file object: 0xffff94895f07fc30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f07fd40 | file object: 0xffff94895f07fdc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f080060 | file object: 0xffff94895f0800e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f0801f0 | file object: 0xffff94895f080270 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned\TaskBar\desktop.ini
pool: 0xffff94895f080380 | file object: 0xffff94895f080400 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f080510 | file object: 0xffff94895f080590 | offsetby: 0x80
\Windows\System32\shdocvw.dll
pool: 0xffff94895f0806a0 | file object: 0xffff94895f080720 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f080830 | file object: 0xffff94895f0808b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f0809c0 | file object: 0xffff94895f080a40 | offsetby: 0x80
\Windows\System32\mmres.dll
pool: 0xffff94895f080b50 | file object: 0xffff94895f080bd0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895f080ce0 | file object: 0xffff94895f080d60 | offsetby: 0x80
\Windows\SystemResources\mmres.dll.mun
pool: 0xffff94895f080e70 | file object: 0xffff94895f080ef0 | offsetby: 0x80
\Windows\System32\DXP.dll
pool: 0xffff94895f081000 | file object: 0xffff94895f081080 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f081190 | file object: 0xffff94895f081210 | offsetby: 0x80
\$Directory
pool: 0xffff94895f081320 | file object: 0xffff94895f0813a0 | offsetby: 0x80
\Windows\System32\pnidui.dll
pool: 0xffff94895f0814b0 | file object: 0xffff94895f081530 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f081640 | file object: 0xffff94895f0816c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f0817d0 | file object: 0xffff94895f081850 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu\Programs\StartUp\desktop.ini
pool: 0xffff94895f081960 | file object: 0xffff94895f0819e0 | offsetby: 0x80
\Windows\System32\en-US\bthprops.cpl.mui
pool: 0xffff94895f081af0 | file object: 0xffff94895f081b70 | offsetby: 0x80
\Windows\System32\bthprops.cpl
pool: 0xffff94895f081c80 | file object: 0xffff94895f081d00 | offsetby: 0x80
\Windows\SysWOW64\mskeyprotect.dll
pool: 0xffff94895f081e10 | file object: 0xffff94895f081e90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f082130 | file object: 0xffff94895f0821b0 | offsetby: 0x80
\Windows\System32\en-US\lfsvc.dll.mui
pool: 0xffff94895f0822c0 | file object: 0xffff94895f082340 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\b9d4f671d73c2e162e766b3cd991aa31e2d4cabd\27c4cb88ba64cc52d022bbf51d1011ff214c2620a0431d6f6896d4822a569ea3
pool: 0xffff94895f082450 | file object: 0xffff94895f0824d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f0825e0 | file object: 0xffff94895f082660 | offsetby: 0x80
\Windows\SysWOW64\cryptnet.dll
pool: 0xffff94895f082770 | file object: 0xffff94895f0827f0 | offsetby: 0x80
\Windows\System32\en-US\pnidui.dll.mui
pool: 0xffff94895f082900 | file object: 0xffff94895f082980 | offsetby: 0x80
\Windows\SysWOW64\ncryptsslp.dll
pool: 0xffff94895f082a90 | file object: 0xffff94895f082b10 | offsetby: 0x80
\Windows\SysWOW64\dsreg.dll
pool: 0xffff94895f082c20 | file object: 0xffff94895f082ca0 | offsetby: 0x80
\Windows\System32\en-US\sihclient.exe.mui
pool: 0xffff94895f082db0 | file object: 0xffff94895f082e30 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895f17b8c0 | file object: 0xffff94895f17b920 | offsetby: 0x60
\Windows\System32\config\DRIVERS
pool: 0xffff94895f6b7160 | file object: 0xffff94895f6b71e0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
pool: 0xffff94895f6b72f0 | file object: 0xffff94895f6b7370 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6b7480 | file object: 0xffff94895f6b7500 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f6b7610 | file object: 0xffff94895f6b7690 | offsetby: 0x80
\Windows\System32\LocationFramework.dll
pool: 0xffff94895f6b77a0 | file object: 0xffff94895f6b7820 | offsetby: 0x80
\Windows\System32\WPDShServiceObj.dll
pool: 0xffff94895f6b7930 | file object: 0xffff94895f6b79b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6b7ac0 | file object: 0xffff94895f6b7b40 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895f6b7c50 | file object: 0xffff94895f6b7cd0 | offsetby: 0x80
\Windows\System32\authui.dll
pool: 0xffff94895f6b7de0 | file object: 0xffff94895f6b7e60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6b8100 | file object: 0xffff94895f6b8180 | offsetby: 0x80
\Windows\System32\dlnashext.dll
pool: 0xffff94895f6b8290 | file object: 0xffff94895f6b8310 | offsetby: 0x80
\Windows\System32\mssitlb.dll
pool: 0xffff94895f6b8420 | file object: 0xffff94895f6b84a0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe
pool: 0xffff94895f6b85b0 | file object: 0xffff94895f6b8630 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6b8740 | file object: 0xffff94895f6b87c0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c
pool: 0xffff94895f6b88d0 | file object: 0xffff94895f6b8950 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6b8a60 | file object: 0xffff94895f6b8ae0 | offsetby: 0x80
\Windows\System32\SettingMonitor.dll
pool: 0xffff94895f6b8bf0 | file object: 0xffff94895f6b8c70 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Burn\Burn\desktop.ini
pool: 0xffff94895f6b8d80 | file object: 0xffff94895f6b8e00 | offsetby: 0x80
\Windows\System32\PortableDeviceTypes.dll
pool: 0xffff94895f6b90a0 | file object: 0xffff94895f6b9120 | offsetby: 0x80
\Windows\System32\wpdshext.dll
pool: 0xffff94895f6b9230 | file object: 0xffff94895f6b92b0 | offsetby: 0x80
\Windows\System32\efswrt.dll
pool: 0xffff94895f6b93c0 | file object: 0xffff94895f6b9440 | offsetby: 0x80
\Windows\System32\feclient.dll
pool: 0xffff94895f6b9550 | file object: 0xffff94895f6b95d0 | offsetby: 0x80
\$Recycle.Bin\S-1-5-21-3234566417-3121902272-2793192418-1001\desktop.ini
pool: 0xffff94895f6b96e0 | file object: 0xffff94895f6b9760 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy\Settings\settings.dat
pool: 0xffff94895f6b9870 | file object: 0xffff94895f6b98f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6b9a00 | file object: 0xffff94895f6b9a80 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6b9b90 | file object: 0xffff94895f6b9c10 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\976920a9e138a58776e06737ca31b577027d35a5\976920a9e138a58776e06737ca31b577027d35a5.pieceshash
pool: 0xffff94895f6b9d20 | file object: 0xffff94895f6b9da0 | offsetby: 0x80
\Windows\System32\mscoree.dll
pool: 0xffff94895f6ba040 | file object: 0xffff94895f6ba0c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6ba1d0 | file object: 0xffff94895f6ba250 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6ba360 | file object: 0xffff94895f6ba3e0 | offsetby: 0x80
\Windows\System32\cscobj.dll
pool: 0xffff94895f6ba4f0 | file object: 0xffff94895f6ba570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6ba680 | file object: 0xffff94895f6ba700 | offsetby: 0x80
\Windows\System32\LocationFrameworkPS.dll
pool: 0xffff94895f6ba810 | file object: 0xffff94895f6ba890 | offsetby: 0x80
\Windows\System32\wlrmdr.exe
pool: 0xffff94895f6ba9a0 | file object: 0xffff94895f6baa20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6bab30 | file object: 0xffff94895f6babb0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\TempState\CortanaUnifiedTileModelCache.dat
pool: 0xffff94895f6bacc0 | file object: 0xffff94895f6bad40 | offsetby: 0x80
\Windows\System32\CapabilityAccessManager.dll
pool: 0xffff94895f6bae50 | file object: 0xffff94895f6baed0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203
pool: 0xffff94895f6bb170 | file object: 0xffff94895f6bb1f0 | offsetby: 0x80
\Windows\System32\en-US\CapabilityAccessManager.dll.mui
pool: 0xffff94895f6bb300 | file object: 0xffff94895f6bb380 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6bb490 | file object: 0xffff94895f6bb510 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895f6bb620 | file object: 0xffff94895f6bb6a0 | offsetby: 0x80
\Windows\System32\cscsvc.dll
pool: 0xffff94895f6bb7b0 | file object: 0xffff94895f6bb830 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6bb940 | file object: 0xffff94895f6bb9c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6bbad0 | file object: 0xffff94895f6bbb50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6bbc60 | file object: 0xffff94895f6bbce0 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-090AEBE5.pf
pool: 0xffff94895f6bbdf0 | file object: 0xffff94895f6bbe70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6bc110 | file object: 0xffff94895f6bc190 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6bc2a0 | file object: 0xffff94895f6bc320 | offsetby: 0x80
\Windows\System32\srchadmin.dll
pool: 0xffff94895f6bc430 | file object: 0xffff94895f6bc4b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6bc5c0 | file object: 0xffff94895f6bc640 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6bc750 | file object: 0xffff94895f6bc7d0 | offsetby: 0x80
\Windows\System32\en-US\combase.dll.mui
pool: 0xffff94895f6bc8e0 | file object: 0xffff94895f6bc960 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f6bca70 | file object: 0xffff94895f6bcaf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6bcc00 | file object: 0xffff94895f6bcc80 | offsetby: 0x80
\Windows\System32\LocationFrameworkPS.dll
pool: 0xffff94895f6bcd90 | file object: 0xffff94895f6bce10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6bd0b0 | file object: 0xffff94895f6bd130 | offsetby: 0x80
\Windows\System32\en-US\cscsvc.dll.mui
pool: 0xffff94895f6bd240 | file object: 0xffff94895f6bd2c0 | offsetby: 0x80
\Windows\System32\LocationFramework.dll
pool: 0xffff94895f6bd3d0 | file object: 0xffff94895f6bd450 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895f6bd560 | file object: 0xffff94895f6bd5e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6bd6f0 | file object: 0xffff94895f6bd770 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6bd880 | file object: 0xffff94895f6bd900 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6bda10 | file object: 0xffff94895f6bda90 | offsetby: 0x80
\Windows\System32\WsmSvc.dll
pool: 0xffff94895f6bdba0 | file object: 0xffff94895f6bdc20 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\f455bd2b81c5b3aff628375d20ed9068848033cd\f455bd2b81c5b3aff628375d20ed9068848033cd.pieceshash
pool: 0xffff94895f6bdd30 | file object: 0xffff94895f6bddb0 | offsetby: 0x80
\Windows\System32\SearchProtocolHost.exe
pool: 0xffff94895f6be050 | file object: 0xffff94895f6be0d0 | offsetby: 0x80
\Windows\System32\CapabilityAccessHandlers.dll
pool: 0xffff94895f6be1e0 | file object: 0xffff94895f6be260 | offsetby: 0x80
\Windows\Prefetch\SEARCHPROTOCOLHOST.EXE-0CB8CADE.pf
pool: 0xffff94895f6be370 | file object: 0xffff94895f6be3f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\cpp\package.nls.json
pool: 0xffff94895f6be500 | file object: 0xffff94895f6be580 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895f6be690 | file object: 0xffff94895f6be710 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895f6be820 | file object: 0xffff94895f6be8a0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895f6be9b0 | file object: 0xffff94895f6bea30 | offsetby: 0x80
\Windows\System32\SearchFilterHost.exe
pool: 0xffff94895f6beb40 | file object: 0xffff94895f6bebc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6becd0 | file object: 0xffff94895f6bed50 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6bee60 | file object: 0xffff94895f6beee0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6bf180 | file object: 0xffff94895f6bf200 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6bf310 | file object: 0xffff94895f6bf390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6bf4a0 | file object: 0xffff94895f6bf520 | offsetby: 0x80
\ProgramData\Microsoft\Windows\LfSvc\Geofence\GeofenceApplicationID.dat
pool: 0xffff94895f6bf630 | file object: 0xffff94895f6bf6b0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895f6bf7c0 | file object: 0xffff94895f6bf840 | offsetby: 0x80
\Windows\System32\imapi2.dll
pool: 0xffff94895f6bf950 | file object: 0xffff94895f6bf9d0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\LfSvc\Geofence\GeofenceApplicationID.dat
pool: 0xffff94895f6bfae0 | file object: 0xffff94895f6bfb60 | offsetby: 0x80
\Windows\System32\LocationWinPalMisc.dll
pool: 0xffff94895f6bfc70 | file object: 0xffff94895f6bfcf0 | offsetby: 0x80
\Windows\Prefetch\SEARCHFILTERHOST.EXE-77482212.pf
pool: 0xffff94895f6bfe00 | file object: 0xffff94895f6bfe80 | offsetby: 0x80
\Windows\System32\LocationWinPalMisc.dll
pool: 0xffff94895f6c0120 | file object: 0xffff94895f6c01a0 | offsetby: 0x80
\Windows\System32\SyncCenter.dll
pool: 0xffff94895f6c02b0 | file object: 0xffff94895f6c0330 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\2ab9225a1e821c43e98be3dd12d21ba7\System.Runtime.Serialization.ni.dll
pool: 0xffff94895f6c0440 | file object: 0xffff94895f6c04c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6c05d0 | file object: 0xffff94895f6c0650 | offsetby: 0x80
\Windows\System32\MdmCommon.dll
pool: 0xffff94895f6c0760 | file object: 0xffff94895f6c07e0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\FB0D848F74F70BB2EAA93746D24D9749
pool: 0xffff94895f6c08f0 | file object: 0xffff94895f6c0970 | offsetby: 0x80
\Windows\System32\RuntimeBroker.exe
pool: 0xffff94895f6c0a80 | file object: 0xffff94895f6c0b00 | offsetby: 0x80
\Windows\System32\CertEnroll.dll
pool: 0xffff94895f6c0c10 | file object: 0xffff94895f6c0c90 | offsetby: 0x80
\Windows\Prefetch\RUNTIMEBROKER.EXE-72C0C855.pf
pool: 0xffff94895f6c0da0 | file object: 0xffff94895f6c0e20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6c10c0 | file object: 0xffff94895f6c1140 | offsetby: 0x80
\Windows\System32\CapabilityAccessHandlers.dll
pool: 0xffff94895f6c1250 | file object: 0xffff94895f6c12d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6c13e0 | file object: 0xffff94895f6c1460 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6c1570 | file object: 0xffff94895f6c15f0 | offsetby: 0x80
\Windows\System32\tcpmon.dll
pool: 0xffff94895f6c1700 | file object: 0xffff94895f6c1780 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\LocalState\TargetedContentCache\v3\338388\9d30bd047ade42c6818149bac1bca22f_1
pool: 0xffff94895f6c1890 | file object: 0xffff94895f6c1910 | offsetby: 0x80
\Windows\System32\SgrmBroker.exe
pool: 0xffff94895f6c1a20 | file object: 0xffff94895f6c1aa0 | offsetby: 0x80
\Windows\System32\en-US\propsys.dll.mui
pool: 0xffff94895f6c1bb0 | file object: 0xffff94895f6c1c30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6c1d40 | file object: 0xffff94895f6c1dc0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\csharp\package.json
pool: 0xffff94895f6c2060 | file object: 0xffff94895f6c20e0 | offsetby: 0x80
\Windows\System32\tzautoupdate.dll
pool: 0xffff94895f6c21f0 | file object: 0xffff94895f6c2270 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f6c2380 | file object: 0xffff94895f6c2400 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6c2510 | file object: 0xffff94895f6c2590 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpDlpCmd.exe
pool: 0xffff94895f6c26a0 | file object: 0xffff94895f6c2720 | offsetby: 0x80
\Windows\System32\MdmCommon.dll
pool: 0xffff94895f6c2830 | file object: 0xffff94895f6c28b0 | offsetby: 0x80
\Windows\System32\en-US\tzautoupdate.dll.mui
pool: 0xffff94895f6c29c0 | file object: 0xffff94895f6c2a40 | offsetby: 0x80
\Windows\System32\certca.dll
pool: 0xffff94895f6c2b50 | file object: 0xffff94895f6c2bd0 | offsetby: 0x80
\Windows\System32\cellulardatacapabilityhandler.dll
pool: 0xffff94895f6c2ce0 | file object: 0xffff94895f6c2d60 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6c2e70 | file object: 0xffff94895f6c2ef0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\csharp\package.nls.json
pool: 0xffff94895f6c3000 | file object: 0xffff94895f6c3080 | offsetby: 0x80
\Windows\System32\winspool.drv
pool: 0xffff94895f6c3190 | file object: 0xffff94895f6c3210 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6c3320 | file object: 0xffff94895f6c33a0 | offsetby: 0x80
\Windows\System32\FXSMON.dll
pool: 0xffff94895f6c34b0 | file object: 0xffff94895f6c3530 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6c3640 | file object: 0xffff94895f6c36c0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
pool: 0xffff94895f6c37d0 | file object: 0xffff94895f6c3850 | offsetby: 0x80
\Windows\System32\en-US\imapi2.dll.mui
pool: 0xffff94895f6c3960 | file object: 0xffff94895f6c39e0 | offsetby: 0x80
\Windows\System32\usbmon.dll
pool: 0xffff94895f6c3af0 | file object: 0xffff94895f6c3b70 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\33a91f943c076aa8.automaticDestinations-ms
pool: 0xffff94895f6c3c80 | file object: 0xffff94895f6c3d00 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{06de659a-a216-4bfb-b4c7-545a67bfdfd9}\appsglobals.txt
pool: 0xffff94895f6c3e10 | file object: 0xffff94895f6c3e90 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\ActivationStore.dat
pool: 0xffff94895f6c4130 | file object: 0xffff94895f6c41b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6c42c0 | file object: 0xffff94895f6c4340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6c4450 | file object: 0xffff94895f6c44d0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\ActivationStore.dat.LOG2
pool: 0xffff94895f6c45e0 | file object: 0xffff94895f6c4660 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6c4770 | file object: 0xffff94895f6c47f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6c4900 | file object: 0xffff94895f6c4980 | offsetby: 0x80
\Windows\System32\snmpapi.dll
pool: 0xffff94895f6c4a90 | file object: 0xffff94895f6c4b10 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.27810.0_x64__8wekyb3d8bbwe\msvcp140_app.dll
pool: 0xffff94895f6c4c20 | file object: 0xffff94895f6c4ca0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.27810.0_x64__8wekyb3d8bbwe\concrt140_app.dll
pool: 0xffff94895f6c4db0 | file object: 0xffff94895f6c4e30 | offsetby: 0x80
\Windows\System32\wsnmp32.dll
pool: 0xffff94895f6c50d0 | file object: 0xffff94895f6c5150 | offsetby: 0x80
\Windows\System32\en-US\APMon.dll.mui
pool: 0xffff94895f6c5260 | file object: 0xffff94895f6c52e0 | offsetby: 0x80
\Windows\System32\mobsync.exe
pool: 0xffff94895f6c53f0 | file object: 0xffff94895f6c5470 | offsetby: 0x80
\Windows\System32\deviceassociation.dll
pool: 0xffff94895f6c5580 | file object: 0xffff94895f6c5600 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895f6c5710 | file object: 0xffff94895f6c5790 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895f6c58a0 | file object: 0xffff94895f6c5920 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6c5a30 | file object: 0xffff94895f6c5ab0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6c5bc0 | file object: 0xffff94895f6c5c40 | offsetby: 0x80
\Windows\System32\WSDApi.dll
pool: 0xffff94895f6c5d50 | file object: 0xffff94895f6c5dd0 | offsetby: 0x80
\Windows\System32\en-US\shell32.dll.mui
pool: 0xffff94895f6c6070 | file object: 0xffff94895f6c60f0 | offsetby: 0x80
\Windows\System32\win32spl.dll
pool: 0xffff94895f6c6200 | file object: 0xffff94895f6c6280 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6c6390 | file object: 0xffff94895f6c6410 | offsetby: 0x80
\Windows\System32\drvstore.dll
pool: 0xffff94895f6c6520 | file object: 0xffff94895f6c65a0 | offsetby: 0x80
\Windows\System32\APMon.dll
pool: 0xffff94895f6c66b0 | file object: 0xffff94895f6c6730 | offsetby: 0x80
\Windows\System32\spool\prtprocs\x64\winprint.dll
pool: 0xffff94895f6c6840 | file object: 0xffff94895f6c68c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6c69d0 | file object: 0xffff94895f6c6a50 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\ActivationStore.dat.LOG1
pool: 0xffff94895f6c6b60 | file object: 0xffff94895f6c6be0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\yoga.dll
pool: 0xffff94895f6c6cf0 | file object: 0xffff94895f6c6d70 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c
pool: 0xffff94895f6c7010 | file object: 0xffff94895f6c7090 | offsetby: 0x80
\Windows\System32\inetpp.dll
pool: 0xffff94895f6c71a0 | file object: 0xffff94895f6c7220 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\976920a9e138a58776e06737ca31b577027d35a5\a4c113226e2b5149354a00b36ef865a2424cf1aa9e9ab4145d62bcd1de45585c
pool: 0xffff94895f6c7330 | file object: 0xffff94895f6c73b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{06de659a-a216-4bfb-b4c7-545a67bfdfd9}\appssynonyms.txt
pool: 0xffff94895f6c74c0 | file object: 0xffff94895f6c7540 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6c7650 | file object: 0xffff94895f6c76d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6c77e0 | file object: 0xffff94895f6c7860 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\css\package.json
pool: 0xffff94895f6c7970 | file object: 0xffff94895f6c79f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6c7b00 | file object: 0xffff94895f6c7b80 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff94895f6c7c90 | file object: 0xffff94895f6c7d10 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\LocalState\TargetedContentCache\v3\314559\4ad6baa887fe4954894f1f2bec8708dd_3
pool: 0xffff94895f6c7e20 | file object: 0xffff94895f6c7ea0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6c8140 | file object: 0xffff94895f6c81c0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\ImagePipelineNative.dll
pool: 0xffff94895f6c82d0 | file object: 0xffff94895f6c8350 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.NET.Native.Runtime.2.2_2.2.28604.0_x64__8wekyb3d8bbwe\mrt100_app.dll
pool: 0xffff94895f6c8460 | file object: 0xffff94895f6c84e0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\clrcompression.dll
pool: 0xffff94895f6c85f0 | file object: 0xffff94895f6c8670 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.27810.0_x64__8wekyb3d8bbwe\vcruntime140_app.dll
pool: 0xffff94895f6c8780 | file object: 0xffff94895f6c8800 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6c8910 | file object: 0xffff94895f6c8990 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6c8aa0 | file object: 0xffff94895f6c8b20 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\LocalState\TargetedContentCache\v3\314559\d30afff437654212baaffe7015867d9c_3
pool: 0xffff94895f6c8c30 | file object: 0xffff94895f6c8cb0 | offsetby: 0x80
\Windows\System32\mrt100.dll
pool: 0xffff94895f6c8dc0 | file object: 0xffff94895f6c8e40 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6c90e0 | file object: 0xffff94895f6c9160 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6c9270 | file object: 0xffff94895f6c92f0 | offsetby: 0x80
\Windows\TextInput\WindowsInternal.ComposableShell.Experiences.TextInput.dll
pool: 0xffff94895f6c9400 | file object: 0xffff94895f6c9480 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6c9590 | file object: 0xffff94895f6c9610 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.NET.Native.Framework.2.2_2.2.27912.0_x64__8wekyb3d8bbwe\SharedLibrary.dll
pool: 0xffff94895f6c9720 | file object: 0xffff94895f6c97a0 | offsetby: 0x80
\Windows\System32\en-US\win32spl.dll.mui
pool: 0xffff94895f6c98b0 | file object: 0xffff94895f6c9930 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\57163f85f05691457c7efc258578d3d582d74dbf\7cc7d075ef3374455d2684f1bc258dbcc0308778c2efb67ecd761e8368d9f82e
pool: 0xffff94895f6c9a40 | file object: 0xffff94895f6c9ac0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\57163f85f05691457c7efc258578d3d582d74dbf\57163f85f05691457c7efc258578d3d582d74dbf.pieceshash
pool: 0xffff94895f6c9bd0 | file object: 0xffff94895f6c9c50 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6c9d60 | file object: 0xffff94895f6c9de0 | offsetby: 0x80
\Windows\Prefetch\MOBSYNC.EXE-C5E2284F.pf
pool: 0xffff94895f6ca080 | file object: 0xffff94895f6ca100 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6ca210 | file object: 0xffff94895f6ca290 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Visual Studio Code\Visual Studio Code.lnk
pool: 0xffff94895f6ca3a0 | file object: 0xffff94895f6ca420 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\ActivationStore.dat.LOG2
pool: 0xffff94895f6ca530 | file object: 0xffff94895f6ca5b0 | offsetby: 0x80
\Windows\System32\sysmain.dll
pool: 0xffff94895f6ca6c0 | file object: 0xffff94895f6ca740 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.27810.0_x64__8wekyb3d8bbwe\vccorlib140_app.dll
pool: 0xffff94895f6ca850 | file object: 0xffff94895f6ca8d0 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.System.winmd
pool: 0xffff94895f6ca9e0 | file object: 0xffff94895f6caa60 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\f455bd2b81c5b3aff628375d20ed9068848033cd\e7c8fa494e68d8566569890572c00e27e1eb328a0269259e3af7fb67e09847b0
pool: 0xffff94895f6cab70 | file object: 0xffff94895f6cabf0 | offsetby: 0x80
\Windows\System32\SyncInfrastructure.dll
pool: 0xffff94895f6cad00 | file object: 0xffff94895f6cad80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6cb020 | file object: 0xffff94895f6cb0a0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\INetCache\IE\OVV37CJY\microsoft_logo_ee5c8d9fb6248c938fd0dc19370e90bd[1].svg
pool: 0xffff94895f6cb1b0 | file object: 0xffff94895f6cb230 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe
pool: 0xffff94895f6cb340 | file object: 0xffff94895f6cb3c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6cb4d0 | file object: 0xffff94895f6cb550 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\css\package.nls.json
pool: 0xffff94895f6cb660 | file object: 0xffff94895f6cb6e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6cb7f0 | file object: 0xffff94895f6cb870 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6cb980 | file object: 0xffff94895f6cba00 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6cbb10 | file object: 0xffff94895f6cbb90 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\ChakraBridge.dll
pool: 0xffff94895f6cbca0 | file object: 0xffff94895f6cbd20 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\ActivationStore.dat.LOG1
pool: 0xffff94895f6cbe30 | file object: 0xffff94895f6cbeb0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\microsoft.system.package.metadata\S-1-5-21-3234566417-3121902272-2793192418-1001-MergedResources-2.pri
pool: 0xffff94895f6cc150 | file object: 0xffff94895f6cc1d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\css-language-features\package.json
pool: 0xffff94895f6cc2e0 | file object: 0xffff94895f6cc360 | offsetby: 0x80
\Windows\System32\mobsync.exe
pool: 0xffff94895f6cc470 | file object: 0xffff94895f6cc4f0 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff94895f6cc600 | file object: 0xffff94895f6cc680 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6cc790 | file object: 0xffff94895f6cc810 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.VCLibs.140.00_14.0.27810.0_x64__8wekyb3d8bbwe\vcruntime140_1_app.dll
pool: 0xffff94895f6cc920 | file object: 0xffff94895f6cc9a0 | offsetby: 0x80
\Windows\Fonts\segoeui.ttf
pool: 0xffff94895f6ccab0 | file object: 0xffff94895f6ccb30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6ccc40 | file object: 0xffff94895f6cccc0 | offsetby: 0x80
ԁԀ鄑샋狀먔믢꙼ϩāက ԁԀ鄑샋狀먔믢꙼ȁԁԀ鄑샋狀먔믢꙼ϩԁԀ鄑샋狀먔믢꙼ȁ\$ကԁԀ鄑샋狀먔믢꙼ϩကāԀꀀ́ԀԀ
pool: 0xffff94895f6ccdd0 | file object: 0xffff94895f6cce50 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\ActivationStore.dat
pool: 0xffff94895f6cd0f0 | file object: 0xffff94895f6cd170 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\RuntimeConfiguration.dll
pool: 0xffff94895f6cd280 | file object: 0xffff94895f6cd300 | offsetby: 0x80
\Windows\System32\en-US\cscui.dll.mui
pool: 0xffff94895f6cd410 | file object: 0xffff94895f6cd490 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6cd5a0 | file object: 0xffff94895f6cd620 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f6cd730 | file object: 0xffff94895f6cd7b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6cd8c0 | file object: 0xffff94895f6cd940 | offsetby: 0x80
\Windows\System32\en-US\propsys.dll.mui
pool: 0xffff94895f6cda50 | file object: 0xffff94895f6cdad0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895f6cdbe0 | file object: 0xffff94895f6cdc60 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.SkypeApp_14.56.102.0_x64__kzf8qxf38zg5c\resources.pri
pool: 0xffff94895f6cdd70 | file object: 0xffff94895f6cddf0 | offsetby: 0x80
\Windows\Prefetch\RUNTIMEBROKER.EXE-506A0378.pf
pool: 0xffff94895f6ce090 | file object: 0xffff94895f6ce110 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\f01b4d95cf55d32a.customDestinations-ms
pool: 0xffff94895f6ce220 | file object: 0xffff94895f6ce2a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\debug-auto-launch\package.json
pool: 0xffff94895f6ce3b0 | file object: 0xffff94895f6ce430 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\7e4dca80246863e3.customDestinations-ms
pool: 0xffff94895f6ce540 | file object: 0xffff94895f6ce5c0 | offsetby: 0x80
\Windows\System32\Windows.System.Profile.PlatformDiagnosticsAndUsageDataSettings.dll
pool: 0xffff94895f6ce6d0 | file object: 0xffff94895f6ce750 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\f01b4d95cf55d32a.automaticDestinations-ms
pool: 0xffff94895f6ce860 | file object: 0xffff94895f6ce8e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\Settings\settings.dat.LOG1
pool: 0xffff94895f6ce9f0 | file object: 0xffff94895f6cea70 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6ceb80 | file object: 0xffff94895f6cec00 | offsetby: 0x80
\Windows\System32\Windows.UI.Xaml.Resources.rs4.dll
pool: 0xffff94895f6ced10 | file object: 0xffff94895f6ced90 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\Settings\settings.dat.LOG2
pool: 0xffff94895f6cf030 | file object: 0xffff94895f6cf0b0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\YourPhone.AppCore.WinRT.dll
pool: 0xffff94895f6cf1c0 | file object: 0xffff94895f6cf240 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\Settings\settings.dat
pool: 0xffff94895f6cf350 | file object: 0xffff94895f6cf3d0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\dd7c3b1adb1c168b.automaticDestinations-ms
pool: 0xffff94895f6cf4e0 | file object: 0xffff94895f6cf560 | offsetby: 0x80
\Windows\System32\RuntimeBroker.exe
pool: 0xffff94895f6cf670 | file object: 0xffff94895f6cf6f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\css-language-features\package.nls.json
pool: 0xffff94895f6cf800 | file object: 0xffff94895f6cf880 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6cf990 | file object: 0xffff94895f6cfa10 | offsetby: 0x80
\Windows\Fonts\segoeui.ttf
pool: 0xffff94895f6cfb20 | file object: 0xffff94895f6cfba0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6cfcb0 | file object: 0xffff94895f6cfd30 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6cfe40 | file object: 0xffff94895f6cfec0 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff94895f6d0160 | file object: 0xffff94895f6d01e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6d02f0 | file object: 0xffff94895f6d0370 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Inventory.evtx
pool: 0xffff94895f6d0480 | file object: 0xffff94895f6d0500 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\5f7b5f1e01b83767.automaticDestinations-ms
pool: 0xffff94895f6d0610 | file object: 0xffff94895f6d0690 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6d07a0 | file object: 0xffff94895f6d0820 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\debug-auto-launch\package.nls.json
pool: 0xffff94895f6d0930 | file object: 0xffff94895f6d09b0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\PhoneCommunicationAppService.dll
pool: 0xffff94895f6d0ac0 | file object: 0xffff94895f6d0b40 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu\Programs\Visual Studio 2019.lnk
pool: 0xffff94895f6d0c50 | file object: 0xffff94895f6d0cd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6d0de0 | file object: 0xffff94895f6d0e60 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\9b9cdc69c1c24e2b.automaticDestinations-ms
pool: 0xffff94895f6d1100 | file object: 0xffff94895f6d1180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6d1290 | file object: 0xffff94895f6d1310 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\f18460fded109990.customDestinations-ms
pool: 0xffff94895f6d1420 | file object: 0xffff94895f6d14a0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Windows PowerShell\Windows PowerShell.lnk
pool: 0xffff94895f6d15b0 | file object: 0xffff94895f6d1630 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\microsoft.system.package.metadata\S-1-5-21-3234566417-3121902272-2793192418-1001-MergedResources-1.pri
pool: 0xffff94895f6d1740 | file object: 0xffff94895f6d17c0 | offsetby: 0x80
\Windows\System32\cdprt.dll
pool: 0xffff94895f6d18d0 | file object: 0xffff94895f6d1950 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.UI.Xaml.2.3_2.32002.13001.0_x64__8wekyb3d8bbwe\resources.pri
pool: 0xffff94895f6d1a60 | file object: 0xffff94895f6d1ae0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\resources.pri
pool: 0xffff94895f6d1bf0 | file object: 0xffff94895f6d1c70 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Steps-Recorder.evtx
pool: 0xffff94895f6d1d80 | file object: 0xffff94895f6d1e00 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6d20a0 | file object: 0xffff94895f6d2120 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Accessories\Notepad.lnk
pool: 0xffff94895f6d2230 | file object: 0xffff94895f6d22b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Vsix\Microsoft.VisualStudio.Data.Tools.DataCompare.pkgdef
pool: 0xffff94895f6d23c0 | file object: 0xffff94895f6d2440 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Application-Experience%4Program-Compatibility-Troubleshooter.evtx
pool: 0xffff94895f6d2550 | file object: 0xffff94895f6d25d0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.UI.Xaml.2.3_2.32002.13001.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
pool: 0xffff94895f6d26e0 | file object: 0xffff94895f6d2760 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6d2870 | file object: 0xffff94895f6d28f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.UI.Xaml.2.3_2.32002.13001.0_x64__8wekyb3d8bbwe\ActivationStore.dat
pool: 0xffff94895f6d2a00 | file object: 0xffff94895f6d2a80 | offsetby: 0x80
\Windows\System32\RuntimeBroker.exe
pool: 0xffff94895f6d2b90 | file object: 0xffff94895f6d2c10 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\ScreenMirroring.dll
pool: 0xffff94895f6d2d20 | file object: 0xffff94895f6d2da0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Recent\CustomDestinations\590aee7bdd69b59b.customDestinations-ms
pool: 0xffff94895f6d3040 | file object: 0xffff94895f6d30c0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Recent\AutomaticDestinations\5ba30e54903374cc.automaticDestinations-ms
pool: 0xffff94895f6d31d0 | file object: 0xffff94895f6d3250 | offsetby: 0x80
\Windows\System32\pcwum.dll
pool: 0xffff94895f6d3360 | file object: 0xffff94895f6d33e0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f6d34f0 | file object: 0xffff94895f6d3570 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
pool: 0xffff94895f6d3680 | file object: 0xffff94895f6d3700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6d3810 | file object: 0xffff94895f6d3890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6d39a0 | file object: 0xffff94895f6d3a20 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.UI.Xaml.2.3_2.32002.13001.0_x64__8wekyb3d8bbwe\ActivationStore.dat.LOG2
pool: 0xffff94895f6d3b30 | file object: 0xffff94895f6d3bb0 | offsetby: 0x80
\Windows\System32\Windows.Devices.Bluetooth.dll
pool: 0xffff94895f6d3cc0 | file object: 0xffff94895f6d3d40 | offsetby: 0x80
\Windows\System32\MbaeApiPublic.dll
pool: 0xffff94895f6d3e50 | file object: 0xffff94895f6d3ed0 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
pool: 0xffff94895f6d4170 | file object: 0xffff94895f6d41f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6d4300 | file object: 0xffff94895f6d4380 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{06de659a-a216-4bfb-b4c7-545a67bfdfd9}\apps.schema
pool: 0xffff94895f6d4490 | file object: 0xffff94895f6d4510 | offsetby: 0x80
\Windows\System32\Windows.Networking.dll
pool: 0xffff94895f6d4620 | file object: 0xffff94895f6d46a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6d47b0 | file object: 0xffff94895f6d4830 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6d4940 | file object: 0xffff94895f6d49c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6d4ad0 | file object: 0xffff94895f6d4b50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6d4c60 | file object: 0xffff94895f6d4ce0 | offsetby: 0x80
\Windows\System32\Windows.Networking.HostName.dll
pool: 0xffff94895f6d4df0 | file object: 0xffff94895f6d4e70 | offsetby: 0x80
\Windows\System32\en-US\mitigationscanner.exe.mui
pool: 0xffff94895f6d5110 | file object: 0xffff94895f6d5190 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\ConstraintIndex\Input_{06de659a-a216-4bfb-b4c7-545a67bfdfd9}\appsconversions.txt
pool: 0xffff94895f6d52a0 | file object: 0xffff94895f6d5320 | offsetby: 0x80
\Windows\System32\en-US\winnlsres.dll.mui
pool: 0xffff94895f6d5430 | file object: 0xffff94895f6d54b0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.YourPhone_1.20041.91.0_x64__8wekyb3d8bbwe\YourPhoneControls.dll
pool: 0xffff94895f6d55c0 | file object: 0xffff94895f6d5640 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6d5750 | file object: 0xffff94895f6d57d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6d58e0 | file object: 0xffff94895f6d5960 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6d5a70 | file object: 0xffff94895f6d5af0 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData
pool: 0xffff94895f6d5c00 | file object: 0xffff94895f6d5c80 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\FB0D848F74F70BB2EAA93746D24D9749
pool: 0xffff94895f6d5d90 | file object: 0xffff94895f6d5e10 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\8389864960aaa3d6b3eaaba482d4f5452ee4c091\8389864960aaa3d6b3eaaba482d4f5452ee4c091.pieceshash
pool: 0xffff94895f6d60b0 | file object: 0xffff94895f6d6130 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.UI.Xaml.2.3_2.32002.13001.0_x64__8wekyb3d8bbwe\ActivationStore.dat.LOG1
pool: 0xffff94895f6d6240 | file object: 0xffff94895f6d62c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6d63d0 | file object: 0xffff94895f6d6450 | offsetby: 0x80
\Windows\Prefetch\RUNTIMEBROKER.EXE-DA92980E.pf
pool: 0xffff94895f6d6560 | file object: 0xffff94895f6d65e0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\TiWorker.exe
pool: 0xffff94895f6d66f0 | file object: 0xffff94895f6d6770 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\OpenSSH.Client~~1.0.mum
pool: 0xffff94895f6d6880 | file object: 0xffff94895f6d6900 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\OpenSSH.Server~~1.0.mum
pool: 0xffff94895f6d6a10 | file object: 0xffff94895f6d6a90 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{118228C0-E02C-4E38-8C1D-92D21936E879}.catalogItem
pool: 0xffff94895f6d6ba0 | file object: 0xffff94895f6d6c20 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{3368C32D-3E92-4C5C-8FA9-0D179CFE8EB3}.catalogItem
pool: 0xffff94895f6d6d30 | file object: 0xffff94895f6d6db0 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff94895f6d7050 | file object: 0xffff94895f6d70d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\debug-server-ready\package.nls.json
pool: 0xffff94895f6d71e0 | file object: 0xffff94895f6d7260 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{34D0DDEA-FED5-4755-8274-CBEBCDD1A04B}.catalogItem
pool: 0xffff94895f6d7370 | file object: 0xffff94895f6d73f0 | offsetby: 0x80
\Windows\System32\Windows.Cortana.Desktop.dll
pool: 0xffff94895f6d7500 | file object: 0xffff94895f6d7580 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{5A788E81-8A9B-40D6-A6F4-19790FCB450E}.catalogItem
pool: 0xffff94895f6d7690 | file object: 0xffff94895f6d7710 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{5B0E9BEC-45A5-43B9-827D-4C7616D33A9C}.catalogItem
pool: 0xffff94895f6d7820 | file object: 0xffff94895f6d78a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6d79b0 | file object: 0xffff94895f6d7a30 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\OneCoreUAP.OneSync~~1.0.mum
pool: 0xffff94895f6d7b40 | file object: 0xffff94895f6d7bc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.Common.dll
pool: 0xffff94895f6d7cd0 | file object: 0xffff94895f6d7d50 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{71A64C58-29D9-4BA7-A120-B302A7A3A9CE}.catalogItem
pool: 0xffff94895f6d7e60 | file object: 0xffff94895f6d7ee0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Network.Irda~~1.0.mum
pool: 0xffff94895f6d8180 | file object: 0xffff94895f6d8200 | offsetby: 0x80
\Windows\System32\en-US\inetpp.dll.mui
pool: 0xffff94895f6d8310 | file object: 0xffff94895f6d8390 | offsetby: 0x80
\Windows\System32\smartscreenps.dll
pool: 0xffff94895f6d84a0 | file object: 0xffff94895f6d8520 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\debug-server-ready\package.json
pool: 0xffff94895f6d8630 | file object: 0xffff94895f6d86b0 | offsetby: 0x80
\Windows\WinSxS\x86_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_02f55dc8a0a1d09d\TiWorker.exe
pool: 0xffff94895f6d87c0 | file object: 0xffff94895f6d8840 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6d8950 | file object: 0xffff94895f6d89d0 | offsetby: 0x80
\Users\User\.vscode\extensions\ms-vscode-remote.remote-wsl-0.44.2\package.json
pool: 0xffff94895f6d8ae0 | file object: 0xffff94895f6d8b60 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff94895f6d8c70 | file object: 0xffff94895f6d8cf0 | offsetby: 0x80
\Windows\System32\DictationManager.dll
pool: 0xffff94895f6d8e00 | file object: 0xffff94895f6d8e80 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{061B7EB2-ACBE-47F3-B729-D8EBD04F9E8C}.catalogItem
pool: 0xffff94895f6d9120 | file object: 0xffff94895f6d91a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6d92b0 | file object: 0xffff94895f6d9330 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{0BD15D0E-8D14-436A-8B25-84EB15ED74CA}.catalogItem
pool: 0xffff94895f6d9440 | file object: 0xffff94895f6d94c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6d95d0 | file object: 0xffff94895f6d9650 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6d9760 | file object: 0xffff94895f6d97e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6d98f0 | file object: 0xffff94895f6d9970 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6d9a80 | file object: 0xffff94895f6d9b00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6d9c10 | file object: 0xffff94895f6d9c90 | offsetby: 0x80
\Windows\CSC
pool: 0xffff94895f6d9da0 | file object: 0xffff94895f6d9e20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6da0c0 | file object: 0xffff94895f6da140 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6da250 | file object: 0xffff94895f6da2d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6da3e0 | file object: 0xffff94895f6da460 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6da570 | file object: 0xffff94895f6da5f0 | offsetby: 0x80
\Windows\CSC\v2.0.6
pool: 0xffff94895f6da700 | file object: 0xffff94895f6da780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6da890 | file object: 0xffff94895f6da910 | offsetby: 0x80
\Windows\CSC\v2.0.6\temp
pool: 0xffff94895f6daa20 | file object: 0xffff94895f6daaa0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6dabb0 | file object: 0xffff94895f6dac30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6dad40 | file object: 0xffff94895f6dadc0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6db060 | file object: 0xffff94895f6db0e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6db1f0 | file object: 0xffff94895f6db270 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6db380 | file object: 0xffff94895f6db400 | offsetby: 0x80
\Windows\CSC\v2.0.6\pq
pool: 0xffff94895f6db510 | file object: 0xffff94895f6db590 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6db6a0 | file object: 0xffff94895f6db720 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6db830 | file object: 0xffff94895f6db8b0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\8389864960aaa3d6b3eaaba482d4f5452ee4c091\ff3e2a0104629fa65e6beb09d707b1e43cc281fd0b799c7ff572413a47444fef
pool: 0xffff94895f6db9c0 | file object: 0xffff94895f6dba40 | offsetby: 0x80
\Windows\Prefetch\WLRMDR.EXE-C2B47318.pf
pool: 0xffff94895f6dbb50 | file object: 0xffff94895f6dbbd0 | offsetby: 0x80
\Windows\System32\dmiso8601utils.dll
pool: 0xffff94895f6dbce0 | file object: 0xffff94895f6dbd60 | offsetby: 0x80
\Users\User\.vscode\extensions\ms-vscode-remote.remote-wsl-0.44.2\package.nls.json
pool: 0xffff94895f6dbe70 | file object: 0xffff94895f6dbef0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6dc000 | file object: 0xffff94895f6dc080 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6dc190 | file object: 0xffff94895f6dc210 | offsetby: 0x80
\Windows\System32\dcntel.dll
pool: 0xffff94895f6dc320 | file object: 0xffff94895f6dc3a0 | offsetby: 0x80
\Windows\System32\configmanager2.dll
pool: 0xffff94895f6dc4b0 | file object: 0xffff94895f6dc530 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6dc640 | file object: 0xffff94895f6dc6c0 | offsetby: 0x80
\Windows\System32\mssph.dll
pool: 0xffff94895f6dc7d0 | file object: 0xffff94895f6dc850 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6dc960 | file object: 0xffff94895f6dc9e0 | offsetby: 0x80
\Windows\System32\dmoleaututils.dll
pool: 0xffff94895f6dcaf0 | file object: 0xffff94895f6dcb70 | offsetby: 0x80
\Windows\System32\WinRtTracing.dll
pool: 0xffff94895f6dcc80 | file object: 0xffff94895f6dcd00 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\machine.config
pool: 0xffff94895f6dce10 | file object: 0xffff94895f6dce90 | offsetby: 0x80
\Windows\System32\enterpriseresourcemanager.dll
pool: 0xffff94895f6dd130 | file object: 0xffff94895f6dd1b0 | offsetby: 0x80
\Windows\System32\Windows.Internal.Graphics.Display.DisplayColorManagement.dll
pool: 0xffff94895f6dd2c0 | file object: 0xffff94895f6dd340 | offsetby: 0x80
\Windows\System32\vcruntime140_clr0400.dll
pool: 0xffff94895f6dd450 | file object: 0xffff94895f6dd4d0 | offsetby: 0x80
\Windows\System32\ucrtbase_clr0400.dll
pool: 0xffff94895f6dd5e0 | file object: 0xffff94895f6dd660 | offsetby: 0x80
\Windows\System32\smartscreen.exe
pool: 0xffff94895f6dd770 | file object: 0xffff94895f6dd7f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6dd900 | file object: 0xffff94895f6dd980 | offsetby: 0x80
\Windows\System32\smartscreen.exe
pool: 0xffff94895f6dda90 | file object: 0xffff94895f6ddb10 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\608b1a4f3a44025433437f6d8c52edc2\System.Windows.Forms.ni.dll.aux
pool: 0xffff94895f6ddc20 | file object: 0xffff94895f6ddca0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f97adcda88ac3704f93ae736f5e694ca\System.Runtime.Serialization.ni.dll.aux
pool: 0xffff94895f6dddb0 | file object: 0xffff94895f6dde30 | offsetby: 0x80
\Windows\System32\SecurityHealthSystray.exe
pool: 0xffff94895f6de0d0 | file object: 0xffff94895f6de150 | offsetby: 0x80
\Windows\System32\SecurityHealthSystray.exe
pool: 0xffff94895f6de260 | file object: 0xffff94895f6de2e0 | offsetby: 0x80
\Windows\Prefetch\SECURITYHEALTHSYSTRAY.EXE-41AD6DE1.pf
pool: 0xffff94895f6de3f0 | file object: 0xffff94895f6de470 | offsetby: 0x80
\Windows\System32\SecurityHealthService.exe
pool: 0xffff94895f6de580 | file object: 0xffff94895f6de600 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f6de710 | file object: 0xffff94895f6de790 | offsetby: 0x80
\Windows\System32\SecurityHealthProxyStub.dll
pool: 0xffff94895f6de8a0 | file object: 0xffff94895f6de920 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6dea30 | file object: 0xffff94895f6deab0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6debc0 | file object: 0xffff94895f6dec40 | offsetby: 0x80
\Windows\System32\SecurityHealthSSO.dll
pool: 0xffff94895f6ded50 | file object: 0xffff94895f6dedd0 | offsetby: 0x80
\Windows\System32\en-US\securityhealthsso.dll.mui
pool: 0xffff94895f6df070 | file object: 0xffff94895f6df0f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6df200 | file object: 0xffff94895f6df280 | offsetby: 0x80
\Windows\System32\SecurityHealthSSO.dll
pool: 0xffff94895f6df390 | file object: 0xffff94895f6df410 | offsetby: 0x80
\Windows\Prefetch\SMARTSCREEN.EXE-9B5E4173.pf
pool: 0xffff94895f6df520 | file object: 0xffff94895f6df5a0 | offsetby: 0x80
\Windows\Prefetch\SECURITYHEALTHSERVICE.EXE-EE3BC4CB.pf
pool: 0xffff94895f6df6b0 | file object: 0xffff94895f6df730 | offsetby: 0x80
\Windows\System32\SecurityHealthProxyStub.dll
pool: 0xffff94895f6df840 | file object: 0xffff94895f6df8c0 | offsetby: 0x80
\Windows\System32\SecurityCenterBrokerPS.dll
pool: 0xffff94895f6df9d0 | file object: 0xffff94895f6dfa50 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
pool: 0xffff94895f6dfb60 | file object: 0xffff94895f6dfbe0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll
pool: 0xffff94895f6dfcf0 | file object: 0xffff94895f6dfd70 | offsetby: 0x80
\Windows\System32\VBoxTray.exe
pool: 0xffff94895f6e0010 | file object: 0xffff94895f6e0090 | offsetby: 0x80
\Windows\SysWOW64\msIso.dll
pool: 0xffff94895f6e01a0 | file object: 0xffff94895f6e0220 | offsetby: 0x80
\Windows\System32\EAMProgressHandler.dll
pool: 0xffff94895f6e0330 | file object: 0xffff94895f6e03b0 | offsetby: 0x80
\Windows\System32\en-US\vaultsvc.dll.mui
pool: 0xffff94895f6e04c0 | file object: 0xffff94895f6e0540 | offsetby: 0x80
\Windows\Prefetch\VBOXTRAY.EXE-1D286C83.pf
pool: 0xffff94895f6e0650 | file object: 0xffff94895f6e06d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\appcache[1].man
pool: 0xffff94895f6e07e0 | file object: 0xffff94895f6e0860 | offsetby: 0x80
\Windows\System32\ngclocal.dll
pool: 0xffff94895f6e0970 | file object: 0xffff94895f6e09f0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f6e0b00 | file object: 0xffff94895f6e0b80 | offsetby: 0x80
\Windows\System32\en-US\vaultsvc.dll.mui
pool: 0xffff94895f6e0c90 | file object: 0xffff94895f6e0d10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6e0e20 | file object: 0xffff94895f6e0ea0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6e1140 | file object: 0xffff94895f6e11c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6e12d0 | file object: 0xffff94895f6e1350 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\cea8b8fbc469dcbc6224d523a578e4b3\mscorlib.ni.dll
pool: 0xffff94895f6e1460 | file object: 0xffff94895f6e14e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6e15f0 | file object: 0xffff94895f6e1670 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6e1780 | file object: 0xffff94895f6e1800 | offsetby: 0x80
\ProgramData\Microsoft\Vault\AC658CB4-9126-49BD-B877-31EEDAB3F204\Policy.vpol
pool: 0xffff94895f6e1910 | file object: 0xffff94895f6e1990 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6e1aa0 | file object: 0xffff94895f6e1b20 | offsetby: 0x80
\Windows\System32\vaultsvc.dll
pool: 0xffff94895f6e1c30 | file object: 0xffff94895f6e1cb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6e1dc0 | file object: 0xffff94895f6e1e40 | offsetby: 0x80
\ProgramData\Microsoft\Vault\AC658CB4-9126-49BD-B877-31EEDAB3F204\2F1A6504-0641-44CF-8BB5-3612D865F2E5.vsch
pool: 0xffff94895f6e20e0 | file object: 0xffff94895f6e2160 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\MpClient.dll
pool: 0xffff94895f6e2270 | file object: 0xffff94895f6e22f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6e2400 | file object: 0xffff94895f6e2480 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6e2590 | file object: 0xffff94895f6e2610 | offsetby: 0x80
\ProgramData\Microsoft\Vault\AC658CB4-9126-49BD-B877-31EEDAB3F204\154E23D0-C644-4E6F-8CE6-5069272F999F.vsch
pool: 0xffff94895f6e2720 | file object: 0xffff94895f6e27a0 | offsetby: 0x80
\ProgramData\Microsoft\Vault\AC658CB4-9126-49BD-B877-31EEDAB3F204\3CCD5499-87A8-4B10-A215-608888DD3B55.vsch
pool: 0xffff94895f6e28b0 | file object: 0xffff94895f6e2930 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6e2a40 | file object: 0xffff94895f6e2ac0 | offsetby: 0x80
\Windows\System32\en-US\user32.dll.mui
pool: 0xffff94895f6e2bd0 | file object: 0xffff94895f6e2c50 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\cea8b8fbc469dcbc6224d523a578e4b3\mscorlib.ni.dll.aux
pool: 0xffff94895f6e2d60 | file object: 0xffff94895f6e2de0 | offsetby: 0x80
\Windows
pool: 0xffff94895f6e3080 | file object: 0xffff94895f6e3100 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6e3210 | file object: 0xffff94895f6e3290 | offsetby: 0x80
\Windows\SysWOW64\version.dll
pool: 0xffff94895f6e33a0 | file object: 0xffff94895f6e3420 | offsetby: 0x80
\Windows\SysWOW64\wininet.dll
pool: 0xffff94895f6e3530 | file object: 0xffff94895f6e35b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6e36c0 | file object: 0xffff94895f6e3740 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\2\appcache[1].man
pool: 0xffff94895f6e3850 | file object: 0xffff94895f6e38d0 | offsetby: 0x80
\Windows\WinSxS\Manifests\x86_microsoft.windows.isolationautomation_6595b64144ccf1df_1.0.18362.752_none_dff99c4455d83c3a.manifest
pool: 0xffff94895f6e39e0 | file object: 0xffff94895f6e3a60 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-ReadyBoost%4Operational.evtx
pool: 0xffff94895f6e3b70 | file object: 0xffff94895f6e3bf0 | offsetby: 0x80
\Windows\SysWOW64\userenv.dll
pool: 0xffff94895f6e3d00 | file object: 0xffff94895f6e3d80 | offsetby: 0x80
\Windows\SysWOW64
pool: 0xffff94895f6e4020 | file object: 0xffff94895f6e40a0 | offsetby: 0x80
\Windows\WinSxS\Manifests\x86_microsoft.windows.c..-controls.resources_6595b64144ccf1df_5.82.18362.752_en-us_87e0dc7e878b79e8.manifest
pool: 0xffff94895f6e41b0 | file object: 0xffff94895f6e4230 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6e4340 | file object: 0xffff94895f6e43c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6e44d0 | file object: 0xffff94895f6e4550 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{7216C73B-1BE8-4049-9416-B8BEC439FBF3}.catalogItem
pool: 0xffff94895f6e4660 | file object: 0xffff94895f6e46e0 | offsetby: 0x80
\Windows\SysWOW64\wtsapi32.dll
pool: 0xffff94895f6e47f0 | file object: 0xffff94895f6e4870 | offsetby: 0x80
\Windows\SysWOW64\uxtheme.dll
pool: 0xffff94895f6e4980 | file object: 0xffff94895f6e4a00 | offsetby: 0x80
\Windows\SysWOW64\rsaenh.dll
pool: 0xffff94895f6e4b10 | file object: 0xffff94895f6e4b90 | offsetby: 0x80
\Windows\System32\en-US\kernel32.dll.mui
pool: 0xffff94895f6e4ca0 | file object: 0xffff94895f6e4d20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6e4e30 | file object: 0xffff94895f6e4eb0 | offsetby: 0x80
\Windows\WinSxS\Manifests\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.18362.752_none_71d593995ae547fb.manifest
pool: 0xffff94895f6e5150 | file object: 0xffff94895f6e51d0 | offsetby: 0x80
\Windows\SysWOW64\sxs.dll
pool: 0xffff94895f6e52e0 | file object: 0xffff94895f6e5360 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6e5470 | file object: 0xffff94895f6e54f0 | offsetby: 0x80
\Windows\WinSxS\Manifests\x86_microsoft.windows.i..utomation.proxystub_6595b64144ccf1df_1.0.18362.752_none_8970ed77b4e2564e.manifest
pool: 0xffff94895f6e5600 | file object: 0xffff94895f6e5680 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6e5790 | file object: 0xffff94895f6e5810 | offsetby: 0x80
\Windows\Prefetch\TASKHOSTW.EXE-3E0B74C8.pf
pool: 0xffff94895f6e5920 | file object: 0xffff94895f6e59a0 | offsetby: 0x80
\Windows\Prefetch\ONEDRIVE.EXE-AC60F278.pf
pool: 0xffff94895f6e5ab0 | file object: 0xffff94895f6e5b30 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\ucrtbase.dll
pool: 0xffff94895f6e5c40 | file object: 0xffff94895f6e5cc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6e5dd0 | file object: 0xffff94895f6e5e50 | offsetby: 0x80
\Windows\WinSxS\Manifests\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.18362.752_none_5f58dfa9822159e0.manifest
pool: 0xffff94895f6e60f0 | file object: 0xffff94895f6e6170 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\RemoteAccess.dll
pool: 0xffff94895f6e6280 | file object: 0xffff94895f6e6300 | offsetby: 0x80
\Windows\SysWOW64\wsock32.dll
pool: 0xffff94895f6e6410 | file object: 0xffff94895f6e6490 | offsetby: 0x80
\Windows\SysWOW64\pdh.dll
pool: 0xffff94895f6e65a0 | file object: 0xffff94895f6e6620 | offsetby: 0x80
\Windows\SysWOW64\ntmarta.dll
pool: 0xffff94895f6e6730 | file object: 0xffff94895f6e67b0 | offsetby: 0x80
\Windows\SysWOW64\dwmapi.dll
pool: 0xffff94895f6e68c0 | file object: 0xffff94895f6e6940 | offsetby: 0x80
\Windows\SysWOW64\imm32.dll
pool: 0xffff94895f6e6a50 | file object: 0xffff94895f6e6ad0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\LogUploader.dll
pool: 0xffff94895f6e6be0 | file object: 0xffff94895f6e6c60 | offsetby: 0x80
\Windows\SysWOW64\version.dll
pool: 0xffff94895f6e6d70 | file object: 0xffff94895f6e6df0 | offsetby: 0x80
\Windows\SysWOW64\ncrypt.dll
pool: 0xffff94895f6e7090 | file object: 0xffff94895f6e7110 | offsetby: 0x80
\Windows\SysWOW64\wer.dll
pool: 0xffff94895f6e7220 | file object: 0xffff94895f6e72a0 | offsetby: 0x80
\Windows\SysWOW64\xmllite.dll
pool: 0xffff94895f6e73b0 | file object: 0xffff94895f6e7430 | offsetby: 0x80
\Windows\SysWOW64\dhcpcsvc.dll
pool: 0xffff94895f6e7540 | file object: 0xffff94895f6e75c0 | offsetby: 0x80
\Windows\SysWOW64\ktmw32.dll
pool: 0xffff94895f6e76d0 | file object: 0xffff94895f6e7750 | offsetby: 0x80
\Windows\SysWOW64\loadperf.dll
pool: 0xffff94895f6e7860 | file object: 0xffff94895f6e78e0 | offsetby: 0x80
\Windows\SysWOW64\dhcpcsvc6.dll
pool: 0xffff94895f6e79f0 | file object: 0xffff94895f6e7a70 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\ETWlog.dll
pool: 0xffff94895f6e7b80 | file object: 0xffff94895f6e7c00 | offsetby: 0x80
\Windows\SysWOW64\secur32.dll
pool: 0xffff94895f6e7d10 | file object: 0xffff94895f6e7d90 | offsetby: 0x80
\Windows\SysWOW64\propsys.dll
pool: 0xffff94895f6e8030 | file object: 0xffff94895f6e80b0 | offsetby: 0x80
\Windows\SysWOW64\credui.dll
pool: 0xffff94895f6e81c0 | file object: 0xffff94895f6e8240 | offsetby: 0x80
\Windows\SysWOW64\wtsapi32.dll
pool: 0xffff94895f6e8350 | file object: 0xffff94895f6e83d0 | offsetby: 0x80
\Windows\SysWOW64\Faultrep.dll
pool: 0xffff94895f6e84e0 | file object: 0xffff94895f6e8560 | offsetby: 0x80
\Windows\SysWOW64\wininet.dll
pool: 0xffff94895f6e8670 | file object: 0xffff94895f6e86f0 | offsetby: 0x80
\Windows\SysWOW64\urlmon.dll
pool: 0xffff94895f6e8800 | file object: 0xffff94895f6e8880 | offsetby: 0x80
\Windows\SysWOW64\userenv.dll
pool: 0xffff94895f6e8990 | file object: 0xffff94895f6e8a10 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\FileSyncClient.dll
pool: 0xffff94895f6e8b20 | file object: 0xffff94895f6e8ba0 | offsetby: 0x80
\Windows\SysWOW64\Windows.System.Diagnostics.Telemetry.PlatformTelemetryClient.dll
pool: 0xffff94895f6e8cb0 | file object: 0xffff94895f6e8d30 | offsetby: 0x80
\Windows\SysWOW64\IPHLPAPI.DLL
pool: 0xffff94895f6e8e40 | file object: 0xffff94895f6e8ec0 | offsetby: 0x80
\Windows\SysWOW64\winhttp.dll
pool: 0xffff94895f6e9160 | file object: 0xffff94895f6e91e0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\FileSyncClient.dll
pool: 0xffff94895f6e92f0 | file object: 0xffff94895f6e9370 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\vcruntime140.dll
pool: 0xffff94895f6e9480 | file object: 0xffff94895f6e9500 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\logs\Personal\SyncEngine-2020-06-04.0621.3812.1.aodl
pool: 0xffff94895f6e9610 | file object: 0xffff94895f6e9690 | offsetby: 0x80
\Windows\SysWOW64\dhcpcsvc.dll
pool: 0xffff94895f6e97a0 | file object: 0xffff94895f6e9820 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6e9930 | file object: 0xffff94895f6e99b0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{9931410D-D7D2-4079-A00B-9221551C09CB}.catalogItem
pool: 0xffff94895f6e9ac0 | file object: 0xffff94895f6e9b40 | offsetby: 0x80
\Windows\SysWOW64\Windows.System.Diagnostics.Telemetry.PlatformTelemetryClient.dll
pool: 0xffff94895f6e9c50 | file object: 0xffff94895f6e9cd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6e9de0 | file object: 0xffff94895f6e9e60 | offsetby: 0x80
\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_2e6decc4278ee012
pool: 0xffff94895f6ea100 | file object: 0xffff94895f6ea180 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\LoggingPlatform.dll
pool: 0xffff94895f6ea290 | file object: 0xffff94895f6ea310 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6ea420 | file object: 0xffff94895f6ea4a0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\ucrtbase.dll
pool: 0xffff94895f6ea5b0 | file object: 0xffff94895f6ea630 | offsetby: 0x80
\Windows\SysWOW64\rsaenh.dll
pool: 0xffff94895f6ea740 | file object: 0xffff94895f6ea7c0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\OneDriveTelemetryStable.dll
pool: 0xffff94895f6ea8d0 | file object: 0xffff94895f6ea950 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6eaa60 | file object: 0xffff94895f6eaae0 | offsetby: 0x80
\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.18362.752_none_5f58dfa9822159e0
pool: 0xffff94895f6eabf0 | file object: 0xffff94895f6eac70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6ead80 | file object: 0xffff94895f6eae00 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{C843AAF5-B98C-44D0-B406-B7BF46292A8A}.catalogItem
pool: 0xffff94895f6eb0a0 | file object: 0xffff94895f6eb120 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{ADB50B48-F7B0-48CC-9855-ACD97A14B907}.catalogItem
pool: 0xffff94895f6eb230 | file object: 0xffff94895f6eb2b0 | offsetby: 0x80
\Windows\SysWOW64\IPHLPAPI.DLL
pool: 0xffff94895f6eb3c0 | file object: 0xffff94895f6eb440 | offsetby: 0x80
\Windows\System32\LanguageComponentsInstaller.dll
pool: 0xffff94895f6eb550 | file object: 0xffff94895f6eb5d0 | offsetby: 0x80
\Windows\SysWOW64\tzres.dll
pool: 0xffff94895f6eb6e0 | file object: 0xffff94895f6eb760 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\msvcp140.dll
pool: 0xffff94895f6eb870 | file object: 0xffff94895f6eb8f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6eba00 | file object: 0xffff94895f6eba80 | offsetby: 0x80
\ProgramData\Microsoft\Windows\LfSvc\Geofence\S-1-5-18_NonPackagedApp\Geofence.dat
pool: 0xffff94895f6ebb90 | file object: 0xffff94895f6ebc10 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\ngentasklauncher.dll
pool: 0xffff94895f6ebd20 | file object: 0xffff94895f6ebda0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6ec040 | file object: 0xffff94895f6ec0c0 | offsetby: 0x80
\Windows\SysWOW64\uxtheme.dll
pool: 0xffff94895f6ec1d0 | file object: 0xffff94895f6ec250 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6ec360 | file object: 0xffff94895f6ec3e0 | offsetby: 0x80
\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_2e6decc4278ee012\comctl32.dll
pool: 0xffff94895f6ec4f0 | file object: 0xffff94895f6ec570 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\Telemetry.dll
pool: 0xffff94895f6ec680 | file object: 0xffff94895f6ec700 | offsetby: 0x80
\Windows\SysWOW64\secur32.dll
pool: 0xffff94895f6ec810 | file object: 0xffff94895f6ec890 | offsetby: 0x80
\Windows\SysWOW64\urlmon.dll
pool: 0xffff94895f6ec9a0 | file object: 0xffff94895f6eca20 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\ae3b4dc05d0347fcbe5087af4fef611d7600b315\ae3b4dc05d0347fcbe5087af4fef611d7600b315.pieceshash
pool: 0xffff94895f6ecb30 | file object: 0xffff94895f6ecbb0 | offsetby: 0x80
\Windows\SysWOW64\dwmapi.dll
pool: 0xffff94895f6eccc0 | file object: 0xffff94895f6ecd40 | offsetby: 0x80
\Windows\SysWOW64\wer.dll
pool: 0xffff94895f6ece50 | file object: 0xffff94895f6eced0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\UpdateRingSettings.dll
pool: 0xffff94895f6ed170 | file object: 0xffff94895f6ed1f0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\logs\Personal\telemetry-dll-ramp-value.txt
pool: 0xffff94895f6ed300 | file object: 0xffff94895f6ed380 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\logs\Personal\telemetryCache.otc.session
pool: 0xffff94895f6ed490 | file object: 0xffff94895f6ed510 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\FileSyncSessions.dll
pool: 0xffff94895f6ed620 | file object: 0xffff94895f6ed6a0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\UpdateRingSettings.dll
pool: 0xffff94895f6ed7b0 | file object: 0xffff94895f6ed830 | offsetby: 0x80
\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.18362.752_none_5f58dfa9822159e0\GdiPlus.dll
pool: 0xffff94895f6ed940 | file object: 0xffff94895f6ed9c0 | offsetby: 0x80
\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_2e6decc4278ee012\comctl32.dll
pool: 0xffff94895f6edad0 | file object: 0xffff94895f6edb50 | offsetby: 0x80
\Windows\SysWOW64\xmllite.dll
pool: 0xffff94895f6edc60 | file object: 0xffff94895f6edce0 | offsetby: 0x80
\Windows\WinSxS\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.18362.752_none_5f58dfa9822159e0\GdiPlus.dll
pool: 0xffff94895f6eddf0 | file object: 0xffff94895f6ede70 | offsetby: 0x80
\Windows\SysWOW64\winhttp.dll
pool: 0xffff94895f6ee110 | file object: 0xffff94895f6ee190 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\LoggingPlatform.dll
pool: 0xffff94895f6ee2a0 | file object: 0xffff94895f6ee320 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\ETWlog.dll
pool: 0xffff94895f6ee430 | file object: 0xffff94895f6ee4b0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\msvcp140.dll
pool: 0xffff94895f6ee5c0 | file object: 0xffff94895f6ee640 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\RemoteAccess.dll
pool: 0xffff94895f6ee750 | file object: 0xffff94895f6ee7d0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\vcruntime140.dll
pool: 0xffff94895f6ee8e0 | file object: 0xffff94895f6ee960 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\SyncEngine.dll
pool: 0xffff94895f6eea70 | file object: 0xffff94895f6eeaf0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6eec00 | file object: 0xffff94895f6eec80 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\logs\Personal\DeviceHealthSummaryConfiguration.ini
pool: 0xffff94895f6eed90 | file object: 0xffff94895f6eee10 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\LogUploader.dll
pool: 0xffff94895f6ef0b0 | file object: 0xffff94895f6ef130 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\FileSyncViews.dll
pool: 0xffff94895f6ef240 | file object: 0xffff94895f6ef2c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\ruby\package.nls.json
pool: 0xffff94895f6ef3d0 | file object: 0xffff94895f6ef450 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\logs\Personal\DeviceHealth.json
pool: 0xffff94895f6ef560 | file object: 0xffff94895f6ef5e0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{F6F95966-0C54-4898-99F8-7DF18C6C1DDD}.catalogItem
pool: 0xffff94895f6ef6f0 | file object: 0xffff94895f6ef770 | offsetby: 0x80
\Windows\SysWOW64\CoreUIComponents.dll
pool: 0xffff94895f6ef880 | file object: 0xffff94895f6ef900 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\adal.dll
pool: 0xffff94895f6efa10 | file object: 0xffff94895f6efa90 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\Qt5Gui.dll
pool: 0xffff94895f6efba0 | file object: 0xffff94895f6efc20 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\Qt5WinExtras.dll
pool: 0xffff94895f6efd30 | file object: 0xffff94895f6efdb0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{E8901E86-1636-42CE-AD5E-2206FB3D8078}.catalogItem
pool: 0xffff94895f6f0050 | file object: 0xffff94895f6f00d0 | offsetby: 0x80
\Windows\SysWOW64\credui.dll
pool: 0xffff94895f6f01e0 | file object: 0xffff94895f6f0260 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\Qt5Quick.dll
pool: 0xffff94895f6f0370 | file object: 0xffff94895f6f03f0 | offsetby: 0x80
\Windows\SysWOW64\CoreMessaging.dll
pool: 0xffff94895f6f0500 | file object: 0xffff94895f6f0580 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\Qt5Core.dll
pool: 0xffff94895f6f0690 | file object: 0xffff94895f6f0710 | offsetby: 0x80
\Windows\System32\ngctasks.dll
pool: 0xffff94895f6f0820 | file object: 0xffff94895f6f08a0 | offsetby: 0x80
\Windows\SysWOW64\wsock32.dll
pool: 0xffff94895f6f09b0 | file object: 0xffff94895f6f0a30 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\History\desktop.ini
pool: 0xffff94895f6f0b40 | file object: 0xffff94895f6f0bc0 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_BEB37ABADF39714871232B4792417E04
pool: 0xffff94895f6f0cd0 | file object: 0xffff94895f6f0d50 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\settings\Personal\global.ini
pool: 0xffff94895f6f0e60 | file object: 0xffff94895f6f0ee0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\settings\Personal\logUploaderSettings.ini
pool: 0xffff94895f6f1180 | file object: 0xffff94895f6f1200 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\WnsClientApi.dll
pool: 0xffff94895f6f1310 | file object: 0xffff94895f6f1390 | offsetby: 0x80
\Windows\SysWOW64\ncrypt.dll
pool: 0xffff94895f6f14a0 | file object: 0xffff94895f6f1520 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6f1630 | file object: 0xffff94895f6f16b0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\Qt5Qml.dll
pool: 0xffff94895f6f17c0 | file object: 0xffff94895f6f1840 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\Qt5Widgets.dll
pool: 0xffff94895f6f1950 | file object: 0xffff94895f6f19d0 | offsetby: 0x80
\Windows\SysWOW64\iertutil.dll
pool: 0xffff94895f6f1ae0 | file object: 0xffff94895f6f1b60 | offsetby: 0x80
\Windows\SysWOW64\Windows.Web.dll
pool: 0xffff94895f6f1c70 | file object: 0xffff94895f6f1cf0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\settings\Personal\assertInformation.ini
pool: 0xffff94895f6f1e00 | file object: 0xffff94895f6f1e80 | offsetby: 0x80
\Windows\SysWOW64\propsys.dll
pool: 0xffff94895f6f2120 | file object: 0xffff94895f6f21a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6f22b0 | file object: 0xffff94895f6f2330 | offsetby: 0x80
\Windows\SysWOW64\Faultrep.dll
pool: 0xffff94895f6f2440 | file object: 0xffff94895f6f24c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6f25d0 | file object: 0xffff94895f6f2650 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6f2760 | file object: 0xffff94895f6f27e0 | offsetby: 0x80
\Windows\SysWOW64\winmmbase.dll
pool: 0xffff94895f6f28f0 | file object: 0xffff94895f6f2970 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\ssleay32.dll
pool: 0xffff94895f6f2a80 | file object: 0xffff94895f6f2b00 | offsetby: 0x80
饪ί̜ô鐄 ÀŒ(ǿ؁ԀP覵㣻萙쯂汜洣W湷ˀ蝤ǿāԀ©ȁԀ ȡ©ȁ©ȁ؁
pool: 0xffff94895f6f2c10 | file object: 0xffff94895f6f2c90 | offsetby: 0x80
\Windows\SysWOW64\srvcli.dll
pool: 0xffff94895f6f2da0 | file object: 0xffff94895f6f2e20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f6f30c0 | file object: 0xffff94895f6f3140 | offsetby: 0x80
\Windows\SysWOW64\mpr.dll
pool: 0xffff94895f6f3250 | file object: 0xffff94895f6f32d0 | offsetby: 0x80
\Windows\SysWOW64\netutils.dll
pool: 0xffff94895f6f33e0 | file object: 0xffff94895f6f3460 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6f3570 | file object: 0xffff94895f6f35f0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Print.EnterpriseCloudPrint~~1.0.mum
pool: 0xffff94895f6f3700 | file object: 0xffff94895f6f3780 | offsetby: 0x80
\Windows\SysWOW64\dbghelp.dll
pool: 0xffff94895f6f3890 | file object: 0xffff94895f6f3910 | offsetby: 0x80
\Windows\SysWOW64\wscapi.dll
pool: 0xffff94895f6f3a20 | file object: 0xffff94895f6f3aa0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\FileSync.Resources.dll
pool: 0xffff94895f6f3bb0 | file object: 0xffff94895f6f3c30 | offsetby: 0x80
\Windows\SysWOW64\fltLib.dll
pool: 0xffff94895f6f3d40 | file object: 0xffff94895f6f3dc0 | offsetby: 0x80
\Windows\SysWOW64\winmm.dll
pool: 0xffff94895f6f4060 | file object: 0xffff94895f6f40e0 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_BEB37ABADF39714871232B4792417E04
pool: 0xffff94895f6f41f0 | file object: 0xffff94895f6f4270 | offsetby: 0x80
\Windows\SysWOW64\netapi32.dll
pool: 0xffff94895f6f4380 | file object: 0xffff94895f6f4400 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\logs\Personal\TraceCurrent.0329.0008.etl
pool: 0xffff94895f6f4510 | file object: 0xffff94895f6f4590 | offsetby: 0x80
\Windows\SysWOW64\vaultcli.dll
pool: 0xffff94895f6f46a0 | file object: 0xffff94895f6f4720 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\Qt5Network.dll
pool: 0xffff94895f6f4830 | file object: 0xffff94895f6f48b0 | offsetby: 0x80
\Windows\SysWOW64\dbgcore.dll
pool: 0xffff94895f6f49c0 | file object: 0xffff94895f6f4a40 | offsetby: 0x80
\$ConvertToNonresident
pool: 0xffff94895f6f4b50 | file object: 0xffff94895f6f4bd0 | offsetby: 0x80
\Windows\SysWOW64\cldapi.dll
pool: 0xffff94895f6f4ce0 | file object: 0xffff94895f6f4d60 | offsetby: 0x80
\Windows\SysWOW64\ntasn1.dll
pool: 0xffff94895f6f4e70 | file object: 0xffff94895f6f4ef0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\FileSyncFALWB.dll
pool: 0xffff94895f6f5000 | file object: 0xffff94895f6f5080 | offsetby: 0x80
\Windows\SysWOW64\dnsapi.dll
pool: 0xffff94895f6f5190 | file object: 0xffff94895f6f5210 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\libeay32.dll
pool: 0xffff94895f6f5320 | file object: 0xffff94895f6f53a0 | offsetby: 0x80
\Windows\SysWOW64\atlthunk.dll
pool: 0xffff94895f6f54b0 | file object: 0xffff94895f6f5530 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6f5640 | file object: 0xffff94895f6f56c0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\TokenBroker\Cache\5475cb191e478c39370a215b2da98a37e9dc813d.tbres
pool: 0xffff94895f6f57d0 | file object: 0xffff94895f6f5850 | offsetby: 0x80
\Windows\SysWOW64\mswsock.dll
pool: 0xffff94895f6f5960 | file object: 0xffff94895f6f59e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f6f5af0 | file object: 0xffff94895f6f5b70 | offsetby: 0x80
\Windows\System32\UNP\UpdateNotificationHelpers.dll
pool: 0xffff94895f6f5c80 | file object: 0xffff94895f6f5d00 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\en\FileSync.LocalizedResources.dll.mui
pool: 0xffff94895f6f5e10 | file object: 0xffff94895f6f5e90 | offsetby: 0x80
\Windows\SysWOW64\OneCoreUAPCommonProxyStub.dll
pool: 0xffff94895f6f6130 | file object: 0xffff94895f6f61b0 | offsetby: 0x80
\Windows\SysWOW64\mlang.dll
pool: 0xffff94895f6f62c0 | file object: 0xffff94895f6f6340 | offsetby: 0x80
\$Directory
pool: 0xffff94895f6f6450 | file object: 0xffff94895f6f64d0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\ae3b4dc05d0347fcbe5087af4fef611d7600b315\e43f8a4f3ded683a3794566678c4b6170a2c2ef9c025dcb353928086fe9cc63b
pool: 0xffff94895f6f65e0 | file object: 0xffff94895f6f6660 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\FileSync.LocalizedResources.dll
pool: 0xffff94895f6f6770 | file object: 0xffff94895f6f67f0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\platforms\qwindows.dll
pool: 0xffff94895f6f6900 | file object: 0xffff94895f6f6980 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\settings\PreSignInSettingsConfig.json
pool: 0xffff94895f6f6a90 | file object: 0xffff94895f6f6b10 | offsetby: 0x80
謀舎￿謀舎￿㩐邻舎￿쇠謽舎￿쫰謽舎￿쫰謽舎￿Ƞ預迡舎￿r
pool: 0xffff94895f6f6c20 | file object: 0xffff94895f6f6ca0 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895f6f6db0 | file object: 0xffff94895f6f6e30 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\settings\Personal\ECSConfig.json
pool: 0xffff94895f858680 | file object: 0xffff94895f8586e0 | offsetby: 0x60
\Windows\System32\drivers\condrv.sys
pool: 0xffff94895f924160 | file object: 0xffff94895f9241e0 | offsetby: 0x80
\Windows\SysWOW64\wlidprov.dll
pool: 0xffff94895f9242f0 | file object: 0xffff94895f924370 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff94895f924480 | file object: 0xffff94895f924500 | offsetby: 0x80
\Windows\SysWOW64\FamilySafetyExt.dll
pool: 0xffff94895f924610 | file object: 0xffff94895f924690 | offsetby: 0x80
\Windows\System32\WaaSMedicCapsule.dll
pool: 0xffff94895f9247a0 | file object: 0xffff94895f924820 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\Update\update.xml
pool: 0xffff94895f924930 | file object: 0xffff94895f9249b0 | offsetby: 0x80
\Windows\SysWOW64\msxml6r.dll
pool: 0xffff94895f924ac0 | file object: 0xffff94895f924b40 | offsetby: 0x80
\Windows\SysWOW64\msxml6.dll
pool: 0xffff94895f924c50 | file object: 0xffff94895f924cd0 | offsetby: 0x80
\Windows\SysWOW64\twinapi.appcore.dll
pool: 0xffff94895f924de0 | file object: 0xffff94895f924e60 | offsetby: 0x80
\Windows\SysWOW64\rmclient.dll
pool: 0xffff94895f925100 | file object: 0xffff94895f925180 | offsetby: 0x80
\Windows\SysWOW64\WinTypes.dll
pool: 0xffff94895f925290 | file object: 0xffff94895f925310 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\FileSync.Resources.dll
pool: 0xffff94895f925420 | file object: 0xffff94895f9254a0 | offsetby: 0x80
\Windows\SysWOW64\Windows.Services.TargetedContent.dll
pool: 0xffff94895f9255b0 | file object: 0xffff94895f925630 | offsetby: 0x80
\Windows\SysWOW64\OnDemandConnRouteHelper.dll
pool: 0xffff94895f925740 | file object: 0xffff94895f9257c0 | offsetby: 0x80
\Windows\SysWOW64\Wpc.dll
pool: 0xffff94895f9258d0 | file object: 0xffff94895f925950 | offsetby: 0x80
\Windows\SysWOW64\winnsi.dll
pool: 0xffff94895f925a60 | file object: 0xffff94895f925ae0 | offsetby: 0x80
\Windows\SysWOW64\edputil.dll
pool: 0xffff94895f925bf0 | file object: 0xffff94895f925c70 | offsetby: 0x80
\Windows\SysWOW64\StructuredQuery.dll
pool: 0xffff94895f925d80 | file object: 0xffff94895f925e00 | offsetby: 0x80
\$ConvertToNonresident
pool: 0xffff94895f9260a0 | file object: 0xffff94895f926120 | offsetby: 0x80
\Windows\System32\WaaSMedicCapsule.dll
pool: 0xffff94895f926230 | file object: 0xffff94895f9262b0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\20.064.0329.0008\en\FileSync.LocalizedResources.dll.mui
pool: 0xffff94895f9263c0 | file object: 0xffff94895f926440 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\OneDrive.exe
pool: 0xffff94895f926550 | file object: 0xffff94895f9265d0 | offsetby: 0x80
\Windows\SysWOW64\dsreg.dll
pool: 0xffff94895f9266e0 | file object: 0xffff94895f926760 | offsetby: 0x80
\Windows\SysWOW64\msvcp110_win.dll
pool: 0xffff94895f926870 | file object: 0xffff94895f9268f0 | offsetby: 0x80
\Windows\SysWOW64\samcli.dll
pool: 0xffff94895f926a00 | file object: 0xffff94895f926a80 | offsetby: 0x80
\Windows\SysWOW64\mssprxy.dll
pool: 0xffff94895f926b90 | file object: 0xffff94895f926c10 | offsetby: 0x80
\Windows\Prefetch\AgRobust.db
pool: 0xffff94895f926d20 | file object: 0xffff94895f926da0 | offsetby: 0x80
\Windows\SysWOW64\Windows.Storage.Search.dll
pool: 0xffff94895f927040 | file object: 0xffff94895f9270c0 | offsetby: 0x80
\Windows\System32\WaaSMedicAgent.exe
pool: 0xffff94895f9271d0 | file object: 0xffff94895f927250 | offsetby: 0x80
\Windows\SysWOW64\Windows.Networking.Connectivity.dll
pool: 0xffff94895f927360 | file object: 0xffff94895f9273e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f9274f0 | file object: 0xffff94895f927570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f927680 | file object: 0xffff94895f927700 | offsetby: 0x80
\Windows\System32\en-US\shell32.dll.mui
pool: 0xffff94895f927810 | file object: 0xffff94895f927890 | offsetby: 0x80
\Users\Public\Documents\desktop.ini
pool: 0xffff94895f9279a0 | file object: 0xffff94895f927a20 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Notifications\wpndatabase.db-shm
pool: 0xffff94895f927b30 | file object: 0xffff94895f927bb0 | offsetby: 0x80
\Windows\SysWOW64\WindowsCodecs.dll
pool: 0xffff94895f927cc0 | file object: 0xffff94895f927d40 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Caches\{17A6A947-B905-4D30-88C9-B63C603DA134}.3.ver0x0000000000000002.db
pool: 0xffff94895f927e50 | file object: 0xffff94895f927ed0 | offsetby: 0x80
\Windows\SysWOW64\apphelp.dll
pool: 0xffff94895f928170 | file object: 0xffff94895f9281f0 | offsetby: 0x80
\Windows\SysWOW64\rasadhlp.dll
pool: 0xffff94895f928300 | file object: 0xffff94895f928380 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f928490 | file object: 0xffff94895f928510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f928620 | file object: 0xffff94895f9286a0 | offsetby: 0x80
\Windows\SysWOW64\FWPUCLNT.DLL
pool: 0xffff94895f9287b0 | file object: 0xffff94895f928830 | offsetby: 0x80
\Windows\SysWOW64\ieframe.dll
pool: 0xffff94895f928940 | file object: 0xffff94895f9289c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f928ad0 | file object: 0xffff94895f928b50 | offsetby: 0x80
\Windows\SoftwareDistribution\Download\a75e1456b7eea7fc8bbfe9d9b17072e2\Metadata\UAOneSettings.dll
pool: 0xffff94895f928c60 | file object: 0xffff94895f928ce0 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff94895f928df0 | file object: 0xffff94895f928e70 | offsetby: 0x80
\Windows\SysWOW64\wshqos.dll
pool: 0xffff94895f929110 | file object: 0xffff94895f929190 | offsetby: 0x80
\Windows\SysWOW64\ntshrui.dll
pool: 0xffff94895f9292a0 | file object: 0xffff94895f929320 | offsetby: 0x80
\$Directory
pool: 0xffff94895f929430 | file object: 0xffff94895f9294b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Microsoft.VisualStudio.Setup.Common.dll
pool: 0xffff94895f9295c0 | file object: 0xffff94895f929640 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Notifications\wpndatabase.db
pool: 0xffff94895f929750 | file object: 0xffff94895f9297d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f9298e0 | file object: 0xffff94895f929960 | offsetby: 0x80
\Windows\SysWOW64\cscapi.dll
pool: 0xffff94895f929a70 | file object: 0xffff94895f929af0 | offsetby: 0x80
\Windows\System32\en-US\propsys.dll.mui
pool: 0xffff94895f929c00 | file object: 0xffff94895f929c80 | offsetby: 0x80
\Windows\SysWOW64\schannel.dll
pool: 0xffff94895f929d90 | file object: 0xffff94895f929e10 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Notifications\wpndatabase.db
pool: 0xffff94895f92a0b0 | file object: 0xffff94895f92a130 | offsetby: 0x80
\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_2e6decc4278ee012
pool: 0xffff94895f92a240 | file object: 0xffff94895f92a2c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f92a3d0 | file object: 0xffff94895f92a450 | offsetby: 0x80
\Windows\System32\elslad.dll
pool: 0xffff94895f92a560 | file object: 0xffff94895f92a5e0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\INetCache\IE\H2893ZP6\PreSignInSettingsConfig[1].json
pool: 0xffff94895f92a6f0 | file object: 0xffff94895f92a770 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\LocalState\TargetedContentCache\v3\88000161\a64d9df537cb4dc1ac012545a0b7cf8f_1
pool: 0xffff94895f92a880 | file object: 0xffff94895f92a900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f92aa10 | file object: 0xffff94895f92aa90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f92aba0 | file object: 0xffff94895f92ac20 | offsetby: 0x80
\Windows\SysWOW64\Windows.Web.dll
pool: 0xffff94895f92ad30 | file object: 0xffff94895f92adb0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\LocalState\TargetedContentCache\v3\280810\7a445720c0c74e41872fa832713cf468_1
pool: 0xffff94895f92b050 | file object: 0xffff94895f92b0d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f92b1e0 | file object: 0xffff94895f92b260 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f92b370 | file object: 0xffff94895f92b3f0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\Windows\Notifications\wpndatabase.db-wal
pool: 0xffff94895f92b500 | file object: 0xffff94895f92b580 | offsetby: 0x80
\$Directory
pool: 0xffff94895f92b690 | file object: 0xffff94895f92b710 | offsetby: 0x80
\Windows\SysWOW64\Windows.StateRepositoryPS.dll
pool: 0xffff94895f92b820 | file object: 0xffff94895f92b8a0 | offsetby: 0x80
pool: 0xffff94895f92b9b0 | file object: 0xffff94895f92ba30 | offsetby: 0x80
\Windows\SysWOW64\dpapi.dll
pool: 0xffff94895f92bb40 | file object: 0xffff94895f92bbc0 | offsetby: 0x80
\Windows\SysWOW64\cryptnet.dll
pool: 0xffff94895f92bcd0 | file object: 0xffff94895f92bd50 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff94895f92be60 | file object: 0xffff94895f92bee0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f92c180 | file object: 0xffff94895f92c200 | offsetby: 0x80
\Windows\SysWOW64\mskeyprotect.dll
pool: 0xffff94895f92c310 | file object: 0xffff94895f92c390 | offsetby: 0x80
\Windows\ShellExperiences\JumpViewUI.dll
pool: 0xffff94895f92c4a0 | file object: 0xffff94895f92c520 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203
pool: 0xffff94895f92c630 | file object: 0xffff94895f92c6b0 | offsetby: 0x80
\Windows\SysWOW64\ncryptsslp.dll
pool: 0xffff94895f92c7c0 | file object: 0xffff94895f92c840 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Known Folders API Service.evtx
pool: 0xffff94895f92c950 | file object: 0xffff94895f92c9d0 | offsetby: 0x80
\Windows\SysWOW64\policymanager.dll
pool: 0xffff94895f92cae0 | file object: 0xffff94895f92cb60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f92cc70 | file object: 0xffff94895f92ccf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f92ce00 | file object: 0xffff94895f92ce80 | offsetby: 0x80
\$Directory
pool: 0xffff94895f92d120 | file object: 0xffff94895f92d1a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\LocalState\TargetedContentCache\v3\280811\98e7eff0164b473d908fe82306be5919_1
pool: 0xffff94895f92d2b0 | file object: 0xffff94895f92d330 | offsetby: 0x80
\Windows\SysWOW64\wkscli.dll
pool: 0xffff94895f92d5d0 | file object: 0xffff94895f92d650 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203
pool: 0xffff94895f92d760 | file object: 0xffff94895f92d7e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f92d8f0 | file object: 0xffff94895f92d970 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f92da80 | file object: 0xffff94895f92db00 | offsetby: 0x80
\$Directory
pool: 0xffff94895f92dc10 | file object: 0xffff94895f92dc90 | offsetby: 0x80
\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_2e6decc4278ee012
pool: 0xffff94895f92dda0 | file object: 0xffff94895f92de20 | offsetby: 0x80
\$Directory
pool: 0xffff94895f92e0c0 | file object: 0xffff94895f92e140 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f92e250 | file object: 0xffff94895f92e2d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
pool: 0xffff94895f92e3e0 | file object: 0xffff94895f92e460 | offsetby: 0x80
\Windows\SysWOW64\d3d11.dll
pool: 0xffff94895f92e570 | file object: 0xffff94895f92e5f0 | offsetby: 0x80
\Windows\SysWOW64\DataExchange.dll
pool: 0xffff94895f92e700 | file object: 0xffff94895f92e780 | offsetby: 0x80
\Windows\SysWOW64\TextInputFramework.dll
pool: 0xffff94895f92e890 | file object: 0xffff94895f92e910 | offsetby: 0x80
\Windows\SysWOW64\ntmarta.dll
pool: 0xffff94895f92ea20 | file object: 0xffff94895f92eaa0 | offsetby: 0x80
괁ܐ扏捓dows넀薫舎￿≱⇔䑲㷚˜蠄€ŒlāĀȁ8Ѐ겫擨쌗얫଑㯗졭誝툳朘䔡㕅茒⏿ᶧāԀāԀ
pool: 0xffff94895f92ebb0 | file object: 0xffff94895f92ec30 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\LocalState\TargetedContentCache\v3\88000163\fa9e912a31e042308f61ac0d23b19bbd_1
pool: 0xffff94895f92ed40 | file object: 0xffff94895f92edc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f92f060 | file object: 0xffff94895f92f0e0 | offsetby: 0x80
\Windows\SysWOW64\CoreUIComponents.dll
pool: 0xffff94895f92f1f0 | file object: 0xffff94895f92f270 | offsetby: 0x80
\Windows\SysWOW64\CoreMessaging.dll
pool: 0xffff94895f92f380 | file object: 0xffff94895f92f400 | offsetby: 0x80
\Windows\System32\en-US\ieframe.dll.mui
pool: 0xffff94895f92f510 | file object: 0xffff94895f92f590 | offsetby: 0x80
\Windows\SysWOW64\mshtml.dll
pool: 0xffff94895f92f6a0 | file object: 0xffff94895f92f720 | offsetby: 0x80
\Windows\SysWOW64\MicrosoftAccountTokenProvider.dll
pool: 0xffff94895f92f830 | file object: 0xffff94895f92f8b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\LocalState\TargetedContentCache\v3\88000165\4a1f5bfd121c4b11b7f8733398ea0e83_1
pool: 0xffff94895f92f9c0 | file object: 0xffff94895f92fa40 | offsetby: 0x80
\Windows\SysWOW64\dxgi.dll
pool: 0xffff94895f92fb50 | file object: 0xffff94895f92fbd0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\FB0D848F74F70BB2EAA93746D24D9749
pool: 0xffff94895f92fce0 | file object: 0xffff94895f92fd60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f92fe70 | file object: 0xffff94895f92fef0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\8a610f9dd0bab5b271f8738bfd5e66b4deaac24d\8a610f9dd0bab5b271f8738bfd5e66b4deaac24d.pieceshash
pool: 0xffff94895f930000 | file object: 0xffff94895f930080 | offsetby: 0x80
\$Directory
pool: 0xffff94895f930190 | file object: 0xffff94895f930210 | offsetby: 0x80
\Windows\SysWOW64\DXCore.dll
pool: 0xffff94895f930320 | file object: 0xffff94895f9303a0 | offsetby: 0x80
\Windows\System32\OpcServices.dll
pool: 0xffff94895f9304b0 | file object: 0xffff94895f930530 | offsetby: 0x80
\$Directory
pool: 0xffff94895f930640 | file object: 0xffff94895f9306c0 | offsetby: 0x80
\Windows\SysWOW64\dcomp.dll
pool: 0xffff94895f9307d0 | file object: 0xffff94895f930850 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\8a610f9dd0bab5b271f8738bfd5e66b4deaac24d\dc8e5cb7699b35f716ba32a7a59a01448c65337d011f725b6c26309c49a2fea3
pool: 0xffff94895f930960 | file object: 0xffff94895f9309e0 | offsetby: 0x80
\Windows\System32\en-US\ieframe.dll.mui
pool: 0xffff94895f930af0 | file object: 0xffff94895f930b70 | offsetby: 0x80
\Windows\System32\comuid.dll
pool: 0xffff94895f930c80 | file object: 0xffff94895f930d00 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\INetCache\IE\9M225O7R\Converged_v21033_-0mnSwu67knBd7qR7YN9GQ2[1].css
pool: 0xffff94895f930e10 | file object: 0xffff94895f930e90 | offsetby: 0x80
\$Directory
pool: 0xffff94895f931130 | file object: 0xffff94895f9311b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f9312c0 | file object: 0xffff94895f931340 | offsetby: 0x80
\Windows\SysWOW64\en-US\urlmon.dll.mui
pool: 0xffff94895f931450 | file object: 0xffff94895f9314d0 | offsetby: 0x80
\Windows\System32\cellulardatacapabilityhandler.dll
pool: 0xffff94895f9315e0 | file object: 0xffff94895f931660 | offsetby: 0x80
\Windows\System32\elslad.dll
pool: 0xffff94895f931770 | file object: 0xffff94895f9317f0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\INetCache\IE\OVV37CJY\ConvergedLoginPaginatedStrings.en_SfTn_o5yPShrIvTOaHpsKA2[1].js
pool: 0xffff94895f931900 | file object: 0xffff94895f931980 | offsetby: 0x80
\Windows\SysWOW64\d2d1.dll
pool: 0xffff94895f931a90 | file object: 0xffff94895f931b10 | offsetby: 0x80
\Windows\SysWOW64\d3d10warp.dll
pool: 0xffff94895f931c20 | file object: 0xffff94895f931ca0 | offsetby: 0x80
\Windows\SysWOW64\en-US\jscript9.dll.mui
pool: 0xffff94895f931db0 | file object: 0xffff94895f931e30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f9320d0 | file object: 0xffff94895f932150 | offsetby: 0x80
\Windows\SysWOW64\wldp.dll
pool: 0xffff94895f932260 | file object: 0xffff94895f9322e0 | offsetby: 0x80
\Windows\System32\en-US\mshtml.dll.mui
pool: 0xffff94895f9323f0 | file object: 0xffff94895f932470 | offsetby: 0x80
\Windows\SysWOW64\msimtf.dll
pool: 0xffff94895f932580 | file object: 0xffff94895f932600 | offsetby: 0x80
\Windows\SysWOW64\jscript9.dll
pool: 0xffff94895f932710 | file object: 0xffff94895f932790 | offsetby: 0x80
\Windows\Prefetch\PfPre_1374257b.mkd
pool: 0xffff94895f9328a0 | file object: 0xffff94895f932920 | offsetby: 0x80
\Windows\SysWOW64\Windows.Security.Authentication.Web.Core.dll
pool: 0xffff94895f932a30 | file object: 0xffff94895f932ab0 | offsetby: 0x80
\Windows\SysWOW64\DWrite.dll
pool: 0xffff94895f932bc0 | file object: 0xffff94895f932c40 | offsetby: 0x80
\Windows\SysWOW64\srpapi.dll
pool: 0xffff94895f932d50 | file object: 0xffff94895f932dd0 | offsetby: 0x80
\Windows\SysWOW64\ResourcePolicyClient.dll
pool: 0xffff94895f933070 | file object: 0xffff94895f9330f0 | offsetby: 0x80
\Windows\WinSxS\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_2e6decc4278ee012
pool: 0xffff94895f933200 | file object: 0xffff94895f933280 | offsetby: 0x80
\Windows\System32\en-US\propsys.dll.mui
pool: 0xffff94895f933390 | file object: 0xffff94895f933410 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\2ac3ce7c582a3dab4663c700b7a6ee798b09349b\2ac3ce7c582a3dab4663c700b7a6ee798b09349b.pieceshash
pool: 0xffff94895f933520 | file object: 0xffff94895f9335a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f9336b0 | file object: 0xffff94895f933730 | offsetby: 0x80
\Windows\System32\en-US\sysmain.dll.mui
pool: 0xffff94895f933840 | file object: 0xffff94895f9338c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f9339d0 | file object: 0xffff94895f933a50 | offsetby: 0x80
\Windows\SysWOW64\UIAutomationCore.dll
pool: 0xffff94895f933b60 | file object: 0xffff94895f933be0 | offsetby: 0x80
\Windows\Prefetch\CONHOST.EXE-1F3E9D7E.pf
pool: 0xffff94895f933cf0 | file object: 0xffff94895f933d70 | offsetby: 0x80
\Windows\Prefetch\AgAppLaunch.db
pool: 0xffff94895f934010 | file object: 0xffff94895f934090 | offsetby: 0x80
\Windows\System32\en-US\Windows.Security.Authentication.Web.Core.dll.mui
pool: 0xffff94895f9341a0 | file object: 0xffff94895f934220 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f934330 | file object: 0xffff94895f9343b0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\S-1-5-21-3234566417-3121902272-2793192418-1001.pckgdep
pool: 0xffff94895f9344c0 | file object: 0xffff94895f934540 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\2ac3ce7c582a3dab4663c700b7a6ee798b09349b\2a60267e790942dfdf2fe4407cee93ef8039457339704e44726bae6683da5335
pool: 0xffff94895f934650 | file object: 0xffff94895f9346d0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\INetCache\IE\OVV37CJY\ellipsis_grey_2b5d393db04a5e6e1f739cb266e65b4c[1].svg
pool: 0xffff94895f9347e0 | file object: 0xffff94895f934860 | offsetby: 0x80
\Windows\SysWOW64\vaultcli.dll
pool: 0xffff94895f934970 | file object: 0xffff94895f9349f0 | offsetby: 0x80
\Windows\System32\WindowsInternal.ComposableShell.DesktopHosting.dll
pool: 0xffff94895f934b00 | file object: 0xffff94895f934b80 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\INetCache\IE\GSDEMWM0\OldConvergedLogin_PCore_6RckLmnA1dyUG5gB9JNc1g2[1].js
pool: 0xffff94895f934c90 | file object: 0xffff94895f934d10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f934e20 | file object: 0xffff94895f934ea0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f935140 | file object: 0xffff94895f9351c0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\c7d11ba3ca67a7b5e9e77b1f63ef04a7d209b2f6\c7d11ba3ca67a7b5e9e77b1f63ef04a7d209b2f6.pieceshash
pool: 0xffff94895f9352d0 | file object: 0xffff94895f935350 | offsetby: 0x80
\Windows\ShellComponents\WindowsInternal.ComposableShell.Experiences.Switcher.dll
pool: 0xffff94895f935460 | file object: 0xffff94895f9354e0 | offsetby: 0x80
\Windows\ShellExperiences\TileControl.dll
pool: 0xffff94895f9355f0 | file object: 0xffff94895f935670 | offsetby: 0x80
\Windows\ShellComponents\TaskFlowUI.dll
pool: 0xffff94895f935780 | file object: 0xffff94895f935800 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895f935910 | file object: 0xffff94895f935990 | offsetby: 0x80
\Windows\Fonts\segoeui.ttf
pool: 0xffff94895f935aa0 | file object: 0xffff94895f935b20 | offsetby: 0x80
\Windows\SystemResources\Windows.UI.Cred\Windows.UI.Cred.pris\app\extensions\vb\package.jsonson
pool: 0xffff94895f935c30 | file object: 0xffff94895f935cb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f935dc0 | file object: 0xffff94895f935e40 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\INetCache\IE\GSDEMWM0\ellipsis_white_5ac590ee72bfe06a7cecfd75b588ad73[1].svg
pool: 0xffff94895f9360e0 | file object: 0xffff94895f936160 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f936270 | file object: 0xffff94895f9362f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f936400 | file object: 0xffff94895f936480 | offsetby: 0x80
\$Directory
pool: 0xffff94895f936590 | file object: 0xffff94895f936610 | offsetby: 0x80
\Windows\SysWOW64\OneCoreCommonProxyStub.dll
pool: 0xffff94895f936720 | file object: 0xffff94895f9367a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f9368b0 | file object: 0xffff94895f936930 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Windows\DeliveryOptimization\Cache\c7d11ba3ca67a7b5e9e77b1f63ef04a7d209b2f6\86aea5f7be1ce29416d396ec88a6e983f72289bb4d959a9ef95df2116a4334b2
pool: 0xffff94895f936a40 | file object: 0xffff94895f936ac0 | offsetby: 0x80
瞐誾舎￿盓誾舎￿僀怌钉￿캈蠬舎￿蕨蝨舎￿
pool: 0xffff94895f936bd0 | file object: 0xffff94895f936c50 | offsetby: 0x80
\$Directory
pool: 0xffff94895f936d60 | file object: 0xffff94895f936de0 | offsetby: 0x80
\Windows\System32\spool\drivers\x64\PCC
pool: 0xffff94895f937080 | file object: 0xffff94895f937100 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Machine.srd-shm
pool: 0xffff94895f937210 | file object: 0xffff94895f937290 | offsetby: 0x80
\Windows\System32\spool\drivers\W32X86\PCC
pool: 0xffff94895f9373a0 | file object: 0xffff94895f937420 | offsetby: 0x80
\Windows\System32\spool\drivers\W32X86\PCC
pool: 0xffff94895f937530 | file object: 0xffff94895f9375b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f9376c0 | file object: 0xffff94895f937740 | offsetby: 0x80
\$Directory
pool: 0xffff94895f937850 | file object: 0xffff94895f9378d0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\e2507c6929371fa69b5e96a6e097ee69\System.Xml.ni.dll
pool: 0xffff94895f9379e0 | file object: 0xffff94895f937a60 | offsetby: 0x80
૎銤댰榰istry\MACHIN긃܎扏捓stem氀讞舎￿㷞콁솔耄XtDƟȁԀ ȠԁԀ鄑샋狀먔믢꙼ϩԁԀ鄑샋狀먔믢꙼ϩԁ
pool: 0xffff94895f937b70 | file object: 0xffff94895f937bf0 | offsetby: 0x80
\Users\User\AppData\Local\Temp\__PSScriptPolicyTest_0rohvhas.usu.psm1āԀကāԀȁȁ
pool: 0xffff94895f937d00 | file object: 0xffff94895f937d80 | offsetby: 0x80
\Windows\System32\ploptin.dll
pool: 0xffff94895f938020 | file object: 0xffff94895f9380a0 | offsetby: 0x80
\Windows\System32\dot3mm.dll
pool: 0xffff94895f9381b0 | file object: 0xffff94895f938230 | offsetby: 0x80
ďdows\assembly\GAC_64\MicrosoAzureRM.ServiceFabric.ni.dllml0__31bf3856ad364e35\Microsoft.Powers
pool: 0xffff94895f938340 | file object: 0xffff94895f9383c0 | offsetby: 0x80
\Windows\WaaS\services\315818c03ccc2b10070df2d4ebd09eb6c4c66e58.xml
pool: 0xffff94895f9384d0 | file object: 0xffff94895f938550 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\html\package.nls.json
pool: 0xffff94895f938660 | file object: 0xffff94895f9386e0 | offsetby: 0x80
\Windows\System32\spool\drivers\x64\PCC
pool: 0xffff94895f9387f0 | file object: 0xffff94895f938870 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-solarized-light\package.nls.json
pool: 0xffff94895f938980 | file object: 0xffff94895f938a00 | offsetby: 0x80
\Windows\System32\spool\drivers\x64\PCC
pool: 0xffff94895f938b10 | file object: 0xffff94895f938b90 | offsetby: 0x80
\$Directory
pool: 0xffff94895f938ca0 | file object: 0xffff94895f938d20 | offsetby: 0x80
\$Directory
pool: 0xffff94895f938e30 | file object: 0xffff94895f938eb0 | offsetby: 0x80
\Windows\System32\dmcsps.dll
pool: 0xffff94895f939150 | file object: 0xffff94895f9391d0 | offsetby: 0x80
\Program Files\WindowsPowerShell\Modules\PSReadline\2.0.0\Microsoft.PowerShell.PSReadline.dll.json
pool: 0xffff94895f9392e0 | file object: 0xffff94895f939360 | offsetby: 0x80
\Windows\System32\spool\drivers\x64\PCC
pool: 0xffff94895f939470 | file object: 0xffff94895f9394f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f939600 | file object: 0xffff94895f939680 | offsetby: 0x80
\Windows\System32\spool\drivers\x64\PCC
pool: 0xffff94895f939790 | file object: 0xffff94895f939810 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f939920 | file object: 0xffff94895f9399a0 | offsetby: 0x80
\Windows\System32\devrtl.dll
pool: 0xffff94895f939ab0 | file object: 0xffff94895f939b30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f939c40 | file object: 0xffff94895f939cc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f939dd0 | file object: 0xffff94895f939e50 | offsetby: 0x80
\Windows\System32\spool\drivers\x64\PCC
pool: 0xffff94895f93a0f0 | file object: 0xffff94895f93a170 | offsetby: 0x80
\Windows\System32\credui.dll
pool: 0xffff94895f93a280 | file object: 0xffff94895f93a300 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\PerfMarkers\Microsoft.DiagnosticsHub.PerfMarkers.dll
pool: 0xffff94895f93a410 | file object: 0xffff94895f93a490 | offsetby: 0x80
\Windows\System32\browcli.dll
pool: 0xffff94895f93a5a0 | file object: 0xffff94895f93a620 | offsetby: 0x80
\Windows\System32\qmgr.dll
pool: 0xffff94895f93a730 | file object: 0xffff94895f93a7b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcpackages\VCProject.dlleSquare4
pool: 0xffff94895f93a8c0 | file object: 0xffff94895f93a940 | offsetby: 0x80
\$Directory
pool: 0xffff94895f93aa50 | file object: 0xffff94895f93aad0 | offsetby: 0x80
\Windows\System32\cryptui.dll
pool: 0xffff94895f93abe0 | file object: 0xffff94895f93ac60 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\jake\package.nls.json
pool: 0xffff94895f93ad70 | file object: 0xffff94895f93adf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f93b090 | file object: 0xffff94895f93b110 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\ini\package.nls.json
pool: 0xffff94895f93b220 | file object: 0xffff94895f93b2a0 | offsetby: 0x80
\Program Files\Common Files\microsoft shared\ink\TabTip.exe
pool: 0xffff94895f93b3b0 | file object: 0xffff94895f93b430 | offsetby: 0x80
\Windows\System32\comsvcs.dll
pool: 0xffff94895f93b540 | file object: 0xffff94895f93b5c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f93b6d0 | file object: 0xffff94895f93b750 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-monokai-dimmed\packag
pool: 0xffff94895f93b860 | file object: 0xffff94895f93b8e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f93b9f0 | file object: 0xffff94895f93ba70 | offsetby: 0x80
\$Directory
pool: 0xffff94895f93bb80 | file object: 0xffff94895f93bc00 | offsetby: 0x80
\$Directory
pool: 0xffff94895f93bd10 | file object: 0xffff94895f93bd90 | offsetby: 0x80
\Windows\System32\en-US\Conhost.exe.mui
pool: 0xffff94895f93c030 | file object: 0xffff94895f93c0b0 | offsetby: 0x80
\Windows\System32\Windows.Media.Speech.dll
pool: 0xffff94895f93c1c0 | file object: 0xffff94895f93c240 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f93c350 | file object: 0xffff94895f93c3d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\log\package.nls.json
pool: 0xffff94895f93c4e0 | file object: 0xffff94895f93c560 | offsetby: 0x80
\Windows\System32\conhost.exe
pool: 0xffff94895f93c670 | file object: 0xffff94895f93c6f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\java\package.nls.json
pool: 0xffff94895f93c800 | file object: 0xffff94895f93c880 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\json-language-features\package.nls.json
pool: 0xffff94895f93c990 | file object: 0xffff94895f93ca10 | offsetby: 0x80
\Windows\System32\clbcatq.dll
pool: 0xffff94895f93cb20 | file object: 0xffff94895f93cba0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\b4bf7266d73c05a0e87b198b961a00a0\System.Core.ni.dll.aux
pool: 0xffff94895f93ccb0 | file object: 0xffff94895f93cd30 | offsetby: 0x80
൦⤳&㥻㠴䙃㡄ⵃ㠱㠸㐭㕅ⴲ㜸㌰㤭㘹〱㐳
pool: 0xffff94895f93ce40 | file object: 0xffff94895f93cec0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\c9243edb149eb78c5309c103df69d594\System.Core.ni.dll.aux
pool: 0xffff94895f93d160 | file object: 0xffff94895f93d1e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f93d2f0 | file object: 0xffff94895f93d370 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f93d480 | file object: 0xffff94895f93d500 | offsetby: 0x80
\$Directory
pool: 0xffff94895f93d610 | file object: 0xffff94895f93d690 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\make\package.nls.json
pool: 0xffff94895f93d7a0 | file object: 0xffff94895f93d820 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\merge-conflict\package.nls.json
pool: 0xffff94895f93d930 | file object: 0xffff94895f93d9b0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\php\package.nls.json
pool: 0xffff94895f93dac0 | file object: 0xffff94895f93db40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Microsoft.VisualStudio.Utilities.Internal.dll
pool: 0xffff94895f93dc50 | file object: 0xffff94895f93dcd0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\php-language-features\package.nls.json
pool: 0xffff94895f93dde0 | file object: 0xffff94895f93de60 | offsetby: 0x80
\Windows\System32\Query.dll
pool: 0xffff94895f93e100 | file object: 0xffff94895f93e180 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_256.dbezureRM.ServerManagement.ps
pool: 0xffff94895f93e290 | file object: 0xffff94895f93e310 | offsetby: 0x80
\Device\HarddiskVolume2\Program Files\WindowsPowerShell\Modules\AzureRM.ApplicationInsights\AzureR
pool: 0xffff94895f93e420 | file object: 0xffff94895f93e4a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\perl\package.nls.json
pool: 0xffff94895f93e5b0 | file object: 0xffff94895f93e630 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Microsoft.VisualStudio.Telemetry.dll
pool: 0xffff94895f93e740 | file object: 0xffff94895f93e7c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\ms-vscode.node-debug\package.nls.json
pool: 0xffff94895f93e8d0 | file object: 0xffff94895f93e950 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System\08f69c55e9284eaab92075159503c897\System.ni.dll
pool: 0xffff94895f93ea60 | file object: 0xffff94895f93eae0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\objective-c\package.nls.json
pool: 0xffff94895f93ebf0 | file object: 0xffff94895f93ec70 | offsetby: 0x80
\Windows\System32\Windows.Management.Workplace.dll
pool: 0xffff94895f93ed80 | file object: 0xffff94895f93ee00 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.SkypeApp_kzf8qxf38zg5c\LocalState\DiagOutputDir\SkypeApp0.txt
pool: 0xffff94895f93f0a0 | file object: 0xffff94895f93f120 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\c9243edb149eb78c5309c103df69d594\System.Core.ni.dll
pool: 0xffff94895f93f230 | file object: 0xffff94895f93f2b0 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94895f93f3c0 | file object: 0xffff94895f93f440 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\markdown-basics\package.nls.json
pool: 0xffff94895f93f550 | file object: 0xffff94895f93f5d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\json\package.nls.json
pool: 0xffff94895f93f6e0 | file object: 0xffff94895f93f760 | offsetby: 0x80
\Windows\System32\tzres.dll
pool: 0xffff94895f93f870 | file object: 0xffff94895f93f8f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\markdown-language-features\package.nls.json
pool: 0xffff94895f93fa00 | file object: 0xffff94895f93fa80 | offsetby: 0x80
pool: 0xffff94895f93fb90 | file object: 0xffff94895f93fc10 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.Vf87aed9a#\c401765b4bc494553c8f4f9164de67bb\Microsoft.VisualStudio.Telemetry.ni.dll.aux
pool: 0xffff94895f93fd20 | file object: 0xffff94895f93fda0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f940040 | file object: 0xffff94895f9400c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\npm\package.nls.json
pool: 0xffff94895f9401d0 | file object: 0xffff94895f940250 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System\08f69c55e9284eaab92075159503c897\System.ni.dll.aux
pool: 0xffff94895f940360 | file object: 0xffff94895f9403e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.ContactServiceProtocol.dll
pool: 0xffff94895f9404f0 | file object: 0xffff94895f940570 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\36d0bbf456e19171162fb117487d13e6\System.Configuration.ni.dll.aux
pool: 0xffff94895f940680 | file object: 0xffff94895f940700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f940810 | file object: 0xffff94895f940890 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\SMDiagnostics\v4.0_4.0.0.0__b77a5c561934e089\SMDiagnostics.dll
pool: 0xffff94895f9409a0 | file object: 0xffff94895f940a20 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.SkypeApp_kzf8qxf38zg5c\Settings\settings.dat
pool: 0xffff94895f940b30 | file object: 0xffff94895f940bb0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel.Internals\v4.0_4.0.0.0__31bf3856ad364e35\System.ServiceModel.Internals.dll
pool: 0xffff94895f940cc0 | file object: 0xffff94895f940d40 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.SkypeApp_kzf8qxf38zg5c\Settings\settings.dat.LOG2
pool: 0xffff94895f940e50 | file object: 0xffff94895f940ed0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.LanguageServices.16.3.dll
pool: 0xffff94895f941170 | file object: 0xffff94895f9411f0 | offsetby: 0x80
\Windows\System32\en-US\Windows.Security.Authentication.Web.Core.dll.mui
pool: 0xffff94895f941300 | file object: 0xffff94895f941380 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94895f941490 | file object: 0xffff94895f941510 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Microsoft.VisualStudio.RemoteControl.dll
pool: 0xffff94895f941620 | file object: 0xffff94895f9416a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\VSIXAutoUpdate.exe
pool: 0xffff94895f9417b0 | file object: 0xffff94895f941830 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f941940 | file object: 0xffff94895f9419c0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.SkypeApp_kzf8qxf38zg5c\Settings\settings.dat.LOG1
pool: 0xffff94895f941ad0 | file object: 0xffff94895f941b50 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\2ab9225a1e821c43e98be3dd12d21ba7\System.Runtime.Serialization.ni.dll.aux
pool: 0xffff94895f941c60 | file object: 0xffff94895f941ce0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f941df0 | file object: 0xffff94895f941e70 | offsetby: 0x80
\$Directory
pool: 0xffff94895f942110 | file object: 0xffff94895f942190 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\xml\package.nls.json
pool: 0xffff94895f9422a0 | file object: 0xffff94895f942320 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\e2507c6929371fa69b5e96a6e097ee69\System.Xml.ni.dll.aux
pool: 0xffff94895f942430 | file object: 0xffff94895f9424b0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\logs\Personal\SyncEngine-2020-06-02.0818.5216.1.odlgz
pool: 0xffff94895f9425c0 | file object: 0xffff94895f942640 | offsetby: 0x80
\$Directory
pool: 0xffff94895f942750 | file object: 0xffff94895f9427d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\python\package.nls.json
pool: 0xffff94895f9428e0 | file object: 0xffff94895f942960 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\36d0bbf456e19171162fb117487d13e6\System.Configuration.ni.dll
pool: 0xffff94895f942a70 | file object: 0xffff94895f942af0 | offsetby: 0x80
\Users\User\Videos㠸悭钉￿ꋸ藫舎￿쭐彟
pool: 0xffff94895f942c00 | file object: 0xffff94895f942c80 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\rust\package.nls.json
pool: 0xffff94895f942d90 | file object: 0xffff94895f942e10 | offsetby: 0x80
\Windows\System32\taskschd.dll
pool: 0xffff94895f9430b0 | file object: 0xffff94895f943130 | offsetby: 0x80
\Windows\System32\sspicli.dll
pool: 0xffff94895f943240 | file object: 0xffff94895f9432c0 | offsetby: 0x80
ꯗ盌肨讲舎￿&ほ䈰㉂㘷ⴳ䄶㜷ㄭ䐱ⴰ㕁㔳〭䌰㐰䑆䐷
pool: 0xffff94895f9433d0 | file object: 0xffff94895f943450 | offsetby: 0x80
\$Directory
pool: 0xffff94895f943560 | file object: 0xffff94895f9435e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f9436f0 | file object: 0xffff94895f943770 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f943880 | file object: 0xffff94895f943900 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f943a10 | file object: 0xffff94895f943a90 | offsetby: 0x80
\Windows\WaaS\services\14a3f9e824793931d34f7f786a538bbc9ef1f0d6.xml
pool: 0xffff94895f943ba0 | file object: 0xffff94895f943c20 | offsetby: 0x80
\Windows\System32\usocoreps.dll
pool: 0xffff94895f943d30 | file object: 0xffff94895f943db0 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff94895f944050 | file object: 0xffff94895f9440d0 | offsetby: 0x80
\Windows\WaaS\services\ceb497ee0184aaa4681d2fb2ef242a5b8551eea8.xml
pool: 0xffff94895f9441e0 | file object: 0xffff94895f944260 | offsetby: 0x80
\$Directory
pool: 0xffff94895f944370 | file object: 0xffff94895f9443f0 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-DF3D779F.pf
pool: 0xffff94895f944500 | file object: 0xffff94895f944580 | offsetby: 0x80
\$Directory
pool: 0xffff94895f944690 | file object: 0xffff94895f944710 | offsetby: 0x80
\Windows\WaaS\services\43ee7b2a373632f9a701249fd96d0edec2ff1279.xml
pool: 0xffff94895f944820 | file object: 0xffff94895f9448a0 | offsetby: 0x80
\Windows\System32\sppc.dll
pool: 0xffff94895f9449b0 | file object: 0xffff94895f944a30 | offsetby: 0x80
\$Directory
pool: 0xffff94895f944b40 | file object: 0xffff94895f944bc0 | offsetby: 0x80
\Windows\System32\en-US\sppc.dll.mui
pool: 0xffff94895f944cd0 | file object: 0xffff94895f944d50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f944e60 | file object: 0xffff94895f944ee0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f945180 | file object: 0xffff94895f945200 | offsetby: 0x80
\Windows\servicing\en-US\TrustedInstaller.exe.mui
pool: 0xffff94895f945310 | file object: 0xffff94895f945390 | offsetby: 0x80
\Windows\WaaS\services\2213703c9c64cc61ba900531652e23c84728d2a2.xml
pool: 0xffff94895f9454a0 | file object: 0xffff94895f945520 | offsetby: 0x80
\Windows\servicing\TrustedInstaller.exe
pool: 0xffff94895f945630 | file object: 0xffff94895f9456b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f9457c0 | file object: 0xffff94895f945840 | offsetby: 0x80
\Windows\System32\en-US\qmgr.dll.mui
pool: 0xffff94895f945950 | file object: 0xffff94895f9459d0 | offsetby: 0x80
\Windows\WaaS\services\20bbcadaff3e0543ef358ba4dd8b74bfe8e747c8.xml
pool: 0xffff94895f945ae0 | file object: 0xffff94895f945b60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f945c70 | file object: 0xffff94895f945cf0 | offsetby: 0x80
\Windows\System32\en-US\urlmon.dll.mui
pool: 0xffff94895f945e00 | file object: 0xffff94895f945e80 | offsetby: 0x80
\Windows\System32\en-US\usosvc.dll.mui
pool: 0xffff94895f946120 | file object: 0xffff94895f9461a0 | offsetby: 0x80
\Windows\System32\usosvc.dll
pool: 0xffff94895f9462b0 | file object: 0xffff94895f946330 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f946440 | file object: 0xffff94895f9464c0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895f9465d0 | file object: 0xffff94895f946650 | offsetby: 0x80
\Windows\System32
pool: 0xffff94895f946760 | file object: 0xffff94895f9467e0 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff94895f9468f0 | file object: 0xffff94895f946970 | offsetby: 0x80
\Windows\System32\wuapi.dll
pool: 0xffff94895f946a80 | file object: 0xffff94895f946b00 | offsetby: 0x80
\Windows\System32\AuthBroker.dll
pool: 0xffff94895f946c10 | file object: 0xffff94895f946c90 | offsetby: 0x80
\Windows\System32\usoapi.dll
pool: 0xffff94895f946da0 | file object: 0xffff94895f946e20 | offsetby: 0x80
\Windows\System32\usocoreworker.exe
pool: 0xffff94895f9470c0 | file object: 0xffff94895f947140 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{0F1B9514-C41D-46DC-9951-EEC87BC9F25A}.catalogItem
pool: 0xffff94895f947250 | file object: 0xffff94895f9472d0 | offsetby: 0x80
\Windows\System32\ConhostV1.dll
pool: 0xffff94895f9473e0 | file object: 0xffff94895f947460 | offsetby: 0x80
\Windows\System32\CertPolEng.dll
pool: 0xffff94895f947570 | file object: 0xffff94895f9475f0 | offsetby: 0x80
\ProgramData\USOShared\Logs\System\UpdateSessionOrchestration.b39bc11e-a3ef-408d-bd36-e40e8bdca0ea.1.etl
pool: 0xffff94895f947700 | file object: 0xffff94895f947780 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{2A270405-32BA-4BB0-B404-0B471BA5A020}.catalogItem
pool: 0xffff94895f947890 | file object: 0xffff94895f947910 | offsetby: 0x80
\Windows\SoftwareDistribution\Download\a75e1456b7eea7fc8bbfe9d9b17072e2\Metadata\wcp.dll
pool: 0xffff94895f947a20 | file object: 0xffff94895f947aa0 | offsetby: 0x80
\Windows\System32\defragsvc.dll
pool: 0xffff94895f947bb0 | file object: 0xffff94895f947c30 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{4D1C28C2-A9F2-4197-BDEF-BF069CD557DC}.catalogItem
pool: 0xffff94895f947d40 | file object: 0xffff94895f947dc0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A
pool: 0xffff94895f948060 | file object: 0xffff94895f9480e0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{6E9228BC-B29B-4E01-8492-39C10FEDCE9C}.catalogItem
pool: 0xffff94895f9481f0 | file object: 0xffff94895f948270 | offsetby: 0x80
\Windows\System32\usocoreworker.exe
pool: 0xffff94895f948380 | file object: 0xffff94895f948400 | offsetby: 0x80
\Windows\System32\usoapi.dll
pool: 0xffff94895f948510 | file object: 0xffff94895f948590 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f9486a0 | file object: 0xffff94895f948720 | offsetby: 0x80
\Windows\System32\COLORCNV.DLL
pool: 0xffff94895f948830 | file object: 0xffff94895f9488b0 | offsetby: 0x80
\Windows\Prefetch\USOCOREWORKER.EXE-21FE932A.pf
pool: 0xffff94895f9489c0 | file object: 0xffff94895f948a40 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{222374BC-F014-49FF-B36B-2CABAB26167F}.catalogItem
pool: 0xffff94895f948b50 | file object: 0xffff94895f948bd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f948ce0 | file object: 0xffff94895f948d60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f948e70 | file object: 0xffff94895f948ef0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f949000 | file object: 0xffff94895f949080 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.710_none_5f52d84058d0677f\ReserveManager.dll
pool: 0xffff94895f949190 | file object: 0xffff94895f949210 | offsetby: 0x80
\Windows\System32\usocoreps.dll
pool: 0xffff94895f949320 | file object: 0xffff94895f9493a0 | offsetby: 0x80
\Windows\System32\dmdskmgr.dll
pool: 0xffff94895f9494b0 | file object: 0xffff94895f949530 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff94895f949640 | file object: 0xffff94895f9496c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f9497d0 | file object: 0xffff94895f949850 | offsetby: 0x80
\Windows\System32\SSShim.dll
pool: 0xffff94895f949960 | file object: 0xffff94895f9499e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f949af0 | file object: 0xffff94895f949b70 | offsetby: 0x80
\Windows\System32\upshared.dll
pool: 0xffff94895f949c80 | file object: 0xffff94895f949d00 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{6FDCDC9A-13CE-4480-B7F5-92F7A05EA5E2}.catalogItem
pool: 0xffff94895f949e10 | file object: 0xffff94895f949e90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f94a130 | file object: 0xffff94895f94a1b0 | offsetby: 0x80
\Windows\System32\AppXDeploymentExtensions.onecore.dll
pool: 0xffff94895f94a2c0 | file object: 0xffff94895f94a340 | offsetby: 0x80
\Windows\ShellExperiences\Windows.UI.ActionCenter.dll
pool: 0xffff94895f94a450 | file object: 0xffff94895f94a4d0 | offsetby: 0x80
\Windows\System32\AppXDeploymentExtensions.desktop.dll
pool: 0xffff94895f94a5e0 | file object: 0xffff94895f94a660 | offsetby: 0x80
\Windows\ShellExperiences\NetworkUX.dll
pool: 0xffff94895f94a770 | file object: 0xffff94895f94a7f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94a900 | file object: 0xffff94895f94a980 | offsetby: 0x80
pool: 0xffff94895f94aa90 | file object: 0xffff94895f94ab10 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94ac20 | file object: 0xffff94895f94aca0 | offsetby: 0x80
\Windows\ShellExperiences\BatteryFlyoutExperience.dll
pool: 0xffff94895f94adb0 | file object: 0xffff94895f94ae30 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94b0d0 | file object: 0xffff94895f94b150 | offsetby: 0x80
\Program Files\Common Files\microsoft shared\ink\InkObj.dll
pool: 0xffff94895f94b260 | file object: 0xffff94895f94b2e0 | offsetby: 0x80
\Program Files\Common Files\microsoft shared\ink\tipskins.dll
pool: 0xffff94895f94b3f0 | file object: 0xffff94895f94b470 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94b580 | file object: 0xffff94895f94b600 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94b710 | file object: 0xffff94895f94b790 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94b8a0 | file object: 0xffff94895f94b920 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed
pool: 0xffff94895f94ba30 | file object: 0xffff94895f94bab0 | offsetby: 0x80
\Windows\ShellExperiences\QuickActions.dll
pool: 0xffff94895f94bbc0 | file object: 0xffff94895f94bc40 | offsetby: 0x80
\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
pool: 0xffff94895f94bd50 | file object: 0xffff94895f94bdd0 | offsetby: 0x80
\Program Files\Common Files\microsoft shared\ink\tabskb.dll
pool: 0xffff94895f94c070 | file object: 0xffff94895f94c0f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Newtonsoft.Json.dll
pool: 0xffff94895f94c200 | file object: 0xffff94895f94c280 | offsetby: 0x80
\Windows\System32\AdaptiveCards.dll
pool: 0xffff94895f94c390 | file object: 0xffff94895f94c410 | offsetby: 0x80
\Windows\System32\certCredProvider.dll
pool: 0xffff94895f94c520 | file object: 0xffff94895f94c5a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94c6b0 | file object: 0xffff94895f94c730 | offsetby: 0x80
\Windows\ShellExperiences\ClockFlyoutExperience.dll
pool: 0xffff94895f94c840 | file object: 0xffff94895f94c8c0 | offsetby: 0x80
\Windows\System32\dmwappushsvc.dll
pool: 0xffff94895f94c9d0 | file object: 0xffff94895f94ca50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f94cb60 | file object: 0xffff94895f94cbe0 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha\target\release\print_pdb.exeon7\IDE\VC\SystemResources\vcproject.dll.munx44
pool: 0xffff94895f94ccf0 | file object: 0xffff94895f94cd70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f94d010 | file object: 0xffff94895f94d090 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f94d1a0 | file object: 0xffff94895f94d220 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f94d330 | file object: 0xffff94895f94d3b0 | offsetby: 0x80
\Windows\System32\jscript.dll
pool: 0xffff94895f94d4c0 | file object: 0xffff94895f94d540 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94d650 | file object: 0xffff94895f94d6d0 | offsetby: 0x80
\Windows\System32\UIRibbonRes.dll
pool: 0xffff94895f94d7e0 | file object: 0xffff94895f94d860 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f94d970 | file object: 0xffff94895f94d9f0 | offsetby: 0x80
\Windows\System32\fdPnp.dll
pool: 0xffff94895f94db00 | file object: 0xffff94895f94db80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f94dc90 | file object: 0xffff94895f94dd10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f94de20 | file object: 0xffff94895f94dea0 | offsetby: 0x80
\Windows\System32\keepaliveprovider.dll
pool: 0xffff94895f94e140 | file object: 0xffff94895f94e1c0 | offsetby: 0x80
\Windows\System32\hgcpl.dll
pool: 0xffff94895f94e2d0 | file object: 0xffff94895f94e350 | offsetby: 0x80
\Windows\System32\mfc42.dll
pool: 0xffff94895f94e460 | file object: 0xffff94895f94e4e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94e5f0 | file object: 0xffff94895f94e670 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94e780 | file object: 0xffff94895f94e800 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.18362.752_none_17aba8d26da530da
pool: 0xffff94895f94e910 | file object: 0xffff94895f94e990 | offsetby: 0x80
\Windows\System32\mfsvr.dll
pool: 0xffff94895f94eaa0 | file object: 0xffff94895f94eb20 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94ec30 | file object: 0xffff94895f94ecb0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94edc0 | file object: 0xffff94895f94ee40 | offsetby: 0x80
\Windows\System32\mfc42u.dll
pool: 0xffff94895f94f0e0 | file object: 0xffff94895f94f160 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94f270 | file object: 0xffff94895f94f2f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94f400 | file object: 0xffff94895f94f480 | offsetby: 0x80
짐誾舎￿ꬓ逘舎￿僀怌钉￿Შ蠭舎￿믈蝨舎￿竰
pool: 0xffff94895f94f590 | file object: 0xffff94895f94f610 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94f720 | file object: 0xffff94895f94f7a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f94f8b0 | file object: 0xffff94895f94f930 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94fa40 | file object: 0xffff94895f94fac0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94fbd0 | file object: 0xffff94895f94fc50 | offsetby: 0x80
\$Directory
pool: 0xffff94895f94fd60 | file object: 0xffff94895f94fde0 | offsetby: 0x80
\Windows\System32\imgutil.dll
pool: 0xffff94895f950080 | file object: 0xffff94895f950100 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f950210 | file object: 0xffff94895f950290 | offsetby: 0x80
\Windows\System32\ifsutil.dll
pool: 0xffff94895f9503a0 | file object: 0xffff94895f950420 | offsetby: 0x80
\Windows\System32\msoert2.dll
pool: 0xffff94895f950530 | file object: 0xffff94895f9505b0 | offsetby: 0x80
\Windows\System32\MP3DMOD.DLL
pool: 0xffff94895f9506c0 | file object: 0xffff94895f950740 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f950850 | file object: 0xffff94895f9508d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f9509e0 | file object: 0xffff94895f950a60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f950b70 | file object: 0xffff94895f950bf0 | offsetby: 0x80
\Windows\System32\mycomput.dll
pool: 0xffff94895f950d00 | file object: 0xffff94895f950d80 | offsetby: 0x80
\Windows\System32\licmgr10.dll
pool: 0xffff94895f951020 | file object: 0xffff94895f9510a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Shell.Interop.10.0.dll
pool: 0xffff94895f9511b0 | file object: 0xffff94895f951230 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f951340 | file object: 0xffff94895f9513c0 | offsetby: 0x80
\Windows\System32\jscript9.dll
pool: 0xffff94895f9514d0 | file object: 0xffff94895f951550 | offsetby: 0x80
\Windows\System32\netcfgx.dll
pool: 0xffff94895f951660 | file object: 0xffff94895f9516e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f9517f0 | file object: 0xffff94895f951870 | offsetby: 0x80
\Windows\System32\msfeeds.dll
pool: 0xffff94895f951980 | file object: 0xffff94895f951a00 | offsetby: 0x80
\Windows\System32\MP4SDECD.DLL
pool: 0xffff94895f951b10 | file object: 0xffff94895f951b90 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{8DE8F3B2-1543-40FE-8489-D1D8C5314B87}.catalogItem
pool: 0xffff94895f951ca0 | file object: 0xffff94895f951d20 | offsetby: 0x80
\Windows\System32\filemgmt.dll
pool: 0xffff94895f951e30 | file object: 0xffff94895f951eb0 | offsetby: 0x80
\Windows\System32\imapi2fs.dll
pool: 0xffff94895f952150 | file object: 0xffff94895f9521d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f9522e0 | file object: 0xffff94895f952360 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f952470 | file object: 0xffff94895f9524f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f952600 | file object: 0xffff94895f952680 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f952790 | file object: 0xffff94895f952810 | offsetby: 0x80
\Windows\System32\inetcomm.dll
pool: 0xffff94895f952920 | file object: 0xffff94895f9529a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f952ab0 | file object: 0xffff94895f952b30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f952c40 | file object: 0xffff94895f952cc0 | offsetby: 0x80
\Windows\System32\hnetcfg.dll
pool: 0xffff94895f952dd0 | file object: 0xffff94895f952e50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f9530f0 | file object: 0xffff94895f953170 | offsetby: 0x80
\Windows\System32\mfreadwrite.dll
pool: 0xffff94895f953280 | file object: 0xffff94895f953300 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.Da9845d5e#\57b7f99cdb33f369ee47a23d133ac558\Microsoft.Diagnostics.Tracing.EventSource.ni.dll.aux
pool: 0xffff94895f953410 | file object: 0xffff94895f953490 | offsetby: 0x80
\Windows\System32\scrrun.dll
pool: 0xffff94895f9535a0 | file object: 0xffff94895f953620 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f953730 | file object: 0xffff94895f9537b0 | offsetby: 0x80
\Windows\System32\seclogon.dll
pool: 0xffff94895f9538c0 | file object: 0xffff94895f953940 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f953a50 | file object: 0xffff94895f953ad0 | offsetby: 0x80
\Windows\System32\NetSetupShim.dll
pool: 0xffff94895f953be0 | file object: 0xffff94895f953c60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f953d70 | file object: 0xffff94895f953df0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f954090 | file object: 0xffff94895f954110 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f954220 | file object: 0xffff94895f9542a0 | offsetby: 0x80
\Windows\System32\MSAudDecMFT.dll
pool: 0xffff94895f9543b0 | file object: 0xffff94895f954430 | offsetby: 0x80
\Windows\System32\mfmp4srcsnk.dll
pool: 0xffff94895f954540 | file object: 0xffff94895f9545c0 | offsetby: 0x80
\Windows\System32\LockAppBroker.dll
pool: 0xffff94895f9546d0 | file object: 0xffff94895f954750 | offsetby: 0x80
\Windows\System32\networkexplorer.dll
pool: 0xffff94895f954860 | file object: 0xffff94895f9548e0 | offsetby: 0x80
\Windows\System32\RMapi.dll
pool: 0xffff94895f9549f0 | file object: 0xffff94895f954a70 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{88F467C4-30C1-4690-AE6E-EC3A4B429143}.catalogItem
pool: 0xffff94895f954b80 | file object: 0xffff94895f954c00 | offsetby: 0x80
\Windows\System32\MFMediaEngine.dll
pool: 0xffff94895f954d10 | file object: 0xffff94895f954d90 | offsetby: 0x80
\Windows\System32\MFCaptureEngine.dll
pool: 0xffff94895f955030 | file object: 0xffff94895f9550b0 | offsetby: 0x80
\Windows\System32\VAN.dll
pool: 0xffff94895f9551c0 | file object: 0xffff94895f955240 | offsetby: 0x80
\Windows\System32\ulib.dll
pool: 0xffff94895f955350 | file object: 0xffff94895f9553d0 | offsetby: 0x80
\Windows\System32\scrobj.dll
pool: 0xffff94895f9554e0 | file object: 0xffff94895f955560 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{A869E114-0B89-4FF6-A4B9-22E67F654536}.catalogItem
pool: 0xffff94895f955670 | file object: 0xffff94895f9556f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f955800 | file object: 0xffff94895f955880 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
pool: 0xffff94895f955990 | file object: 0xffff94895f955a10 | offsetby: 0x80
\Windows\System32\LockController.dll
pool: 0xffff94895f955b20 | file object: 0xffff94895f955ba0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f955cb0 | file object: 0xffff94895f955d30 | offsetby: 0x80
\Windows\System32\prntvpt.dll
pool: 0xffff94895f955e40 | file object: 0xffff94895f955ec0 | offsetby: 0x80
\Windows\System32\sxshared.dll
pool: 0xffff94895f956160 | file object: 0xffff94895f9561e0 | offsetby: 0x80
\Windows\SysWOW64\duser.dll
pool: 0xffff94895f9562f0 | file object: 0xffff94895f956370 | offsetby: 0x80
\Windows\System32\WebRuntimeManager.dll
pool: 0xffff94895f956480 | file object: 0xffff94895f956500 | offsetby: 0x80
\Windows\System32\Windows.Graphics.Printing.dll
pool: 0xffff94895f956610 | file object: 0xffff94895f956690 | offsetby: 0x80
\Windows\System32\QuickActionsDataModel.dll
pool: 0xffff94895f9567a0 | file object: 0xffff94895f956820 | offsetby: 0x80
\Windows\System32\SearchFolder.dll
pool: 0xffff94895f956930 | file object: 0xffff94895f9569b0 | offsetby: 0x80
\Windows\System32\SystemSettingsBroker.exe
pool: 0xffff94895f956ac0 | file object: 0xffff94895f956b40 | offsetby: 0x80
\Windows\System32\Windows.ApplicationModel.LockScreen.dll
pool: 0xffff94895f956c50 | file object: 0xffff94895f956cd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f956de0 | file object: 0xffff94895f956e60 | offsetby: 0x80
\Windows\SysWOW64\atl.dll
pool: 0xffff94895f957100 | file object: 0xffff94895f957180 | offsetby: 0x80
\Windows\System32\PortableDeviceClassExtension.dll
pool: 0xffff94895f957290 | file object: 0xffff94895f957310 | offsetby: 0x80
\Windows\System32\WUDFHost.exe
pool: 0xffff94895f957420 | file object: 0xffff94895f9574a0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{D5850D04-2AD8-4416-9BF6-507888ADD7CF}.catalogItem
pool: 0xffff94895f9575b0 | file object: 0xffff94895f957630 | offsetby: 0x80
\Windows\System32\unenrollhook.dll
pool: 0xffff94895f957740 | file object: 0xffff94895f9577c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f9578d0 | file object: 0xffff94895f957950 | offsetby: 0x80
\Windows\SysWOW64\avrt.dll
pool: 0xffff94895f957a60 | file object: 0xffff94895f957ae0 | offsetby: 0x80
\Windows\System32\Windows.Media.Audio.dll
pool: 0xffff94895f957bf0 | file object: 0xffff94895f957c70 | offsetby: 0x80
\Windows\System32\wbem\NCProv.dll
pool: 0xffff94895f957d80 | file object: 0xffff94895f957e00 | offsetby: 0x80
\Windows\System32\PlayToManager.dll
pool: 0xffff94895f9580a0 | file object: 0xffff94895f958120 | offsetby: 0x80
\$Directory
pool: 0xffff94895f958230 | file object: 0xffff94895f9582b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f9583c0 | file object: 0xffff94895f958440 | offsetby: 0x80
\Windows\System32\VaultRoaming.dll
pool: 0xffff94895f958550 | file object: 0xffff94895f9585d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f9586e0 | file object: 0xffff94895f958760 | offsetby: 0x80
\Windows\System32\Windows.Media.MediaControl.dll
pool: 0xffff94895f958870 | file object: 0xffff94895f9588f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895f958a00 | file object: 0xffff94895f958a80 | offsetby: 0x80
\Windows\System32\wbem\wbemdisp.dll
pool: 0xffff94895f958b90 | file object: 0xffff94895f958c10 | offsetby: 0x80
\Windows\System32\wercplsupport.dll
pool: 0xffff94895f958d20 | file object: 0xffff94895f958da0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{C32A9813-BBF0-4F77-A36B-33B07F7B95A3}.catalogItem
pool: 0xffff94895f959040 | file object: 0xffff94895f9590c0 | offsetby: 0x80
\Windows\System32\SensorsApi.dll
pool: 0xffff94895f9591d0 | file object: 0xffff94895f959250 | offsetby: 0x80
\Windows\System32\RoamingSecurity.dll
pool: 0xffff94895f959360 | file object: 0xffff94895f9593e0 | offsetby: 0x80
\Windows\SysWOW64\mfc42.dll
pool: 0xffff94895f9594f0 | file object: 0xffff94895f959570 | offsetby: 0x80
\$Directory
pool: 0xffff94895f959680 | file object: 0xffff94895f959700 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f959810 | file object: 0xffff94895f959890 | offsetby: 0x80
\Windows\System32\WMADMOE.DLL
pool: 0xffff94895f9599a0 | file object: 0xffff94895f959a20 | offsetby: 0x80
\Windows\SysWOW64\Chakra.dll
pool: 0xffff94895f959b30 | file object: 0xffff94895f959bb0 | offsetby: 0x80
\Windows\System32\WWAHost.exe
pool: 0xffff94895f959cc0 | file object: 0xffff94895f959d40 | offsetby: 0x80
\Windows\System32\WlanRadioManager.dll
pool: 0xffff94895f959e50 | file object: 0xffff94895f959ed0 | offsetby: 0x80
\Windows\System32\WindowsCodecsExt.dll
pool: 0xffff94895f95a170 | file object: 0xffff94895f95a1f0 | offsetby: 0x80
\Windows\System32\WwanRadioManager.dll
pool: 0xffff94895f95a300 | file object: 0xffff94895f95a380 | offsetby: 0x80
\Windows\SysWOW64\AudioSes.dll
pool: 0xffff94895f95a490 | file object: 0xffff94895f95a510 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f95a620 | file object: 0xffff94895f95a6a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f95a7b0 | file object: 0xffff94895f95a830 | offsetby: 0x80
\Windows\System32\wshom.ocx
pool: 0xffff94895f95a940 | file object: 0xffff94895f95a9c0 | offsetby: 0x80
\Windows\System32\XamlTileRender.dll
pool: 0xffff94895f95aad0 | file object: 0xffff94895f95ab50 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{F067CCA2-E6A3-406D-8DEB-73C1208DFC68}.catalogItem
pool: 0xffff94895f95ac60 | file object: 0xffff94895f95ace0 | offsetby: 0x80
\Windows\SysWOW64\actxprxy.dll
pool: 0xffff94895f95adf0 | file object: 0xffff94895f95ae70 | offsetby: 0x80
\Windows\System32\Windows.UI.Search.dll
pool: 0xffff94895f95b110 | file object: 0xffff94895f95b190 | offsetby: 0x80
\Windows\SystemApps\Microsoft.LockApp_cw5n1h2txyewy\LockApp.exe
pool: 0xffff94895f95b2a0 | file object: 0xffff94895f95b320 | offsetby: 0x80
\Windows\SysWOW64\mfsvr.dll
pool: 0xffff94895f95b430 | file object: 0xffff94895f95b4b0 | offsetby: 0x80
\Windows\System32\WwaApi.dll
pool: 0xffff94895f95b5c0 | file object: 0xffff94895f95b640 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f95b750 | file object: 0xffff94895f95b7d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f95b8e0 | file object: 0xffff94895f95b960 | offsetby: 0x80
\Windows\SysWOW64\mf.dll
pool: 0xffff94895f95ba70 | file object: 0xffff94895f95baf0 | offsetby: 0x80
\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\ShellExperienceHost.exe
pool: 0xffff94895f95bc00 | file object: 0xffff94895f95bc80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\XamlLanguageService\Microsoft.VisualStudio.DesignTools.XamlLanguageService.dll
pool: 0xffff94895f95bd90 | file object: 0xffff94895f95be10 | offsetby: 0x80
\Windows\SysWOW64\cabinet.dll
pool: 0xffff94895f95c0b0 | file object: 0xffff94895f95c130 | offsetby: 0x80
\Windows\System32\WUDFx.dll
pool: 0xffff94895f95c240 | file object: 0xffff94895f95c2c0 | offsetby: 0x80
\Windows\SysWOW64\BCP47Langs.dll
pool: 0xffff94895f95c3d0 | file object: 0xffff94895f95c450 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaSpeechux.dll
pool: 0xffff94895f95c560 | file object: 0xffff94895f95c5e0 | offsetby: 0x80
\Windows\SysWOW64\prnfldr.dll
pool: 0xffff94895f95c6f0 | file object: 0xffff94895f95c770 | offsetby: 0x80
\Windows\SysWOW64\devrtl.dll
pool: 0xffff94895f95c880 | file object: 0xffff94895f95c900 | offsetby: 0x80
\Windows\SysWOW64\cryptui.dll
pool: 0xffff94895f95ca10 | file object: 0xffff94895f95ca90 | offsetby: 0x80
\Windows\System32\newdev.dll
pool: 0xffff94895f95cba0 | file object: 0xffff94895f95cc20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\Microsoft.VisualStudio.Workspace.Extensions.VS.dll
pool: 0xffff94895f95cd30 | file object: 0xffff94895f95cdb0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f95d050 | file object: 0xffff94895f95d0d0 | offsetby: 0x80
\Windows\SysWOW64\msv1_0.dll
pool: 0xffff94895f95d1e0 | file object: 0xffff94895f95d260 | offsetby: 0x80
\Windows\SysWOW64\RTWorkQ.dll
pool: 0xffff94895f95d370 | file object: 0xffff94895f95d3f0 | offsetby: 0x80
\Windows\SysWOW64\MrmCoreR.dll
pool: 0xffff94895f95d500 | file object: 0xffff94895f95d580 | offsetby: 0x80
\Windows\SysWOW64\linkinfo.dll
pool: 0xffff94895f95d690 | file object: 0xffff94895f95d710 | offsetby: 0x80
\Windows\SysWOW64\devobj.dll
pool: 0xffff94895f95d820 | file object: 0xffff94895f95d8a0 | offsetby: 0x80
\Windows\SysWOW64\mfc42u.dll
pool: 0xffff94895f95d9b0 | file object: 0xffff94895f95da30 | offsetby: 0x80
\Windows\SysWOW64\msimg32.dll
pool: 0xffff94895f95db40 | file object: 0xffff94895f95dbc0 | offsetby: 0x80
\Windows\SysWOW64\esent.dll
pool: 0xffff94895f95dcd0 | file object: 0xffff94895f95dd50 | offsetby: 0x80
\Windows\SysWOW64\imgutil.dll
pool: 0xffff94895f95de60 | file object: 0xffff94895f95dee0 | offsetby: 0x80
\Windows\SysWOW64\ninput.dll
pool: 0xffff94895f95e180 | file object: 0xffff94895f95e200 | offsetby: 0x80
\Windows\SysWOW64\nlaapi.dll
pool: 0xffff94895f95e310 | file object: 0xffff94895f95e390 | offsetby: 0x80
\Windows\SysWOW64\tquery.dll
pool: 0xffff94895f95e4a0 | file object: 0xffff94895f95e520 | offsetby: 0x80
\Windows\SysWOW64\mfcore.dll
pool: 0xffff94895f95e630 | file object: 0xffff94895f95e6b0 | offsetby: 0x80
\Windows\SysWOW64\dinput8.dll
pool: 0xffff94895f95e7c0 | file object: 0xffff94895f95e840 | offsetby: 0x80
\Windows\SysWOW64\oleacc.dll
pool: 0xffff94895f95e950 | file object: 0xffff94895f95e9d0 | offsetby: 0x80
\Windows\SysWOW64\msfeeds.dll
pool: 0xffff94895f95eae0 | file object: 0xffff94895f95eb60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f95ec70 | file object: 0xffff94895f95ecf0 | offsetby: 0x80
\Windows\SysWOW64\mfplat.dll
pool: 0xffff94895f95ee00 | file object: 0xffff94895f95ee80 | offsetby: 0x80
\Windows\SysWOW64\dui70.dll
pool: 0xffff94895f95f120 | file object: 0xffff94895f95f1a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f95f2b0 | file object: 0xffff94895f95f330 | offsetby: 0x80
\Windows\SysWOW64\dsound.dll
pool: 0xffff94895f95f440 | file object: 0xffff94895f95f4c0 | offsetby: 0x80
\Windows\SysWOW64\MP3DMOD.DLL
pool: 0xffff94895f95f5d0 | file object: 0xffff94895f95f650 | offsetby: 0x80
\Windows\SysWOW64\wdigest.dll
pool: 0xffff94895f95f760 | file object: 0xffff94895f95f7e0 | offsetby: 0x80
\Windows\System32\SystemSettingsThresholdAdminFlowUI.dll
pool: 0xffff94895f95f8f0 | file object: 0xffff94895f95f970 | offsetby: 0x80
\Windows\SysWOW64\Windows.UI.dll
pool: 0xffff94895f95fa80 | file object: 0xffff94895f95fb00 | offsetby: 0x80
\$Directory
pool: 0xffff94895f95fc10 | file object: 0xffff94895f95fc90 | offsetby: 0x80
\Windows\System32\Windows.Media.Playback.BackgroundMediaPlayer.dll
pool: 0xffff94895f95fda0 | file object: 0xffff94895f95fe20 | offsetby: 0x80
\Windows\System32\SystemSettingsAdminFlows.exe
pool: 0xffff94895f9600c0 | file object: 0xffff94895f960140 | offsetby: 0x80
\Windows\System32\timesync.dll
pool: 0xffff94895f960250 | file object: 0xffff94895f9602d0 | offsetby: 0x80
\Windows\System32\en-US\newdev.dll.mui
pool: 0xffff94895f9603e0 | file object: 0xffff94895f960460 | offsetby: 0x80
\$Directory
pool: 0xffff94895f960570 | file object: 0xffff94895f9605f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f960700 | file object: 0xffff94895f960780 | offsetby: 0x80
\Windows\SysWOW64\PhotoMetadataHandler.dll
pool: 0xffff94895f960890 | file object: 0xffff94895f960910 | offsetby: 0x80
\Windows\SysWOW64\wbemcomn.dll
pool: 0xffff94895f960a20 | file object: 0xffff94895f960aa0 | offsetby: 0x80
\Windows\SysWOW64\Windows.Globalization.dll
pool: 0xffff94895f960bb0 | file object: 0xffff94895f960c30 | offsetby: 0x80
\Windows\SysWOW64\Windows.Media.dll
pool: 0xffff94895f960d40 | file object: 0xffff94895f960dc0 | offsetby: 0x80
\Windows\System32\en-US\SystemSettingsAdminFlows.exe.mui
pool: 0xffff94895f961060 | file object: 0xffff94895f9610e0 | offsetby: 0x80
\Windows\SysWOW64\Windows.Media.MediaControl.dll
pool: 0xffff94895f9611f0 | file object: 0xffff94895f961270 | offsetby: 0x80
\Windows\System32\Windows.Media.Playback.ProxyStub.dll
pool: 0xffff94895f961380 | file object: 0xffff94895f961400 | offsetby: 0x80
\Windows\SysWOW64\UIAnimation.dll
pool: 0xffff94895f961510 | file object: 0xffff94895f961590 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f9616a0 | file object: 0xffff94895f961720 | offsetby: 0x80
\Windows\SysWOW64\webservices.dll
pool: 0xffff94895f961830 | file object: 0xffff94895f9618b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f9619c0 | file object: 0xffff94895f961a40 | offsetby: 0x80
\Windows\SysWOW64\msftedit.dll
pool: 0xffff94895f961b50 | file object: 0xffff94895f961bd0 | offsetby: 0x80
\Windows\SysWOW64\Windows.Graphics.dll
pool: 0xffff94895f961ce0 | file object: 0xffff94895f961d60 | offsetby: 0x80
\Windows\System32\CloudExperienceHostCommon.dll
pool: 0xffff94895f961e70 | file object: 0xffff94895f961ef0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f962000 | file object: 0xffff94895f962080 | offsetby: 0x80
\Windows\SysWOW64\MMDevAPI.dll
pool: 0xffff94895f962190 | file object: 0xffff94895f962210 | offsetby: 0x80
\Windows\SysWOW64\drvstore.dll
pool: 0xffff94895f962320 | file object: 0xffff94895f9623a0 | offsetby: 0x80
\Windows\SysWOW64\mfmp4srcsnk.dll
pool: 0xffff94895f9624b0 | file object: 0xffff94895f962530 | offsetby: 0x80
\Windows\SysWOW64\Windows.Media.Audio.dll
pool: 0xffff94895f962640 | file object: 0xffff94895f9626c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f9627d0 | file object: 0xffff94895f962850 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f962960 | file object: 0xffff94895f9629e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f962af0 | file object: 0xffff94895f962b70 | offsetby: 0x80
\Windows\System32\drivers\flpydisk.sys
pool: 0xffff94895f962c80 | file object: 0xffff94895f962d00 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\MicrosoftEdgeFile.targetsize-16.png8bbw
pool: 0xffff94895f962e10 | file object: 0xffff94895f962e90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f963130 | file object: 0xffff94895f9631b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f9632c0 | file object: 0xffff94895f963340 | offsetby: 0x80
\Windows\System32\drivers\terminpt.sys
pool: 0xffff94895f963450 | file object: 0xffff94895f9634d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f9635e0 | file object: 0xffff94895f963660 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f963770 | file object: 0xffff94895f9637f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895f963900 | file object: 0xffff94895f963980 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895f963a90 | file object: 0xffff94895f963b10 | offsetby: 0x80
pool: 0xffff94895f963c20 | file object: 0xffff94895f963ca0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895f963db0 | file object: 0xffff94895f963e30 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\extension-94135e0f95d0e9155efc18eac7b47364.code
pool: 0xffff94895fe43160 | file object: 0xffff94895fe431e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe432f0 | file object: 0xffff94895fe43370 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vc38f2c7b#\f2e57c4255181688c6098454703e6ace\Microsoft.VisualStudio.Platform.WindowManagement.ni.dll.aux
pool: 0xffff94895fe43480 | file object: 0xffff94895fe43500 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe43610 | file object: 0xffff94895fe43690 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.XsdDesignerPackage.dll
pool: 0xffff94895fe437a0 | file object: 0xffff94895fe43820 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\1033\cmddefui.dll
pool: 0xffff94895fe43930 | file object: 0xffff94895fe439b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe43ac0 | file object: 0xffff94895fe43b40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Debugger.Parallel.Gpu.dll
pool: 0xffff94895fe43c50 | file object: 0xffff94895fe43cd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\en\Microsoft.VisualStudio.Debugger.Parallel.resources.dll
pool: 0xffff94895fe43de0 | file object: 0xffff94895fe43e60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\1033\cmddefui.dll
pool: 0xffff94895fe44100 | file object: 0xffff94895fe44180 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\1033\Microsoft.VisualStudio.ExportTemplateUI.dll
pool: 0xffff94895fe44290 | file object: 0xffff94895fe44310 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\1033\Microsoft.VisualStudioUI.dll
pool: 0xffff94895fe44420 | file object: 0xffff94895fe444a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe445b0 | file object: 0xffff94895fe44630 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\en\Microsoft.VisualStudio.Platform.WindowManagement.resources.dll
pool: 0xffff94895fe44740 | file object: 0xffff94895fe447c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Debugger.Parallel.dll
pool: 0xffff94895fe448d0 | file object: 0xffff94895fe44950 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Platform.WindowManagement.dll
pool: 0xffff94895fe44a60 | file object: 0xffff94895fe44ae0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe44bf0 | file object: 0xffff94895fe44c70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.XsdDesignerPackage.dll
pool: 0xffff94895fe44d80 | file object: 0xffff94895fe44e00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VS SCC\1033\VssProviderui.dll
pool: 0xffff94895fe450a0 | file object: 0xffff94895fe45120 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Dialogs.dll
pool: 0xffff94895fe45230 | file object: 0xffff94895fe452b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Xml\1033\Microsoft.XmlEditorUI.dll
pool: 0xffff94895fe453c0 | file object: 0xffff94895fe45440 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\1033\MetricsPackageUI.dll
pool: 0xffff94895fe45550 | file object: 0xffff94895fe455d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\en\Microsoft.VisualStudio.Shell.UI.Internal.resources.dll
pool: 0xffff94895fe456e0 | file object: 0xffff94895fe45760 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\en\Microsoft.VisualStudio.Debugger.Parallel.Gpu.resources.dll
pool: 0xffff94895fe45870 | file object: 0xffff94895fe458f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\1033\Microsoft.VisualStudio.QualityTools.TestCaseManagementUI.dll
pool: 0xffff94895fe45a00 | file object: 0xffff94895fe45a80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\1033\Microsoft.VisualStudio.QualityTools.Tips.TuipPackageUI.dll
pool: 0xffff94895fe45b90 | file object: 0xffff94895fe45c10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\Packages\1033\Htmledui.dll
pool: 0xffff94895fe45d20 | file object: 0xffff94895fe45da0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe46040 | file object: 0xffff94895fe460c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe461d0 | file object: 0xffff94895fe46250 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe46360 | file object: 0xffff94895fe463e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\System.Design.dll
pool: 0xffff94895fe464f0 | file object: 0xffff94895fe46570 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe46680 | file object: 0xffff94895fe46700 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.ComponentModelHost.Implementation.dll
pool: 0xffff94895fe46810 | file object: 0xffff94895fe46890 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\1033\vslogui.dll
pool: 0xffff94895fe469a0 | file object: 0xffff94895fe46a20 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-WER-PayloadHealth%4Operational.evtx
pool: 0xffff94895fe46b30 | file object: 0xffff94895fe46bb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\1033\TfsProviderUI.dll
pool: 0xffff94895fe46cc0 | file object: 0xffff94895fe46d40 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe46e50 | file object: 0xffff94895fe46ed0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\1033\Microsoft.VisualStudio.DesignUI.dll
pool: 0xffff94895fe47170 | file object: 0xffff94895fe471f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\1033\stanpackageui.dll
pool: 0xffff94895fe47300 | file object: 0xffff94895fe47380 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe47490 | file object: 0xffff94895fe47510 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe47620 | file object: 0xffff94895fe476a0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vc1ae403b#\3c03c57713a87b7021cb5aee7432562c\Microsoft.VisualStudio.Shell.ViewManager.ni.dll.aux
pool: 0xffff94895fe477b0 | file object: 0xffff94895fe47830 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Shell.ViewManager.dll
pool: 0xffff94895fe47940 | file object: 0xffff94895fe479c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe47ad0 | file object: 0xffff94895fe47b50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.ExtensionManager.dll
pool: 0xffff94895fe47c60 | file object: 0xffff94895fe47ce0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe47df0 | file object: 0xffff94895fe47e70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.ComponentModelHost.dll
pool: 0xffff94895fe48110 | file object: 0xffff94895fe48190 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\Tools\VDT\1033\vdt80ui.dll
pool: 0xffff94895fe482a0 | file object: 0xffff94895fe48320 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Shell.Interop.11.0.dll
pool: 0xffff94895fe48430 | file object: 0xffff94895fe484b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\envdte.dll
pool: 0xffff94895fe485c0 | file object: 0xffff94895fe48640 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\envdte80.dll
pool: 0xffff94895fe48750 | file object: 0xffff94895fe487d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.ExtensionEngine.dll
pool: 0xffff94895fe488e0 | file object: 0xffff94895fe48960 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcpackages\1033\reseditui.dll
pool: 0xffff94895fe48a70 | file object: 0xffff94895fe48af0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Xml\1033\Microsoft.XmlEditorUI.dll
pool: 0xffff94895fe48c00 | file object: 0xffff94895fe48c80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Team Tools\Performance Tools\1033\perfpkgui.dll
pool: 0xffff94895fe48d90 | file object: 0xffff94895fe48e10 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe490b0 | file object: 0xffff94895fe49130 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\1033\Microsoft.VSDesignerUI.dll
pool: 0xffff94895fe49240 | file object: 0xffff94895fe492c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe493d0 | file object: 0xffff94895fe49450 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vf617de63#\8f4c9f433e3eecc359b6151995ee9dfe\Microsoft.VisualStudio.ExtensionManager.Implementation.ni.dll.aux
pool: 0xffff94895fe49560 | file object: 0xffff94895fe495e0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\StreamJsonRpc\547ef36f7c7a5b0edc7988234f027229\StreamJsonRpc.ni.dll.aux
pool: 0xffff94895fe496f0 | file object: 0xffff94895fe49770 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ServiceHubClient\Microsoft.ServiceHub.Framework.dll
pool: 0xffff94895fe49880 | file object: 0xffff94895fe49900 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe49a10 | file object: 0xffff94895fe49a90 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe49ba0 | file object: 0xffff94895fe49c20 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe49d30 | file object: 0xffff94895fe49db0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Coll4a4f96a7#\b1f10bc2be176b1b7b7dc7c2a44486be\System.Collections.Immutable.ni.dll
pool: 0xffff94895fe4a050 | file object: 0xffff94895fe4a0d0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.IO.Pipelines\a1cff685148503af639967a1ac912011\System.IO.Pipelines.ni.dll.aux
pool: 0xffff94895fe4a1e0 | file object: 0xffff94895fe4a260 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\System.IO.Pipelines.dll
pool: 0xffff94895fe4a370 | file object: 0xffff94895fe4a3f0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\StreamJsonRpc\6706ed9a623647bc3f0e1f588629dace\StreamJsonRpc.ni.dll.aux
pool: 0xffff94895fe4a500 | file object: 0xffff94895fe4a580 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4a690 | file object: 0xffff94895fe4a710 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4a820 | file object: 0xffff94895fe4a8a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\StreamJsonRpc.2.x\StreamJsonRpc.dll
pool: 0xffff94895fe4a9b0 | file object: 0xffff94895fe4aa30 | offsetby: 0x80
\Windows\System32\w32time.dll
pool: 0xffff94895fe4ab40 | file object: 0xffff94895fe4abc0 | offsetby: 0x80
\Windows\System32\en-US\w32time.dll.mui
pool: 0xffff94895fe4acd0 | file object: 0xffff94895fe4ad50 | offsetby: 0x80
\Windows\System32\WaaSMedicSvc.dll
pool: 0xffff94895fe4ae60 | file object: 0xffff94895fe4aee0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Coll4a4f96a7#\b1f10bc2be176b1b7b7dc7c2a44486be\System.Collections.Immutable.ni.dll.aux
pool: 0xffff94895fe4b180 | file object: 0xffff94895fe4b200 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4b310 | file object: 0xffff94895fe4b390 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.RpcContracts.dll
pool: 0xffff94895fe4b4a0 | file object: 0xffff94895fe4b520 | offsetby: 0x80
\Windows\System32\winevt\Logs\microsoft-windows-diagnosis-scripted%4operational.evtx
pool: 0xffff94895fe4b630 | file object: 0xffff94895fe4b6b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\System.Collections.Immutable.dll
pool: 0xffff94895fe4b7c0 | file object: 0xffff94895fe4b840 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4b950 | file object: 0xffff94895fe4b9d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4bae0 | file object: 0xffff94895fe4bb60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\System.Threading.Tasks.Extensions.dll
pool: 0xffff94895fe4bc70 | file object: 0xffff94895fe4bcf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\U-SQL\USQLProject\NewProject.png
pool: 0xffff94895fe4be00 | file object: 0xffff94895fe4be80 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4c120 | file object: 0xffff94895fe4c1a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895fe4c2b0 | file object: 0xffff94895fe4c330 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.S0b6afd4f#\4d1686bd0446a4a28f88d066f5023c44\Microsoft.ServiceHub.Framework.ni.dll.aux
pool: 0xffff94895fe4c440 | file object: 0xffff94895fe4c4c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.ExtensionManager.Implementation.dll
pool: 0xffff94895fe4c5d0 | file object: 0xffff94895fe4c650 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.S0b6afd4f#\e089e372d4e480f3b3a573fee5c6d39e\Microsoft.ServiceHub.Framework.ni.dll.aux
pool: 0xffff94895fe4c760 | file object: 0xffff94895fe4c7e0 | offsetby: 0x80
\Windows\System32\drprov.dll
pool: 0xffff94895fe4c8f0 | file object: 0xffff94895fe4c970 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4ca80 | file object: 0xffff94895fe4cb00 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4cc10 | file object: 0xffff94895fe4cc90 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4cda0 | file object: 0xffff94895fe4ce20 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4d0c0 | file object: 0xffff94895fe4d140 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4d250 | file object: 0xffff94895fe4d2d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4d3e0 | file object: 0xffff94895fe4d460 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4d570 | file object: 0xffff94895fe4d5f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895fe4d700 | file object: 0xffff94895fe4d780 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4d890 | file object: 0xffff94895fe4d910 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Stream Analytics Edge\ASAEdgeEmptyProject\ASAEdgeEmptyProject.png
pool: 0xffff94895fe4da20 | file object: 0xffff94895fe4daa0 | offsetby: 0x80
\Windows\System32\p9np.dll
pool: 0xffff94895fe4dbb0 | file object: 0xffff94895fe4dc30 | offsetby: 0x80
\Windows\System32\davclnt.dll
pool: 0xffff94895fe4dd40 | file object: 0xffff94895fe4ddc0 | offsetby: 0x80
\Windows\System32\davhlpr.dll
pool: 0xffff94895fe4e060 | file object: 0xffff94895fe4e0e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4e1f0 | file object: 0xffff94895fe4e270 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4e380 | file object: 0xffff94895fe4e400 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4e510 | file object: 0xffff94895fe4e590 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4e6a0 | file object: 0xffff94895fe4e720 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4e830 | file object: 0xffff94895fe4e8b0 | offsetby: 0x80
\Windows\System32\en-US\mpr.dll.mui
pool: 0xffff94895fe4e9c0 | file object: 0xffff94895fe4ea40 | offsetby: 0x80
\Windows\System32\ntlanman.dll
pool: 0xffff94895fe4eb50 | file object: 0xffff94895fe4ebd0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4ece0 | file object: 0xffff94895fe4ed60 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-B25CCDFF.pf
pool: 0xffff94895fe4ee70 | file object: 0xffff94895fe4eef0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4f000 | file object: 0xffff94895fe4f080 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\ProjectTemplates\CSharp\Cloud\1033\Kube.ProjectTemplate\Kube.ProjectTemplate.ico
pool: 0xffff94895fe4f190 | file object: 0xffff94895fe4f210 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Setup.Common.dll
pool: 0xffff94895fe4f320 | file object: 0xffff94895fe4f3a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4f4b0 | file object: 0xffff94895fe4f530 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4f640 | file object: 0xffff94895fe4f6c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4f7d0 | file object: 0xffff94895fe4f850 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\gulp\package.json
pool: 0xffff94895fe4f960 | file object: 0xffff94895fe4f9e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4faf0 | file object: 0xffff94895fe4fb70 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe4fc80 | file object: 0xffff94895fe4fd00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ScopeStudio.VsExtension.EditorMarginExtension.SqlIP.dll
pool: 0xffff94895fe4fe10 | file object: 0xffff94895fe4fe90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.Internal.VisualStudio.UserNotifications.dll
pool: 0xffff94895fe50130 | file object: 0xffff94895fe501b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Newtonsoft.Json.12.0.0.2\Newtonsoft.Json.dll
pool: 0xffff94895fe502c0 | file object: 0xffff94895fe50340 | offsetby: 0x80
\Windows\SysWOW64\sfc.dll
pool: 0xffff94895fe50450 | file object: 0xffff94895fe504d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe505e0 | file object: 0xffff94895fe50660 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Stream Analytics Edge\ASAEdgeProject\ASAEdgeProject.png
pool: 0xffff94895fe50770 | file object: 0xffff94895fe507f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Stream Analytics\ASACustomDeserializerProject\ASACustomDeserializerProject.png
pool: 0xffff94895fe50900 | file object: 0xffff94895fe50980 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe50a90 | file object: 0xffff94895fe50b10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\U-SQL\USqlScriptUnitTestProject\NewProject.png
pool: 0xffff94895fe50c20 | file object: 0xffff94895fe50ca0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ClientDiagnostics\AppAnalysis\Microsoft.VisualStudio.AppAnalysis.dll
pool: 0xffff94895fe50db0 | file object: 0xffff94895fe50e30 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe510d0 | file object: 0xffff94895fe51150 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization.Primitives\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Serialization.Primitives.dll
pool: 0xffff94895fe51260 | file object: 0xffff94895fe512e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Setup.dll
pool: 0xffff94895fe513f0 | file object: 0xffff94895fe51470 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\Microsoft.VisualStudio.Workspace.Extensions.Implementation.VS.dll
pool: 0xffff94895fe51580 | file object: 0xffff94895fe51600 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe51710 | file object: 0xffff94895fe51790 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Stream Analytics\ASAEmptyProject\ASAEmptyProject.png
pool: 0xffff94895fe518a0 | file object: 0xffff94895fe51920 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\79575eb34b7c2af676d17dabc88187ca\Newtonsoft.Json.ni.dll
pool: 0xffff94895fe51a30 | file object: 0xffff94895fe51ab0 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-5AC380EC.pf
pool: 0xffff94895fe51bc0 | file object: 0xffff94895fe51c40 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe51d50 | file object: 0xffff94895fe51dd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.ExtensibilityHosting.dll
pool: 0xffff94895fe52070 | file object: 0xffff94895fe520f0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Core\v4.0_4.0.0.0__b77a5c561934e089\System.Core.dll
pool: 0xffff94895fe52200 | file object: 0xffff94895fe52280 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NavigateTo\Microsoft.VisualStudio.Language.NavigateTo.Interfaces.dll
pool: 0xffff94895fe52390 | file object: 0xffff94895fe52410 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll
pool: 0xffff94895fe52520 | file object: 0xffff94895fe525a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.VisualStudio.Common.dll
pool: 0xffff94895fe526b0 | file object: 0xffff94895fe52730 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe52840 | file object: 0xffff94895fe528c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe529d0 | file object: 0xffff94895fe52a50 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe52b60 | file object: 0xffff94895fe52be0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\KeyVault\Microsoft.VisualStudio.ConnectedServices.Azure.KeyVault.dll
pool: 0xffff94895fe52cf0 | file object: 0xffff94895fe52d70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\en\Microsoft.VisualStudio.Imaging.resources.dll
pool: 0xffff94895fe53010 | file object: 0xffff94895fe53090 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Performance Tools\Microsoft.VisualStudio.PerformanceTools.EditorIntegration.dll
pool: 0xffff94895fe531a0 | file object: 0xffff94895fe53220 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\CodeSense\Framework\Microsoft.VisualStudio.CodeSense.Roslyn.dll
pool: 0xffff94895fe53330 | file object: 0xffff94895fe533b0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Refl9556d6ea#\9943da38a32d2336e378c7214dd4e09a\System.Reflection.Metadata.ni.dll.aux
pool: 0xffff94895fe534c0 | file object: 0xffff94895fe53540 | offsetby: 0x80
\Windows\SysWOW64\sfc_os.dll
pool: 0xffff94895fe53650 | file object: 0xffff94895fe536d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe537e0 | file object: 0xffff94895fe53860 | offsetby: 0x80
\Windows\System32\en-US\wer.dll.mui
pool: 0xffff94895fe53970 | file object: 0xffff94895fe539f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe53b00 | file object: 0xffff94895fe53b80 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe53c90 | file object: 0xffff94895fe53d10 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Refl9556d6ea#\9943da38a32d2336e378c7214dd4e09a\System.Reflection.Metadata.ni.dll
pool: 0xffff94895fe53e20 | file object: 0xffff94895fe53ea0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Html.Editor.dll
pool: 0xffff94895fe54140 | file object: 0xffff94895fe541c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.Features.dll
pool: 0xffff94895fe542d0 | file object: 0xffff94895fe54350 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools Shared\Microsoft.WebTools.Shared.CPS.VS.dll
pool: 0xffff94895fe54460 | file object: 0xffff94895fe544e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TypeScript\Microsoft.CodeAnalysis.TypeScript.EditorFeatures.dll
pool: 0xffff94895fe545f0 | file object: 0xffff94895fe54670 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\Microsoft.VisualStudio.Editor.Razor.dll
pool: 0xffff94895fe54780 | file object: 0xffff94895fe54800 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe54910 | file object: 0xffff94895fe54990 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\TreeNavigation\GraphProvider\Microsoft.VisualStudio.Shell.TreeNavigation.GraphProvider.dll
pool: 0xffff94895fe54aa0 | file object: 0xffff94895fe54b20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\ParallelDebugger\Microsoft.VisualStudio.Debugger.Parallel.Extension.dll
pool: 0xffff94895fe54c30 | file object: 0xffff94895fe54cb0 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-80F4A784.pf
pool: 0xffff94895fe54dc0 | file object: 0xffff94895fe54e40 | offsetby: 0x80
\Windows\SysWOW64\wermgr.exe
pool: 0xffff94895fe550e0 | file object: 0xffff94895fe55160 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe55270 | file object: 0xffff94895fe552f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\System.Collections.Immutable.dll
pool: 0xffff94895fe55400 | file object: 0xffff94895fe55480 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\System.Reflection.Metadata.dll
pool: 0xffff94895fe55590 | file object: 0xffff94895fe55610 | offsetby: 0x80
\Windows\System32\wersvc.dll
pool: 0xffff94895fe55720 | file object: 0xffff94895fe557a0 | offsetby: 0x80
\Windows\System32\en-US\wersvc.dll.mui
pool: 0xffff94895fe558b0 | file object: 0xffff94895fe55930 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Stream Analytics\ASAUDFProject\ASAUDFProject.png
pool: 0xffff94895fe55a40 | file object: 0xffff94895fe55ac0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe55bd0 | file object: 0xffff94895fe55c50 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe55d60 | file object: 0xffff94895fe55de0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Deployment Project\Microsoft.VisualStudio.Azure.Deployment.dll
pool: 0xffff94895fe56080 | file object: 0xffff94895fe56100 | offsetby: 0x80
\Windows\System32\Faultrep.dll
pool: 0xffff94895fe56210 | file object: 0xffff94895fe56290 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.EditorFeatures.Text.dll
pool: 0xffff94895fe563a0 | file object: 0xffff94895fe56420 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Diagnostics.Common.dll
pool: 0xffff94895fe56530 | file object: 0xffff94895fe565b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe566c0 | file object: 0xffff94895fe56740 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Extensions.dll
pool: 0xffff94895fe56850 | file object: 0xffff94895fe568d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Shared.Editor.dll
pool: 0xffff94895fe569e0 | file object: 0xffff94895fe56a60 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe56b70 | file object: 0xffff94895fe56bf0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe56d00 | file object: 0xffff94895fe56d80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\DotNetObjectAlloc\Microsoft.DiagnosticsHub.DotNetObjectAllocation.dll
pool: 0xffff94895fe57020 | file object: 0xffff94895fe570a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe571b0 | file object: 0xffff94895fe57230 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ProjectServices\Microsoft.VisualStudio.ProjectServices.dll
pool: 0xffff94895fe57340 | file object: 0xffff94895fe573c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe574d0 | file object: 0xffff94895fe57550 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe57660 | file object: 0xffff94895fe576e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.CSharp.EditorFeatures.dll
pool: 0xffff94895fe577f0 | file object: 0xffff94895fe57870 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Text.Data.dll
pool: 0xffff94895fe57980 | file object: 0xffff94895fe57a00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Diagnostics.HubExtensions.dll
pool: 0xffff94895fe57b10 | file object: 0xffff94895fe57b90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\U-SQL\USQLSampleProject\__TemplateIcon.png
pool: 0xffff94895fe57ca0 | file object: 0xffff94895fe57d20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ErrorList\Microsoft.VisualStudio.ErrorListPkg.dll
pool: 0xffff94895fe57e30 | file object: 0xffff94895fe57eb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Architecture Tools\Providers\Solution\Microsoft.VisualStudio.Progression.VSProvider.dll
pool: 0xffff94895fe58150 | file object: 0xffff94895fe581d0 | offsetby: 0x80
\Windows\WinSxS\FileMaps\$$_syswow64_21ffbdd2a2dd92e0.cdf-ms
pool: 0xffff94895fe582e0 | file object: 0xffff94895fe58360 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Git.HostingProvider.AzureDevOps.dll
pool: 0xffff94895fe58470 | file object: 0xffff94895fe584f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.VersionControl.Controls.dll
pool: 0xffff94895fe58600 | file object: 0xffff94895fe58680 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe58790 | file object: 0xffff94895fe58810 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Text.Logic.dll
pool: 0xffff94895fe58920 | file object: 0xffff94895fe589a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Language.Intellisense.dll
pool: 0xffff94895fe58ab0 | file object: 0xffff94895fe58b30 | offsetby: 0x80
\Windows\System32\sfc.dll
pool: 0xffff94895fe58c40 | file object: 0xffff94895fe58cc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Text.UI.Wpf.dll
pool: 0xffff94895fe58dd0 | file object: 0xffff94895fe58e50 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe590f0 | file object: 0xffff94895fe59170 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.PackageManagement.dll
pool: 0xffff94895fe59280 | file object: 0xffff94895fe59300 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\Microsoft.VisualStudio.Azure.Fabric.ApplicationProject.dll
pool: 0xffff94895fe59410 | file object: 0xffff94895fe59490 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Web\ASPX\Microsoft.VisualStudio.Web.HTML.Implementation.dll
pool: 0xffff94895fe595a0 | file object: 0xffff94895fe59620 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools Diagnostics\Microsoft.VisualStudio.WindowsAzure.AzureDiagnostics.dll
pool: 0xffff94895fe59730 | file object: 0xffff94895fe597b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Publish\Microsoft.Publish.Framework.Console.dll
pool: 0xffff94895fe598c0 | file object: 0xffff94895fe59940 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.ExternalAccess.Debugger.dll
pool: 0xffff94895fe59a50 | file object: 0xffff94895fe59ad0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.CodeReview.Components.dll
pool: 0xffff94895fe59be0 | file object: 0xffff94895fe59c60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.ContextManagement.Package.dll
pool: 0xffff94895fe59d70 | file object: 0xffff94895fe59df0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.TeamFoundation.VersionControl.dll
pool: 0xffff94895fe5a090 | file object: 0xffff94895fe5a110 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.LanguageServer.Client.dll
pool: 0xffff94895fe5a220 | file object: 0xffff94895fe5a2a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.DesignTools.XamlLanguageServiceBase.dll
pool: 0xffff94895fe5a3b0 | file object: 0xffff94895fe5a430 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\WebJobs\Microsoft.WebTools.Azure.WebJobs.dll
pool: 0xffff94895fe5a540 | file object: 0xffff94895fe5a5c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Build.Controls.dll
pool: 0xffff94895fe5a6d0 | file object: 0xffff94895fe5a750 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe5a860 | file object: 0xffff94895fe5a8e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe5a9f0 | file object: 0xffff94895fe5aa70 | offsetby: 0x80
\Windows\System32\WerFault.exe
pool: 0xffff94895fe5ab80 | file object: 0xffff94895fe5ac00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Controls.dll
pool: 0xffff94895fe5ad10 | file object: 0xffff94895fe5ad90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.EditorFeatures.Wpf.dll
pool: 0xffff94895fe5b030 | file object: 0xffff94895fe5b0b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\em3ozjcu.15r\BoostTestAdapter.dll
pool: 0xffff94895fe5b1c0 | file object: 0xffff94895fe5b240 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\VsDebugPresentationPackage.dll
pool: 0xffff94895fe5b350 | file object: 0xffff94895fe5b3d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\UniversalFlavor\Microsoft.VisualStudio.UniversalLibrary.dll
pool: 0xffff94895fe5b4e0 | file object: 0xffff94895fe5b560 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.Tools.dll
pool: 0xffff94895fe5b670 | file object: 0xffff94895fe5b6f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.LanguageServer.Protocol.dll
pool: 0xffff94895fe5b800 | file object: 0xffff94895fe5b880 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe5b990 | file object: 0xffff94895fe5ba10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Shared.VS.dll
pool: 0xffff94895fe5bb20 | file object: 0xffff94895fe5bba0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TypeScript\Microsoft.VisualStudio.LanguageServices.TypeScript.dll
pool: 0xffff94895fe5bcb0 | file object: 0xffff94895fe5bd30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web\Mvc\Scaffolding\Microsoft.AspNet.Scaffolding.Mvc.5.0.dll
pool: 0xffff94895fe5be40 | file object: 0xffff94895fe5bec0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe5c160 | file object: 0xffff94895fe5c1e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.ExternalAccess.Apex.dll
pool: 0xffff94895fe5c2f0 | file object: 0xffff94895fe5c370 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\DataDesign\Microsoft.VisualStudio.DataDesign.DataSourceProviders.dll
pool: 0xffff94895fe5c480 | file object: 0xffff94895fe5c500 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Json.Editor.dll
pool: 0xffff94895fe5c610 | file object: 0xffff94895fe5c690 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe5c7a0 | file object: 0xffff94895fe5c820 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CrossRepositorySearch\Microsoft.VisualStudio.CrossRepositorySearch.dll
pool: 0xffff94895fe5c930 | file object: 0xffff94895fe5c9b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Scaffolding\Microsoft.WebTools.Scaffolding.Shared.dll
pool: 0xffff94895fe5cac0 | file object: 0xffff94895fe5cb40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Web\Exports\Microsoft.VisualStudio.Web.Exports.dll
pool: 0xffff94895fe5cc50 | file object: 0xffff94895fe5ccd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Resource Manager\Microsoft.VisualStudio.Azure.ResourceManager.Extensions.dll
pool: 0xffff94895fe5cde0 | file object: 0xffff94895fe5ce60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestWindow\Microsoft.VisualStudio.TestWindow.Core.dll
pool: 0xffff94895fe5d100 | file object: 0xffff94895fe5d180 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.CodingConventions.dll
pool: 0xffff94895fe5d290 | file object: 0xffff94895fe5d310 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Json.VS.dll
pool: 0xffff94895fe5d420 | file object: 0xffff94895fe5d4a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ScopeStudio.VsExtension.EditorMarginExtension.Pig.dll
pool: 0xffff94895fe5d5b0 | file object: 0xffff94895fe5d630 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Platform.VSEditor.dll
pool: 0xffff94895fe5d740 | file object: 0xffff94895fe5d7c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\Microsoft.CodeAnalysis.Razor.Workspaces.dll
pool: 0xffff94895fe5d8d0 | file object: 0xffff94895fe5d950 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGetConsole.Host.PowerShell.dll
pool: 0xffff94895fe5da60 | file object: 0xffff94895fe5dae0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.VisualBasic.Features.dll
pool: 0xffff94895fe5dbf0 | file object: 0xffff94895fe5dc70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Microsoft Office 365 Connected Service\Microsoft.VisualStudio.Office365.dll
pool: 0xffff94895fe5dd80 | file object: 0xffff94895fe5de00 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe5e0a0 | file object: 0xffff94895fe5e120 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.TeamFoundation.SharePointReporting.dll
pool: 0xffff94895fe5e230 | file object: 0xffff94895fe5e2b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\nuyyjiec.xhl\Microsoft.VisualStudio.Containers.Tools.Extensions.Shared.dll
pool: 0xffff94895fe5e3c0 | file object: 0xffff94895fe5e440 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe5e550 | file object: 0xffff94895fe5e5d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe5e6e0 | file object: 0xffff94895fe5e760 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\Microsoft.VisualStudio.LanguageServices.Razor.dll
pool: 0xffff94895fe5e870 | file object: 0xffff94895fe5e8f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Modeling\16.0\Microsoft.VisualStudio.Modeling.Components.15.0.dll
pool: 0xffff94895fe5ea00 | file object: 0xffff94895fe5ea80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.SolutionRestoreManager.dll
pool: 0xffff94895fe5eb90 | file object: 0xffff94895fe5ec10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\Microsoft.VisualStudio.Workspace.Extensions.Implementation.dll
pool: 0xffff94895fe5ed20 | file object: 0xffff94895fe5eda0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestWindow\Microsoft.VisualStudio.TestWindow.Interfaces.dll
pool: 0xffff94895fe5f040 | file object: 0xffff94895fe5f0c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ClientTools.CommonVSServiceWrapper.15.0.dll
pool: 0xffff94895fe5f1d0 | file object: 0xffff94895fe5f250 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\SourceBasedTestDiscovery\Microsoft.CodeAnalysis.UnitTesting.SourceBasedTestDiscovery.dll
pool: 0xffff94895fe5f360 | file object: 0xffff94895fe5f3e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe5f4f0 | file object: 0xffff94895fe5f570 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe5f680 | file object: 0xffff94895fe5f700 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools Shared\Microsoft.WebTools.Shared.dll
pool: 0xffff94895fe5f810 | file object: 0xffff94895fe5f890 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Shell.UI.Internal.dll
pool: 0xffff94895fe5f9a0 | file object: 0xffff94895fe5fa20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Publish\Environments\Microsoft.WebTools.Environments.VS.dll
pool: 0xffff94895fe5fb30 | file object: 0xffff94895fe5fbb0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe5fcc0 | file object: 0xffff94895fe5fd40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.PackageManagement.VisualStudio.dll
pool: 0xffff94895fe5fe50 | file object: 0xffff94895fe5fed0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CodeAnalysis\Microsoft.VisualStudio.CodeAnalysis.VCPlugin.dll
pool: 0xffff94895fe60170 | file object: 0xffff94895fe601f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Database\Microsoft.DiagnosticsHub.DatabaseTool.dll
pool: 0xffff94895fe60300 | file object: 0xffff94895fe60380 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ReferenceManager\Microsoft.VisualStudio.ReferenceManager.Providers.dll
pool: 0xffff94895fe60490 | file object: 0xffff94895fe60510 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.Workspaces.dll
pool: 0xffff94895fe60620 | file object: 0xffff94895fe606a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\LanguageServer\Microsoft.VisualStudio.LanguageServer.Client.Implementation.dll
pool: 0xffff94895fe607b0 | file object: 0xffff94895fe60830 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\XamlLanguageService\Microsoft.VisualStudio.DesignTools.XamlLanguageService.dll
pool: 0xffff94895fe60940 | file object: 0xffff94895fe609c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NavigateTo\Microsoft.VisualStudio.Language.NavigateTo.Interfaces.dll
pool: 0xffff94895fe60ad0 | file object: 0xffff94895fe60b50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Web\Razor\v3.0\Microsoft.WebTools.Languages.Razor.3.dll
pool: 0xffff94895fe60c60 | file object: 0xffff94895fe60ce0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe60df0 | file object: 0xffff94895fe60e70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Razor\v4.0\Microsoft.WebTools.Languages.Razor.Core.dll
pool: 0xffff94895fe61110 | file object: 0xffff94895fe61190 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Git.HostingProvider.GitHub.dll
pool: 0xffff94895fe612a0 | file object: 0xffff94895fe61320 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\CPUSampling\Microsoft.DiagnosticsHub.CpuSampling.dll
pool: 0xffff94895fe61430 | file object: 0xffff94895fe614b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\InteractiveWindow\Microsoft.VisualStudio.InteractiveWindow.dll
pool: 0xffff94895fe615c0 | file object: 0xffff94895fe61640 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe61750 | file object: 0xffff94895fe617d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Scaffolding\Microsoft.WebTools.Scaffolding.Core.dll
pool: 0xffff94895fe618e0 | file object: 0xffff94895fe61960 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.ExternalAccess.FSharp.dll
pool: 0xffff94895fe61a70 | file object: 0xffff94895fe61af0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.CommonIDE.dll
pool: 0xffff94895fe61c00 | file object: 0xffff94895fe61c80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.TeamFoundation.Build.dll
pool: 0xffff94895fe61d90 | file object: 0xffff94895fe61e10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\e1xcjrpa.qg3\Microsoft.VisualStudio.Docker.Compose.dll
pool: 0xffff94895fe620b0 | file object: 0xffff94895fe62130 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\Storage\Microsoft.VisualStudio.ConnectedServices.Azure.Storage.dll
pool: 0xffff94895fe62240 | file object: 0xffff94895fe622c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\txxba55a.20s\Microsoft.VisualStudio.DevOps.Contract.dll
pool: 0xffff94895fe623d0 | file object: 0xffff94895fe62450 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe62560 | file object: 0xffff94895fe625e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.TeamFoundation.dll
pool: 0xffff94895fe626f0 | file object: 0xffff94895fe62770 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Text.Logic.dll
pool: 0xffff94895fe62880 | file object: 0xffff94895fe62900 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TemplateEngine\Microsoft.VisualStudio.TemplateEngine.Wizard.dll
pool: 0xffff94895fe62a10 | file object: 0xffff94895fe62a90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Diff.dll
pool: 0xffff94895fe62ba0 | file object: 0xffff94895fe62c20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.VisualStudio.Implementation.dll
pool: 0xffff94895fe62d30 | file object: 0xffff94895fe62db0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\e1xcjrpa.qg3\Microsoft.VisualStudio.Docker.Shared.dll
pool: 0xffff94895fe63050 | file object: 0xffff94895fe630d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\Microsoft.WebTools.Azure.VS.dll
pool: 0xffff94895fe631e0 | file object: 0xffff94895fe63260 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CrossRepositorySearch\Microsoft.VisualStudio.Platform.CrossRepositorySearch.Implementation.dll
pool: 0xffff94895fe63370 | file object: 0xffff94895fe633f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\Editor\Microsoft.VisualC.Editor.Implementation.dll
pool: 0xffff94895fe63500 | file object: 0xffff94895fe63580 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V8f714998#\5f5f47935425aabde94941695a79c961\Microsoft.VisualStudio.Language.Intellisense.ni.dll.aux
pool: 0xffff94895fe63690 | file object: 0xffff94895fe63710 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Stream Analytics\ASAProject\ASAProject.png
pool: 0xffff94895fe63820 | file object: 0xffff94895fe638a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe639b0 | file object: 0xffff94895fe63a30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Editor.dll
pool: 0xffff94895fe63b40 | file object: 0xffff94895fe63bc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\EventsViewer\Microsoft.DiagnosticsHub.EventsViewerTool.dll
pool: 0xffff94895fe63cd0 | file object: 0xffff94895fe63d50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Search\Microsoft.VisualStudio.Platform.SearchProviders.dll
pool: 0xffff94895fe63e60 | file object: 0xffff94895fe63ee0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Git.Controls.dll
pool: 0xffff94895fe64180 | file object: 0xffff94895fe64200 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.CodeReview.Controls.dll
pool: 0xffff94895fe64310 | file object: 0xffff94895fe64390 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ScopeStudio.VsExtension.EditorMarginExtension.TypeScript.dll
pool: 0xffff94895fe644a0 | file object: 0xffff94895fe64520 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vc7739fa8#\d8422e9cf10153b868dbe1d3665eb348\Microsoft.VisualStudio.Text.Logic.ni.dll.aux
pool: 0xffff94895fe64630 | file object: 0xffff94895fe646b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Vsix\Microsoft.VisualStudio.Data.Tools.Delta.UI.dll
pool: 0xffff94895fe647c0 | file object: 0xffff94895fe64840 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\HIVE (HDInsight)\HiveProject\HiveProject.png
pool: 0xffff94895fe64950 | file object: 0xffff94895fe649d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe64ae0 | file object: 0xffff94895fe64b60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\DiagnosticsHub\Microsoft.DiagnosticsHub.Runtime.dll
pool: 0xffff94895fe64c70 | file object: 0xffff94895fe64cf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\Microsoft.WebTools.Azure.Client.dll
pool: 0xffff94895fe64e00 | file object: 0xffff94895fe64e80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Text.UI.dll
pool: 0xffff94895fe65120 | file object: 0xffff94895fe651a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Vsix\Microsoft.VisualStudio.Data.Tools.Delta.dll
pool: 0xffff94895fe652b0 | file object: 0xffff94895fe65330 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\InteractiveWindow\Microsoft.VisualStudio.VsInteractiveWindow.dll
pool: 0xffff94895fe65440 | file object: 0xffff94895fe654c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe655d0 | file object: 0xffff94895fe65650 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TemplateEngine\Microsoft.VisualStudio.TemplateEngine.VS.dll
pool: 0xffff94895fe65760 | file object: 0xffff94895fe657e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\IntelliCode\IntelliCodeCpp.dll
pool: 0xffff94895fe658f0 | file object: 0xffff94895fe65970 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe65a80 | file object: 0xffff94895fe65b00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.ComponentModelHost.Implementation.dll
pool: 0xffff94895fe65c10 | file object: 0xffff94895fe65c90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\DataDesign\Microsoft.VisualStudio.DataDesign.DataObjectGenerators.dll
pool: 0xffff94895fe65da0 | file object: 0xffff94895fe65e20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Microsoft.Cct.MobileApps.WebExtensions.dll
pool: 0xffff94895fe660c0 | file object: 0xffff94895fe66140 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ProjectSystemQuery\Microsoft.VisualStudio.ProjectSystem.Query.dll
pool: 0xffff94895fe66250 | file object: 0xffff94895fe662d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestWindow\Microsoft.VisualStudio.TestWindow.CppUnitTestExtension.dll
pool: 0xffff94895fe663e0 | file object: 0xffff94895fe66460 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\NavigateTo\FileProvider\Microsoft.VisualStudio.Language.QuickSearch.FileNameProvider.dll
pool: 0xffff94895fe66570 | file object: 0xffff94895fe665f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe66700 | file object: 0xffff94895fe66780 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\Microsoft.VisualStudio.LiveShare.Razor.dll
pool: 0xffff94895fe66890 | file object: 0xffff94895fe66910 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.CoreUtility.dll
pool: 0xffff94895fe66a20 | file object: 0xffff94895fe66aa0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.VisualStudio.LanguageServices.Implementation.dll
pool: 0xffff94895fe66bb0 | file object: 0xffff94895fe66c30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Publish\Microsoft.Publish.Framework.dll
pool: 0xffff94895fe66d40 | file object: 0xffff94895fe66dc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Html.LanguageServer.InProc.dll
pool: 0xffff94895fe67060 | file object: 0xffff94895fe670e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Git.Provider.dll
pool: 0xffff94895fe671f0 | file object: 0xffff94895fe67270 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\Microsoft.VisualStudio.Azure.Fabric.Shared.dll
pool: 0xffff94895fe67380 | file object: 0xffff94895fe67400 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vc03598f6#\4be44b39853cd8edb69e65a12544955f\Microsoft.VisualStudio.Text.Data.ni.dll.aux
pool: 0xffff94895fe67510 | file object: 0xffff94895fe67590 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe676a0 | file object: 0xffff94895fe67720 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CallHierarchy\Microsoft.VisualStudio.Language.CallHierarchy.dll
pool: 0xffff94895fe67830 | file object: 0xffff94895fe678b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Architecture Tools\Providers\ManagedProvider\Microsoft.VisualStudio.Progression.ManagedProvider.dll
pool: 0xffff94895fe679c0 | file object: 0xffff94895fe67a40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ManagedProjectSystem\Microsoft.VisualStudio.ProjectSystem.Managed.dll
pool: 0xffff94895fe67b50 | file object: 0xffff94895fe67bd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\Microsoft.VisualStudio.Azure.Fabric.DockerPackage.dll
pool: 0xffff94895fe67ce0 | file object: 0xffff94895fe67d60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Scaffolding\Microsoft.AspNet.Scaffolding.EntityFramework.12.0.dll
pool: 0xffff94895fe67e70 | file object: 0xffff94895fe67ef0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\e1xcjrpa.qg3\Microsoft.VisualStudio.Docker.DotNetCore.dll
pool: 0xffff94895fe68000 | file object: 0xffff94895fe68080 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\EBF\Microsoft.VisualStudio.Workspace.ExternalBuildFramework.Impl.dll
pool: 0xffff94895fe68190 | file object: 0xffff94895fe68210 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\Microsoft.WebTools.Azure.Publish.dll
pool: 0xffff94895fe68320 | file object: 0xffff94895fe683a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.TextManager.Interop.dll
pool: 0xffff94895fe684b0 | file object: 0xffff94895fe68530 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\Microsoft.VisualStudio.LanguageServerClient.Razor.dll
pool: 0xffff94895fe68640 | file object: 0xffff94895fe686c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.Merge.dll
pool: 0xffff94895fe687d0 | file object: 0xffff94895fe68850 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\DotNetAsync\Microsoft.DiagnosticsHub.DotNetAsync.dll
pool: 0xffff94895fe68960 | file object: 0xffff94895fe689e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CallHierarchy\Microsoft.VisualStudio.Language.CallHierarchy.Implementation.dll
pool: 0xffff94895fe68af0 | file object: 0xffff94895fe68b70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.TeamFoundation.WorkItemTracking.dll
pool: 0xffff94895fe68c80 | file object: 0xffff94895fe68d00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\XamlDiagnostics\Microsoft.VisualStudio.DesignTools.Diagnostics.dll
pool: 0xffff94895fe68e10 | file object: 0xffff94895fe68e90 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe69130 | file object: 0xffff94895fe691b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.VisualStudio.LanguageServices.LiveShare.dll
pool: 0xffff94895fe692c0 | file object: 0xffff94895fe69340 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\e1xcjrpa.qg3\Microsoft.VisualStudio.Docker.LanguageService.dll
pool: 0xffff94895fe69450 | file object: 0xffff94895fe694d0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V246d69f4#\73ebaad9130d947484de0867b156598c\Microsoft.VisualStudio.Editor.ni.dll.aux
pool: 0xffff94895fe695e0 | file object: 0xffff94895fe69660 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\TreeNavigation\Microsoft.VisualStudio.Shell.TreeNavigation.HierarchyProvider.dll
pool: 0xffff94895fe69770 | file object: 0xffff94895fe697f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\System.Composition.AttributedModel.dll
pool: 0xffff94895fe69900 | file object: 0xffff94895fe69980 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe69a90 | file object: 0xffff94895fe69b10 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe69c20 | file object: 0xffff94895fe69ca0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.CSharp.EditorFeatures.Wpf.dll
pool: 0xffff94895fe69db0 | file object: 0xffff94895fe69e30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestWindow\Microsoft.VisualStudio.TestWindow.VSTest.dll
pool: 0xffff94895fe6a0d0 | file object: 0xffff94895fe6a150 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Search\Microsoft.VisualStudio.Search.Implementation.dll
pool: 0xffff94895fe6a260 | file object: 0xffff94895fe6a2e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\RemoteDebugger\Microsoft.VisualStudio.WindowsAzure.RemoteDebugger.dll
pool: 0xffff94895fe6a3f0 | file object: 0xffff94895fe6a470 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestWindow\Microsoft.VisualStudio.MSTest.TestWindow.dll
pool: 0xffff94895fe6a580 | file object: 0xffff94895fe6a600 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe6a710 | file object: 0xffff94895fe6a790 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.VisualStudio.LanguageServices.Xaml.dll
pool: 0xffff94895fe6a8a0 | file object: 0xffff94895fe6a920 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe6aa30 | file object: 0xffff94895fe6aab0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.CSharp.Workspaces.dll
pool: 0xffff94895fe6abc0 | file object: 0xffff94895fe6ac40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\HIVE (HDInsight)\HiveSample\HiveSampleProject.png
pool: 0xffff94895fe6ad50 | file object: 0xffff94895fe6add0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\IntelliCode\Microsoft.VisualStudio.IntelliCode.TypeScript.dll
pool: 0xffff94895fe6b070 | file object: 0xffff94895fe6b0f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\EBF\TestExplorer\Microsoft.VisualStudio.Workspace.ExternalBuildFramework.TestProvider.dll
pool: 0xffff94895fe6b200 | file object: 0xffff94895fe6b280 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\e1xcjrpa.qg3\Microsoft.VisualStudio.Docker.DotNetFramework.dll
pool: 0xffff94895fe6b390 | file object: 0xffff94895fe6b410 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Project\Microsoft.VisualStudio.ProjectSystem.Implementation.dll
pool: 0xffff94895fe6b520 | file object: 0xffff94895fe6b5a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Publish\Environments\Microsoft.WebTools.Environments.dll
pool: 0xffff94895fe6b6b0 | file object: 0xffff94895fe6b730 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Library Manager\Microsoft.Web.LibraryManager.dll
pool: 0xffff94895fe6b840 | file object: 0xffff94895fe6b8c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.VisualStudio.LanguageServices.dll
pool: 0xffff94895fe6b9d0 | file object: 0xffff94895fe6ba50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\VsDebugCoreUI.dll
pool: 0xffff94895fe6bb60 | file object: 0xffff94895fe6bbe0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools Shared\Microsoft.WebTools.Shared.Web.VS.dll
pool: 0xffff94895fe6bcf0 | file object: 0xffff94895fe6bd70 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe6c010 | file object: 0xffff94895fe6c090 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\vsdebug.imagemanifest
pool: 0xffff94895fe6c1a0 | file object: 0xffff94895fe6c220 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xml\v4.0_4.0.0.0__b77a5c561934e089\System.XML.dll
pool: 0xffff94895fe6c330 | file object: 0xffff94895fe6c3b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.dll
pool: 0xffff94895fe6c4c0 | file object: 0xffff94895fe6c540 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.VisualStudio.LanguageServices.SolutionExplorer.dll
pool: 0xffff94895fe6c650 | file object: 0xffff94895fe6c6d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.VisualStudio.LanguageServices.VisualBasic.dll
pool: 0xffff94895fe6c7e0 | file object: 0xffff94895fe6c860 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\EBF\Microsoft.VisualStudio.Workspace.ExternalBuildFramework.dll
pool: 0xffff94895fe6c970 | file object: 0xffff94895fe6c9f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\Microsoft.VisualStudio.Azure.Fabric.ApplicationInsights.dll
pool: 0xffff94895fe6cb00 | file object: 0xffff94895fe6cb80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Architecture Tools\Providers\NativeCode\Microsoft.VisualStudio.Progression.Native.CodeProvider.dll
pool: 0xffff94895fe6cc90 | file object: 0xffff94895fe6cd10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\LanguageServer\Microsoft.VisualStudio.VC.LanguageServer.dll
pool: 0xffff94895fe6ce20 | file object: 0xffff94895fe6cea0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Dialogs.dll
pool: 0xffff94895fe6d140 | file object: 0xffff94895fe6d1c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.CodeReview.dll
pool: 0xffff94895fe6d2d0 | file object: 0xffff94895fe6d350 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.TeamFoundation.NuGetCredentialProvider.dll
pool: 0xffff94895fe6d460 | file object: 0xffff94895fe6d4e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\StanCore.dll
pool: 0xffff94895fe6d5f0 | file object: 0xffff94895fe6d670 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe6d780 | file object: 0xffff94895fe6d800 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.VisualStudio.LanguageServices.CSharp.dll
pool: 0xffff94895fe6d910 | file object: 0xffff94895fe6d990 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe6daa0 | file object: 0xffff94895fe6db20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TextMate\Microsoft.VisualStudio.TextMate.Core.dll
pool: 0xffff94895fe6dc30 | file object: 0xffff94895fe6dcb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ScopeStudio.VsExtension.EditorMarginExtension.StreamAnalytics.dll
pool: 0xffff94895fe6ddc0 | file object: 0xffff94895fe6de40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\Project\Microsoft.VisualStudio.Project.VisualC.VCProjectEngine.dll
pool: 0xffff94895fe6e0e0 | file object: 0xffff94895fe6e160 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.TeamExplorer.Navigation.dll
pool: 0xffff94895fe6e270 | file object: 0xffff94895fe6e2f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools Shared\Microsoft.WebTools.Shared.VS.dll
pool: 0xffff94895fe6e400 | file object: 0xffff94895fe6e480 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.VisualBasic.Workspaces.dll
pool: 0xffff94895fe6e590 | file object: 0xffff94895fe6e610 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe6e720 | file object: 0xffff94895fe6e7a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.VisualBasic.EditorFeatures.dll
pool: 0xffff94895fe6e8b0 | file object: 0xffff94895fe6e930 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe6ea40 | file object: 0xffff94895fe6eac0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.DiffBase.Internal.dll
pool: 0xffff94895fe6ebd0 | file object: 0xffff94895fe6ec50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\IntelliCode\Microsoft.VisualStudio.DesignTools.XamlIntelliCode.dll
pool: 0xffff94895fe6ed60 | file object: 0xffff94895fe6ede0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Cbf18da00#\af12ad0a8d75ef1db6b4f97b9b8c2ea1\Microsoft.CodeAnalysis.ni.dll.aux
pool: 0xffff94895fe6f080 | file object: 0xffff94895fe6f100 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe6f210 | file object: 0xffff94895fe6f290 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\IntelliCode\Microsoft.VisualStudio.Completion.Tests.dll
pool: 0xffff94895fe6f3a0 | file object: 0xffff94895fe6f420 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CMake\Microsoft.VisualStudio.CMake.Project.dll
pool: 0xffff94895fe6f530 | file object: 0xffff94895fe6f5b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TailoredProjectServices\Microsoft.VisualStudio.TailoredProjectServices.Debugger.dll
pool: 0xffff94895fe6f6c0 | file object: 0xffff94895fe6f740 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe6f850 | file object: 0xffff94895fe6f8d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestWindow\Microsoft.VisualStudio.TestWindow.dll
pool: 0xffff94895fe6f9e0 | file object: 0xffff94895fe6fa60 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe6fb70 | file object: 0xffff94895fe6fbf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TemplateEngine\Microsoft.VisualStudio.TemplateEngine.Shared.dll
pool: 0xffff94895fe6fd00 | file object: 0xffff94895fe6fd80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Language.StandardClassification.dll
pool: 0xffff94895fe70020 | file object: 0xffff94895fe700a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Language.Intellisense.dll
pool: 0xffff94895fe701b0 | file object: 0xffff94895fe70230 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\FSharp\FSharp.Editor.dll
pool: 0xffff94895fe70340 | file object: 0xffff94895fe703c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ReferenceManager\Microsoft.VisualStudio.ReferenceManager.Dialog.dll
pool: 0xffff94895fe704d0 | file object: 0xffff94895fe70550 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ScopeStudio.VsExtension.EditorMarginExtension.Hive.dll
pool: 0xffff94895fe70660 | file object: 0xffff94895fe706e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe707f0 | file object: 0xffff94895fe70870 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TextMate\Microsoft.VisualStudio.TextMate.VSWindows.dll
pool: 0xffff94895fe70980 | file object: 0xffff94895fe70a00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\IntelliCode\Microsoft.VisualStudio.IntelliCode.dll
pool: 0xffff94895fe70b10 | file object: 0xffff94895fe70b90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\WCF Connected Service\Microsoft.VisualStudio.ConnectedServices.Wcf.dll
pool: 0xffff94895fe70ca0 | file object: 0xffff94895fe70d20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Instrumentation\Microsoft.DiagnosticsHub.Instrumentation.dll
pool: 0xffff94895fe70e30 | file object: 0xffff94895fe70eb0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe71150 | file object: 0xffff94895fe711d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\IntelliCode\IntelliCodeImages.imagemanifest
pool: 0xffff94895fe712e0 | file object: 0xffff94895fe71360 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe71470 | file object: 0xffff94895fe714f0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Thre3435c1dc#\b149f9ffd2c306451dc4a043ae8f6aa3\System.Threading.Tasks.Dataflow.ni.dll
pool: 0xffff94895fe71600 | file object: 0xffff94895fe71680 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Text.UI.Wpf.dll
pool: 0xffff94895fe71790 | file object: 0xffff94895fe71810 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe71920 | file object: 0xffff94895fe719a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe71ab0 | file object: 0xffff94895fe71b30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestWindow\Microsoft.VisualStudio.TestWindow.Internal.dll
pool: 0xffff94895fe71c40 | file object: 0xffff94895fe71cc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Language\GenerateType\Microsoft.VisualStudio.Language.GenerateType.Implementation.dll
pool: 0xffff94895fe71dd0 | file object: 0xffff94895fe71e50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Shell.Connected.dll
pool: 0xffff94895fe720f0 | file object: 0xffff94895fe72170 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\mscorlib.dll
pool: 0xffff94895fe72280 | file object: 0xffff94895fe72300 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_32\PresentationCore\v4.0_4.0.0.0__31bf3856ad364e35\PresentationCore.dll
pool: 0xffff94895fe72410 | file object: 0xffff94895fe72490 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe725a0 | file object: 0xffff94895fe72620 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Shell.Framework.dll
pool: 0xffff94895fe72730 | file object: 0xffff94895fe727b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Pig (HDInsight)\PigProject\PigProject.png
pool: 0xffff94895fe728c0 | file object: 0xffff94895fe72940 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Text.UI.dll
pool: 0xffff94895fe72a50 | file object: 0xffff94895fe72ad0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ManagedProjectSystem\ManagedImages.imagemanifest
pool: 0xffff94895fe72be0 | file object: 0xffff94895fe72c60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools Shared\SharedVS.imagemanifest
pool: 0xffff94895fe72d70 | file object: 0xffff94895fe72df0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.Features.dll
pool: 0xffff94895fe73090 | file object: 0xffff94895fe73110 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe73220 | file object: 0xffff94895fe732a0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Cdce0ec49#\4e43c61a84448e8d67c8e2819603acc0\Microsoft.CodeAnalysis.Features.ni.dll.aux
pool: 0xffff94895fe733b0 | file object: 0xffff94895fe73430 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe73540 | file object: 0xffff94895fe735c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe736d0 | file object: 0xffff94895fe73750 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe73860 | file object: 0xffff94895fe738e0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V0ca2bbda#\283c8aaf5396174da5aaee13d6600e2a\Microsoft.VisualStudio.Text.UI.ni.dll.aux
pool: 0xffff94895fe739f0 | file object: 0xffff94895fe73a70 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Cbf18da00#\fd8243e25572cb1d152f0ac055009300\Microsoft.CodeAnalysis.ni.dll.aux
pool: 0xffff94895fe73b80 | file object: 0xffff94895fe73c00 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V1748dfc1#\c02afc8ef84cec7731e32092e7551ba2\Microsoft.VisualStudio.ImageCatalog.ni.dll.aux
pool: 0xffff94895fe73d10 | file object: 0xffff94895fe73d90 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.dll
pool: 0xffff94895fe74030 | file object: 0xffff94895fe740b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\ComponentsImages.imagemanifest
pool: 0xffff94895fe741c0 | file object: 0xffff94895fe74240 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe74350 | file object: 0xffff94895fe743d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe744e0 | file object: 0xffff94895fe74560 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\WindowsBase\v4.0_4.0.0.0__31bf3856ad364e35\WindowsBase.dll
pool: 0xffff94895fe74670 | file object: 0xffff94895fe746f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.ImageCatalog.dll
pool: 0xffff94895fe74800 | file object: 0xffff94895fe74880 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe74990 | file object: 0xffff94895fe74a10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\ScaffoldingImages.imagemanifest
pool: 0xffff94895fe74b20 | file object: 0xffff94895fe74ba0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xaml\v4.0_4.0.0.0__b77a5c561934e089\System.Xaml.dll
pool: 0xffff94895fe74cb0 | file object: 0xffff94895fe74d30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\nuyyjiec.xhl\ExtensionsMonikers.imagemanifest
pool: 0xffff94895fe74e40 | file object: 0xffff94895fe74ec0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vd5001c35#\2abd1618bc05908b9e4fb5f66a507b61\Microsoft.VisualStudio.Text.UI.Wpf.ni.dll.aux
pool: 0xffff94895fe75160 | file object: 0xffff94895fe751e0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V333c2ff7#\d26c79bb302080e444ee0fcb8c49970f\Microsoft.VisualStudio.Imaging.ni.dll.aux
pool: 0xffff94895fe752f0 | file object: 0xffff94895fe75370 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.CommonIDE.imagemanifest
pool: 0xffff94895fe75480 | file object: 0xffff94895fe75500 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System\v4.0_4.0.0.0__b77a5c561934e089\System.dll
pool: 0xffff94895fe75610 | file object: 0xffff94895fe75690 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe757a0 | file object: 0xffff94895fe75820 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\txxba55a.20s\DevOps.Prod.imagemanifest
pool: 0xffff94895fe75930 | file object: 0xffff94895fe759b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe75ac0 | file object: 0xffff94895fe75b40 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe75c50 | file object: 0xffff94895fe75cd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\System.Runtime.CompilerServices.Unsafe.dll
pool: 0xffff94895fe75de0 | file object: 0xffff94895fe75e60 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Memory\4a18f3a290fc140c9e98d16d4c2c1064\System.Memory.ni.dll.aux
pool: 0xffff94895fe76100 | file object: 0xffff94895fe76180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe76290 | file object: 0xffff94895fe76310 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools Shared\Microsoft.WebTools.Shared.dll
pool: 0xffff94895fe76420 | file object: 0xffff94895fe764a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe765b0 | file object: 0xffff94895fe76630 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe76740 | file object: 0xffff94895fe767c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\VsDebugPresentationPackage.imagemanifest
pool: 0xffff94895fe768d0 | file object: 0xffff94895fe76950 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\U-SQL\DatabaseProject\DatabaseProject.png
pool: 0xffff94895fe76a60 | file object: 0xffff94895fe76ae0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CMake\Microsoft.VisualStudio.CMake.Package.imagemanifest
pool: 0xffff94895fe76bf0 | file object: 0xffff94895fe76c70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Composition.dll
pool: 0xffff94895fe76d80 | file object: 0xffff94895fe76e00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Imaging.dll
pool: 0xffff94895fe770a0 | file object: 0xffff94895fe77120 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.Shell.UI.Internal.StatusBar.imagemanifest
pool: 0xffff94895fe77230 | file object: 0xffff94895fe772b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\msenv.imagemanifest
pool: 0xffff94895fe773c0 | file object: 0xffff94895fe77440 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe77550 | file object: 0xffff94895fe775d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\System.Memory.dll
pool: 0xffff94895fe776e0 | file object: 0xffff94895fe77760 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Memory\27afd93ca4b685b56dde7f77f4fcc1c5\System.Memory.ni.dll.aux
pool: 0xffff94895fe77870 | file object: 0xffff94895fe778f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\DesktopBridge\WapProjImages.imagemanifest
pool: 0xffff94895fe77a00 | file object: 0xffff94895fe77a80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\System.Numerics.Vectors.dll
pool: 0xffff94895fe77b90 | file object: 0xffff94895fe77c10 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe77d20 | file object: 0xffff94895fe77da0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\LiveShareMonikers.imagemanifest
pool: 0xffff94895fe78040 | file object: 0xffff94895fe780c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editors\Microsoft.VisualStudio.Editors.WCF.imagemanifest
pool: 0xffff94895fe781d0 | file object: 0xffff94895fe78250 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.ImageCatalog.imagemanifest
pool: 0xffff94895fe78360 | file object: 0xffff94895fe783e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe784f0 | file object: 0xffff94895fe78570 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Web.dll
pool: 0xffff94895fe78680 | file object: 0xffff94895fe78700 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe78810 | file object: 0xffff94895fe78890 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Diagnostics.Tools\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Diagnostics.Tools.dll
pool: 0xffff94895fe789a0 | file object: 0xffff94895fe78a20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TypeScript\Microsoft.CodeAnalysis.TypeScript.EditorFeatures.dll
pool: 0xffff94895fe78b30 | file object: 0xffff94895fe78bb0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe78cc0 | file object: 0xffff94895fe78d40 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe78e50 | file object: 0xffff94895fe78ed0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe79170 | file object: 0xffff94895fe791f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe79300 | file object: 0xffff94895fe79380 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vcb674816#\9de6b6c97cc60dd52b798b6550f39bde\Microsoft.VisualStudio.GraphModel.ni.dll.aux
pool: 0xffff94895fe79490 | file object: 0xffff94895fe79510 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe79620 | file object: 0xffff94895fe796a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.EditorFeatures.dll
pool: 0xffff94895fe797b0 | file object: 0xffff94895fe79830 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.GraphModel.dll
pool: 0xffff94895fe79940 | file object: 0xffff94895fe799c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Css.dll
pool: 0xffff94895fe79ad0 | file object: 0xffff94895fe79b50 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe79c60 | file object: 0xffff94895fe79ce0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe79df0 | file object: 0xffff94895fe79e70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\EBF\Microsoft.VisualStudio.Workspace.ExternalBuildFramework.Impl.dll
pool: 0xffff94895fe7a110 | file object: 0xffff94895fe7a190 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7a2a0 | file object: 0xffff94895fe7a320 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Language.dll
pool: 0xffff94895fe7a430 | file object: 0xffff94895fe7a4b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Html.dll
pool: 0xffff94895fe7a5c0 | file object: 0xffff94895fe7a640 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\LanguageServer\Microsoft.VisualStudio.LanguageServer.Protocol.Extensions.dll
pool: 0xffff94895fe7a750 | file object: 0xffff94895fe7a7d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Threading.16.0\Microsoft.VisualStudio.Threading.dll
pool: 0xffff94895fe7a8e0 | file object: 0xffff94895fe7a960 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7aa70 | file object: 0xffff94895fe7aaf0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7ac00 | file object: 0xffff94895fe7ac80 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V607a08c7#\db16b2e0825efe447825ca34e24f26cb\Microsoft.VisualStudio.Language.ni.dll.aux
pool: 0xffff94895fe7ad90 | file object: 0xffff94895fe7ae10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Language.dll
pool: 0xffff94895fe7b0b0 | file object: 0xffff94895fe7b130 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7b240 | file object: 0xffff94895fe7b2c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7b3d0 | file object: 0xffff94895fe7b450 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7b560 | file object: 0xffff94895fe7b5e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7b6f0 | file object: 0xffff94895fe7b770 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Html.dll
pool: 0xffff94895fe7b880 | file object: 0xffff94895fe7b900 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Css.Editor.dll
pool: 0xffff94895fe7ba10 | file object: 0xffff94895fe7ba90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\Microsoft.CodeAnalysis.Razor.Workspaces.dll
pool: 0xffff94895fe7bba0 | file object: 0xffff94895fe7bc20 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7bd30 | file object: 0xffff94895fe7bdb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.CSharp.dll
pool: 0xffff94895fe7c050 | file object: 0xffff94895fe7c0d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7c1e0 | file object: 0xffff94895fe7c260 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.C1d3c2215#\4216168ee7bbe7c37f37424dd1ef625f\Microsoft.CodeAnalysis.CSharp.ni.dll.aux
pool: 0xffff94895fe7c370 | file object: 0xffff94895fe7c3f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7c500 | file object: 0xffff94895fe7c580 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\KeyVault\Microsoft.VisualStudio.ConnectedServices.Azure.KeyVault.dll
pool: 0xffff94895fe7c690 | file object: 0xffff94895fe7c710 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7c820 | file object: 0xffff94895fe7c8a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7c9b0 | file object: 0xffff94895fe7ca30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Web.HTML.dll
pool: 0xffff94895fe7cb40 | file object: 0xffff94895fe7cbc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Web.dll
pool: 0xffff94895fe7ccd0 | file object: 0xffff94895fe7cd50 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Net.Http\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Net.Http.dll
pool: 0xffff94895fe7ce60 | file object: 0xffff94895fe7cee0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7d180 | file object: 0xffff94895fe7d200 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.Developer.IdentityService.Client.dll
pool: 0xffff94895fe7d310 | file object: 0xffff94895fe7d390 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.VisualStudio.dll
pool: 0xffff94895fe7d4a0 | file object: 0xffff94895fe7d520 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\Microsoft.VisualStudio.ConnectedServices.dll
pool: 0xffff94895fe7d630 | file object: 0xffff94895fe7d6b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe7d7c0 | file object: 0xffff94895fe7d840 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7d950 | file object: 0xffff94895fe7d9d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7dae0 | file object: 0xffff94895fe7db60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Deployment Project\Microsoft.VisualStudio.Azure.Deployment.dll
pool: 0xffff94895fe7dc70 | file object: 0xffff94895fe7dcf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\CodeSense\Framework\Microsoft.VisualStudio.CodeSense.Roslyn.dll
pool: 0xffff94895fe7de00 | file object: 0xffff94895fe7de80 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7e120 | file object: 0xffff94895fe7e1a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7e2b0 | file object: 0xffff94895fe7e330 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7e440 | file object: 0xffff94895fe7e4c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ManagedProjectSystem\Microsoft.VisualStudio.ProjectSystem.Managed.dll
pool: 0xffff94895fe7e5d0 | file object: 0xffff94895fe7e650 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Css.dll
pool: 0xffff94895fe7e760 | file object: 0xffff94895fe7e7e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7e8f0 | file object: 0xffff94895fe7e970 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7ea80 | file object: 0xffff94895fe7eb00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.Bcl.AsyncInterfaces.dll
pool: 0xffff94895fe7ec10 | file object: 0xffff94895fe7ec90 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\gulp\package.nls.json
pool: 0xffff94895fe7eda0 | file object: 0xffff94895fe7ee20 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\php\package.json
pool: 0xffff94895fe7f0c0 | file object: 0xffff94895fe7f140 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Build\07136aa2c502664d4f4ae8e4825d58e7\Microsoft.Build.ni.dll.aux
pool: 0xffff94895fe7f250 | file object: 0xffff94895fe7f2d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\handlebars\package.nls.json
pool: 0xffff94895fe7f3e0 | file object: 0xffff94895fe7f460 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe7f570 | file object: 0xffff94895fe7f5f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools Shared\Microsoft.WebTools.Shared.CPS.VS.dll
pool: 0xffff94895fe7f700 | file object: 0xffff94895fe7f780 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Project\Microsoft.VisualStudio.ProjectSystem.VS.dll
pool: 0xffff94895fe7f890 | file object: 0xffff94895fe7f910 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\php-language-features\package.json
pool: 0xffff94895fe7fa20 | file object: 0xffff94895fe7faa0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Validation.dll
pool: 0xffff94895fe7fbb0 | file object: 0xffff94895fe7fc30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.LanguageServer.Client.dll
pool: 0xffff94895fe7fd40 | file object: 0xffff94895fe7fdc0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\handlebars\package.json
pool: 0xffff94895fe80060 | file object: 0xffff94895fe800e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe801f0 | file object: 0xffff94895fe80270 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\powershell\package.json
pool: 0xffff94895fe80380 | file object: 0xffff94895fe80400 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\pug\package.json
pool: 0xffff94895fe80510 | file object: 0xffff94895fe80590 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.VisualC.Utilities.dll
pool: 0xffff94895fe806a0 | file object: 0xffff94895fe80720 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Deployment Project\Microsoft.VisualStudio.Azure.ResourceManager.Contracts.1.0.dll
pool: 0xffff94895fe80830 | file object: 0xffff94895fe808b0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\WindowsBase\v4.0_4.0.0.0__31bf3856ad364e35\WindowsBase.dll
pool: 0xffff94895fe809c0 | file object: 0xffff94895fe80a40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.VC.Interfaces.dll
pool: 0xffff94895fe80b50 | file object: 0xffff94895fe80bd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\Microsoft.VisualStudio.Workspace.VSIntegration.Contracts.dll
pool: 0xffff94895fe80ce0 | file object: 0xffff94895fe80d60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.VC.Interfaces.dll
pool: 0xffff94895fe80e70 | file object: 0xffff94895fe80ef0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.CppSvc.Internal.dll
pool: 0xffff94895fe81000 | file object: 0xffff94895fe81080 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe81190 | file object: 0xffff94895fe81210 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\Microsoft.VisualStudio.Workspace.dll
pool: 0xffff94895fe81320 | file object: 0xffff94895fe813a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe814b0 | file object: 0xffff94895fe81530 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\EBF\Microsoft.VisualStudio.Workspace.ExternalBuildFramework.dll
pool: 0xffff94895fe81640 | file object: 0xffff94895fe816c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe817d0 | file object: 0xffff94895fe81850 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe81960 | file object: 0xffff94895fe819e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\Microsoft.VisualStudio.Workspace.Extensions.VS.dll
pool: 0xffff94895fe81af0 | file object: 0xffff94895fe81b70 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe81c80 | file object: 0xffff94895fe81d00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\MSBuild\Current\Bin\Microsoft.Build.Framework.dll
pool: 0xffff94895fe81e10 | file object: 0xffff94895fe81e90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Shell.Interop.dll
pool: 0xffff94895fe82130 | file object: 0xffff94895fe821b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Project\Microsoft.VisualStudio.ProjectSystem.VS.dll
pool: 0xffff94895fe822c0 | file object: 0xffff94895fe82340 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ReferenceManager\Microsoft.VisualStudio.ReferenceManager.Contracts.dll
pool: 0xffff94895fe82450 | file object: 0xffff94895fe824d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\mhdggq4k.qg3\Microsoft.VisualStudio.Containers.Tools.Shared.dll
pool: 0xffff94895fe825e0 | file object: 0xffff94895fe82660 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ProjectServices\Microsoft.VisualStudio.ProjectServices.dll
pool: 0xffff94895fe82770 | file object: 0xffff94895fe827f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.CppSvc.Internal.dll
pool: 0xffff94895fe82900 | file object: 0xffff94895fe82980 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\razor\package.json
pool: 0xffff94895fe82a90 | file object: 0xffff94895fe82b10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\Microsoft.VisualStudio.Workspace.VSIntegration.Contracts.dll
pool: 0xffff94895fe82c20 | file object: 0xffff94895fe82ca0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\Microsoft.VisualStudio.Workspace.dll
pool: 0xffff94895fe82db0 | file object: 0xffff94895fe82e30 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe84160 | file object: 0xffff94895fe841e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Client.dll
pool: 0xffff94895fe842f0 | file object: 0xffff94895fe84370 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.Services.Common.dll
pool: 0xffff94895fe84480 | file object: 0xffff94895fe84500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe84610 | file object: 0xffff94895fe84690 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe847a0 | file object: 0xffff94895fe84820 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\main-8c8c2d82aca3a0c5f904db5c1ddaf4c3.code
pool: 0xffff94895fe84930 | file object: 0xffff94895fe849b0 | offsetby: 0x80
\REGISTRY\USER\S-1-5-18re\Policies\Microsoft\MUI\SettingsnliveryOptimization\Swarms\dfc31e8
pool: 0xffff94895fe84ac0 | file object: 0xffff94895fe84b40 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe84c50 | file object: 0xffff94895fe84cd0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Accessibility\v4.0_4.0.0.0__b03f5f7f11d50a3a\Accessibility.dll
pool: 0xffff94895fe84de0 | file object: 0xffff94895fe84e60 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe85100 | file object: 0xffff94895fe85180 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_32\PresentationCore\v4.0_4.0.0.0__31bf3856ad364e35\PresentationCore.dll
pool: 0xffff94895fe85290 | file object: 0xffff94895fe85310 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_idx.dbȔఏᤖजᔃᴆ἟἟἟
pool: 0xffff94895fe85420 | file object: 0xffff94895fe854a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe855b0 | file object: 0xffff94895fe85630 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe85740 | file object: 0xffff94895fe857c0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe858d0 | file object: 0xffff94895fe85950 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe85a60 | file object: 0xffff94895fe85ae0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\iconcache_48.db Code\resources\app\exte
pool: 0xffff94895fe85bf0 | file object: 0xffff94895fe85c70 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\groovy\package.json
pool: 0xffff94895fe85d80 | file object: 0xffff94895fe85e00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Common.dll
pool: 0xffff94895fe860a0 | file object: 0xffff94895fe86120 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\vscode-windows-ca-certs
pool: 0xffff94895fe86230 | file object: 0xffff94895fe862b0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Xaml\v4.0_4.0.0.0__b77a5c561934e089\System.Xaml.dll
pool: 0xffff94895fe863c0 | file object: 0xffff94895fe86440 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Json.dll
pool: 0xffff94895fe86550 | file object: 0xffff94895fe865d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Controls.dll
pool: 0xffff94895fe866e0 | file object: 0xffff94895fe86760 | offsetby: 0x80
꒎쭅뚏耄dtPỿȁԀ ȠỿāԀ́ԀȁԀ ȠԁԀ鄑샋狀먔믢꙼ȁ
pool: 0xffff94895fe86870 | file object: 0xffff94895fe868f0 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha\target\release\eprocess_scan.exeleRM.RecoveryServices.xaml
pool: 0xffff94895fe86a00 | file object: 0xffff94895fe86a80 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe86b90 | file object: 0xffff94895fe86c10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Client.dll
pool: 0xffff94895fe86d20 | file object: 0xffff94895fe86da0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework\v4.0_4.0.0.0__31bf3856ad364e35\PresentationFramework.dll
pool: 0xffff94895fe87040 | file object: 0xffff94895fe870c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895fe871d0 | file object: 0xffff94895fe87250 | offsetby: 0x80
\Device\HarddiskVolume2\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\exten
pool: 0xffff94895fe87360 | file object: 0xffff94895fe873e0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationProvider\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationProvider.dll
pool: 0xffff94895fe874f0 | file object: 0xffff94895fe87570 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Diagnostics.HubExtensions.dll
pool: 0xffff94895fe87680 | file object: 0xffff94895fe87700 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.TextManager.Interop.dll
pool: 0xffff94895fe87810 | file object: 0xffff94895fe87890 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\groovy\package.nls.json
pool: 0xffff94895fe879a0 | file object: 0xffff94895fe87a20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Json.VS.dll
pool: 0xffff94895fe87b30 | file object: 0xffff94895fe87bb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe87cc0 | file object: 0xffff94895fe87d40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Architecture Tools\GraphProviderPackage\Microsoft.VisualStudio.Progression.Interfaces.dll
pool: 0xffff94895fe87e50 | file object: 0xffff94895fe87ed0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\TestPlatform\Microsoft.VisualStudio.TestPlatform.ObjectModel.dll
pool: 0xffff94895fe88170 | file object: 0xffff94895fe881f0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\PowerShell\ModuleAnalysisCache
pool: 0xffff94895fe88300 | file object: 0xffff94895fe88380 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\grunt\package.nls.json
pool: 0xffff94895fe88490 | file object: 0xffff94895fe88510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe88620 | file object: 0xffff94895fe886a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Diagnostics.Common.dll
pool: 0xffff94895fe887b0 | file object: 0xffff94895fe88830 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\UIAutomationTypes\v4.0_4.0.0.0__31bf3856ad364e35\UIAutomationTypes.dll
pool: 0xffff94895fe88940 | file object: 0xffff94895fe889c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\envdte.dll
pool: 0xffff94895fe88ad0 | file object: 0xffff94895fe88b50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.TextManager.Interop.8.0.dll
pool: 0xffff94895fe88c60 | file object: 0xffff94895fe88ce0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Debugger.InteropA.dll
pool: 0xffff94895fe88df0 | file object: 0xffff94895fe88e70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895fe89110 | file object: 0xffff94895fe89190 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.TextManager.Interop.8.0.dll
pool: 0xffff94895fe892a0 | file object: 0xffff94895fe89320 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Interop\Microsoft.VisualStudio.Shell.Interop.8.0.dll
pool: 0xffff94895fe89430 | file object: 0xffff94895fe894b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe895c0 | file object: 0xffff94895fe89640 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895fe89750 | file object: 0xffff94895fe897d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\docker\package.json
pool: 0xffff94895fe898e0 | file object: 0xffff94895fe89960 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe89a70 | file object: 0xffff94895fe89af0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.MSXML.dll
pool: 0xffff94895fe89c00 | file object: 0xffff94895fe89c80 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\grunt\package.json
pool: 0xffff94895fe89d90 | file object: 0xffff94895fe89e10 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\git\dist\nls.metadata.header.json
pool: 0xffff94895fe8a0b0 | file object: 0xffff94895fe8a130 | offsetby: 0x80
\Windows\System32\en-US\shell32.dll.muiကāԀ
pool: 0xffff94895fe8a240 | file object: 0xffff94895fe8a2c0 | offsetby: 0x80
\Windows\System32\edputil.dlls\Branding\Baseb
pool: 0xffff94895fe8a3d0 | file object: 0xffff94895fe8a450 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\docker\package.nls.json
pool: 0xffff94895fe8a560 | file object: 0xffff94895fe8a5e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Containers.Tools.Common.Package.dll
pool: 0xffff94895fe8a6f0 | file object: 0xffff94895fe8a770 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.TemplateWizardInterface.dll
pool: 0xffff94895fe8a880 | file object: 0xffff94895fe8a900 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.Services.Client.Interactive.dll
pool: 0xffff94895fe8aa10 | file object: 0xffff94895fe8aa90 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\emmet\package.nls.json
pool: 0xffff94895fe8aba0 | file object: 0xffff94895fe8ac20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Containers.Tools.Common.Package.Contracts.dll
pool: 0xffff94895fe8ad30 | file object: 0xffff94895fe8adb0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\fsharp\package.nls.json
pool: 0xffff94895fe8b050 | file object: 0xffff94895fe8b0d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\AzureSDK\3.0.0.0\Microsoft.Rest.ClientRuntime.Azure.dll
pool: 0xffff94895fe8b1e0 | file object: 0xffff94895fe8b260 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Containers.Tools.Common.Package.dll
pool: 0xffff94895fe8b370 | file object: 0xffff94895fe8b3f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.IdentityModel.Clients.ActiveDirectory.dll
pool: 0xffff94895fe8b500 | file object: 0xffff94895fe8b580 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Containers.Tools.Common.dll
pool: 0xffff94895fe8b690 | file object: 0xffff94895fe8b710 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\extension-editing\package.json
pool: 0xffff94895fe8b820 | file object: 0xffff94895fe8b8a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Containers.Tools.Common.Package.Contracts.dll
pool: 0xffff94895fe8b9b0 | file object: 0xffff94895fe8ba30 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\extension-editing\package.nls.json
pool: 0xffff94895fe8bb40 | file object: 0xffff94895fe8bbc0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\git\package.json
pool: 0xffff94895fe8bcd0 | file object: 0xffff94895fe8bd50 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\emmet\package.json
pool: 0xffff94895fe8be60 | file object: 0xffff94895fe8bee0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.Common.dll
pool: 0xffff94895fe8c180 | file object: 0xffff94895fe8c200 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.EditorFeatures.Wpf.dll
pool: 0xffff94895fe8c310 | file object: 0xffff94895fe8c390 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\fsharp\package.json
pool: 0xffff94895fe8c4a0 | file object: 0xffff94895fe8c520 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\git\package.nls.json
pool: 0xffff94895fe8c630 | file object: 0xffff94895fe8c6b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Containers.Tools.Common.dll
pool: 0xffff94895fe8c7c0 | file object: 0xffff94895fe8c840 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.CodingConventions.dll
pool: 0xffff94895fe8c950 | file object: 0xffff94895fe8c9d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\git-ui\package.json
pool: 0xffff94895fe8cae0 | file object: 0xffff94895fe8cb60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\InteractiveWindow\Microsoft.VisualStudio.InteractiveWindow.dll
pool: 0xffff94895fe8cc70 | file object: 0xffff94895fe8ccf0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\git-ui\package.nls.json
pool: 0xffff94895fe8ce00 | file object: 0xffff94895fe8ce80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.PackageManagement.dll
pool: 0xffff94895fe8d120 | file object: 0xffff94895fe8d1a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\github-authentication\package.json
pool: 0xffff94895fe8d2b0 | file object: 0xffff94895fe8d330 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895fe8d440 | file object: 0xffff94895fe8d4c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.Services.Client.Interactive.dll
pool: 0xffff94895fe8d5d0 | file object: 0xffff94895fe8d650 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\github-authentication\package.nls.json
pool: 0xffff94895fe8d760 | file object: 0xffff94895fe8d7e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.TextManager.Interop.12.0.dll
pool: 0xffff94895fe8d8f0 | file object: 0xffff94895fe8d970 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned3}.2.ver0x0000000000000
pool: 0xffff94895fe8da80 | file object: 0xffff94895fe8db00 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\ms-vscode.js-debug-companion\package.json
pool: 0xffff94895fe8dc10 | file object: 0xffff94895fe8dc90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.ProjectModel.dll
pool: 0xffff94895fe8dda0 | file object: 0xffff94895fe8de20 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe8e0c0 | file object: 0xffff94895fe8e140 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe8e250 | file object: 0xffff94895fe8e2d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe8e3e0 | file object: 0xffff94895fe8e460 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.Services.WebApi.dll
pool: 0xffff94895fe8e570 | file object: 0xffff94895fe8e5f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\ruby\package.json
pool: 0xffff94895fe8e700 | file object: 0xffff94895fe8e780 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-abyss\package.json
pool: 0xffff94895fe8e890 | file object: 0xffff94895fe8e910 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\javascript\package.json
pool: 0xffff94895fe8ea20 | file object: 0xffff94895fe8eaa0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\javascript\package.nls.json
pool: 0xffff94895fe8ebb0 | file object: 0xffff94895fe8ec30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Browser Link\Microsoft.WebTools.BrowserLink.Contracts.dll
pool: 0xffff94895fe8ed40 | file object: 0xffff94895fe8edc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\Microsoft.VisualStudio.Containers.Tools.Common.dll
pool: 0xffff94895fe8f060 | file object: 0xffff94895fe8f0e0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\git\dist\nls.metadata.json
pool: 0xffff94895fe8f1f0 | file object: 0xffff94895fe8f270 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Shared.VS.dll
pool: 0xffff94895fe8f380 | file object: 0xffff94895fe8f400 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe8f510 | file object: 0xffff94895fe8f590 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\github-authentication\dist\extension.js
pool: 0xffff94895fe8f6a0 | file object: 0xffff94895fe8f720 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\ms-vscode.references-view\package.json
pool: 0xffff94895fe8f830 | file object: 0xffff94895fe8f8b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.Protocol.dll
pool: 0xffff94895fe8f9c0 | file object: 0xffff94895fe8fa40 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\go\package.json
pool: 0xffff94895fe8fb50 | file object: 0xffff94895fe8fbd0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe8fce0 | file object: 0xffff94895fe8fd60 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\ms-vscode.node-debug\package.json
pool: 0xffff94895fe8fe70 | file object: 0xffff94895fe8fef0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe90000 | file object: 0xffff94895fe90080 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe90190 | file object: 0xffff94895fe90210 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestWindow\Microsoft.VisualStudio.TestWindow.Interfaces.dll
pool: 0xffff94895fe90320 | file object: 0xffff94895fe903a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\go\package.nls.json
pool: 0xffff94895fe904b0 | file object: 0xffff94895fe90530 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe90640 | file object: 0xffff94895fe906c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\github-authentication\dist\nls.metadata.json
pool: 0xffff94895fe907d0 | file object: 0xffff94895fe90850 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\ms-vscode.node-debug2\package.json
pool: 0xffff94895fe90960 | file object: 0xffff94895fe909e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe90af0 | file object: 0xffff94895fe90b70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\KeyVault\Microsoft.VisualStudio.Azure.ResourceManagement.dll
pool: 0xffff94895fe90c80 | file object: 0xffff94895fe90d00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe90e10 | file object: 0xffff94895fe90e90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\TestPlatform\Microsoft.VisualStudio.TestPlatform.ObjectModel.dll
pool: 0xffff94895fe91130 | file object: 0xffff94895fe911b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\jq3442h5.qyy\ProjectTemplates\templateManifest0.noloc.vstman
pool: 0xffff94895fe912c0 | file object: 0xffff94895fe91340 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\make\package.nls.json
pool: 0xffff94895fe91450 | file object: 0xffff94895fe914d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe915e0 | file object: 0xffff94895fe91660 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe91770 | file object: 0xffff94895fe917f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe91900 | file object: 0xffff94895fe91980 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\iconcache_16.db
pool: 0xffff94895fe91a90 | file object: 0xffff94895fe91b10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Microsoft.VisualStudio.WindowsAzure.Services.dll
pool: 0xffff94895fe91c20 | file object: 0xffff94895fe91ca0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Publish\Microsoft.Publish.Framework.Console.dll
pool: 0xffff94895fe91db0 | file object: 0xffff94895fe91e30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Publish\Microsoft.Publish.Framework.dll
pool: 0xffff94895fe920d0 | file object: 0xffff94895fe92150 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Publish\Microsoft.Publish.Framework.Contracts.dll
pool: 0xffff94895fe92260 | file object: 0xffff94895fe922e0 | offsetby: 0x80
\Windows\System32\ieframe.dll
pool: 0xffff94895fe923f0 | file object: 0xffff94895fe92470 | offsetby: 0x80
\Windows\System32\en-US\explorerframe.dll.mui
pool: 0xffff94895fe92580 | file object: 0xffff94895fe92600 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\shaderlab\package.json
pool: 0xffff94895fe92710 | file object: 0xffff94895fe92790 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895fe928a0 | file object: 0xffff94895fe92920 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-defaults\package.json
pool: 0xffff94895fe92a30 | file object: 0xffff94895fe92ab0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe92bc0 | file object: 0xffff94895fe92c40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Browser Link\Microsoft.WebTools.BrowserLink.Contracts.dll
pool: 0xffff94895fe92d50 | file object: 0xffff94895fe92dd0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-monokai-dim
pool: 0xffff94895fe93070 | file object: 0xffff94895fe930f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.TextManager.Interop.11.0.dll
pool: 0xffff94895fe93200 | file object: 0xffff94895fe93280 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe93390 | file object: 0xffff94895fe93410 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe93520 | file object: 0xffff94895fe935a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\make\package.json
pool: 0xffff94895fe936b0 | file object: 0xffff94895fe93730 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\npm\package.json
pool: 0xffff94895fe93840 | file object: 0xffff94895fe938c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe939d0 | file object: 0xffff94895fe93a50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe93b60 | file object: 0xffff94895fe93be0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe93cf0 | file object: 0xffff94895fe93d70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe94010 | file object: 0xffff94895fe94090 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe941a0 | file object: 0xffff94895fe94220 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe94330 | file object: 0xffff94895fe943b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.DesignTools.XamlLanguageServiceBase.dll
pool: 0xffff94895fe944c0 | file object: 0xffff94895fe94540 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe94650 | file object: 0xffff94895fe946d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Modeling.Sdk.Diagrams.15.0.dll
pool: 0xffff94895fe947e0 | file object: 0xffff94895fe94860 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Publish\Microsoft.Publish.Framework.Contracts.dll
pool: 0xffff94895fe94970 | file object: 0xffff94895fe949f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe94b00 | file object: 0xffff94895fe94b80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe94c90 | file object: 0xffff94895fe94d10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\Microsoft.WebTools.Azure.Publish.dll
pool: 0xffff94895fe94e20 | file object: 0xffff94895fe94ea0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Modeling.Sdk.15.0.dll
pool: 0xffff94895fe95140 | file object: 0xffff94895fe951c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CallHierarchy\Microsoft.VisualStudio.Language.CallHierarchy.dll
pool: 0xffff94895fe952d0 | file object: 0xffff94895fe95350 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\Microsoft.WebTools.Azure.Contracts.dll
pool: 0xffff94895fe95460 | file object: 0xffff94895fe954e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.DesignTools.DesignerContractBase.dll
pool: 0xffff94895fe955f0 | file object: 0xffff94895fe95670 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Web.PublishContract.dll
pool: 0xffff94895fe95780 | file object: 0xffff94895fe95800 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Web.PublishContract.dll
pool: 0xffff94895fe95910 | file object: 0xffff94895fe95990 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe95aa0 | file object: 0xffff94895fe95b20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe95c30 | file object: 0xffff94895fe95cb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe95dc0 | file object: 0xffff94895fe95e40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe960e0 | file object: 0xffff94895fe96160 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.CodeStore.Internal.dll
pool: 0xffff94895fe96270 | file object: 0xffff94895fe962f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe96400 | file object: 0xffff94895fe96480 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.DesignTools.DesignerContractBase.dll
pool: 0xffff94895fe96590 | file object: 0xffff94895fe96610 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Publish\Environments\Microsoft.WebTools.Environments.dll
pool: 0xffff94895fe96720 | file object: 0xffff94895fe967a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\Microsoft.WebTools.Azure.VS.dll
pool: 0xffff94895fe968b0 | file object: 0xffff94895fe96930 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\objective-c\package.json
pool: 0xffff94895fe96a40 | file object: 0xffff94895fe96ac0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe96bd0 | file object: 0xffff94895fe96c50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe96d60 | file object: 0xffff94895fe96de0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.LanguageServer.Protocol.dll
pool: 0xffff94895fe97080 | file object: 0xffff94895fe97100 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe97210 | file object: 0xffff94895fe97290 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Json.dll
pool: 0xffff94895fe973a0 | file object: 0xffff94895fe97420 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.UniversalApps.Deployment.dll
pool: 0xffff94895fe97530 | file object: 0xffff94895fe975b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\UniversalFlavor\Microsoft.VisualStudio.UniversalLibrary.dll
pool: 0xffff94895fe976c0 | file object: 0xffff94895fe97740 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\Microsoft.VisualStudio.LanguageServices.Razor.dll
pool: 0xffff94895fe97850 | file object: 0xffff94895fe978d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe979e0 | file object: 0xffff94895fe97a60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NavigateTo\Microsoft.VisualStudio.Language.NavigateTo.Implementation.dll
pool: 0xffff94895fe97b70 | file object: 0xffff94895fe97bf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\nuyyjiec.xhl\Microsoft.VisualStudio.Containers.Tools.Common.dll
pool: 0xffff94895fe97d00 | file object: 0xffff94895fe97d80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VSDesigner.WCF.dll
pool: 0xffff94895fe98020 | file object: 0xffff94895fe980a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Web.Application.dll
pool: 0xffff94895fe981b0 | file object: 0xffff94895fe98230 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.ProjectFlavoring.dll
pool: 0xffff94895fe98340 | file object: 0xffff94895fe983c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Shell.Interop.12.0.dll
pool: 0xffff94895fe984d0 | file object: 0xffff94895fe98550 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe98660 | file object: 0xffff94895fe986e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Shell.Interop.12.0.dll
pool: 0xffff94895fe987f0 | file object: 0xffff94895fe98870 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe98980 | file object: 0xffff94895fe98a00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.VC.RecommendationProvider.dll
pool: 0xffff94895fe98b10 | file object: 0xffff94895fe98b90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe98ca0 | file object: 0xffff94895fe98d20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.RemoteControl.dll
pool: 0xffff94895fe98e30 | file object: 0xffff94895fe98eb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.WCFReference.Interop.dll
pool: 0xffff94895fe99150 | file object: 0xffff94895fe991d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VSDesigner.WCF.dll
pool: 0xffff94895fe992e0 | file object: 0xffff94895fe99360 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.Azure.ActiveDirectory.GraphClient.FirstParty.dll
pool: 0xffff94895fe99470 | file object: 0xffff94895fe994f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Debugger.Interop.Internal.dll
pool: 0xffff94895fe99600 | file object: 0xffff94895fe99680 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\VSLangProj.dll
pool: 0xffff94895fe99790 | file object: 0xffff94895fe99810 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe99920 | file object: 0xffff94895fe999a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Platform.VSEditor.dll
pool: 0xffff94895fe99ab0 | file object: 0xffff94895fe99b30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe99c40 | file object: 0xffff94895fe99cc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe99dd0 | file object: 0xffff94895fe99e50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9a0f0 | file object: 0xffff94895fe9a170 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\templateManifest0.1033.vstman
pool: 0xffff94895fe9a280 | file object: 0xffff94895fe9a300 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\EBF\Microsoft.VisualStudio.Workspace.ExternalBuildFramework.TestContracts.dll
pool: 0xffff94895fe9a410 | file object: 0xffff94895fe9a490 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Text.Internal.dll
pool: 0xffff94895fe9a5a0 | file object: 0xffff94895fe9a620 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9a730 | file object: 0xffff94895fe9a7b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9a8c0 | file object: 0xffff94895fe9a940 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9aa50 | file object: 0xffff94895fe9aad0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9abe0 | file object: 0xffff94895fe9ac60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9ad70 | file object: 0xffff94895fe9adf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9b090 | file object: 0xffff94895fe9b110 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895fe9b220 | file object: 0xffff94895fe9b2a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9b3b0 | file object: 0xffff94895fe9b430 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestWindow\Microsoft.VisualStudio.TestWindow.Core.dll
pool: 0xffff94895fe9b540 | file object: 0xffff94895fe9b5c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestWindow\Microsoft.VisualStudio.TestWindow.Internal.dll
pool: 0xffff94895fe9b6d0 | file object: 0xffff94895fe9b750 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kuukjpxv.jrk\ProjectTemplates\templateManifest0.noloc.vstman
pool: 0xffff94895fe9b860 | file object: 0xffff94895fe9b8e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9b9f0 | file object: 0xffff94895fe9ba70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9bb80 | file object: 0xffff94895fe9bc00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9bd10 | file object: 0xffff94895fe9bd90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.Core.dll
pool: 0xffff94895fe9c030 | file object: 0xffff94895fe9c0b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9c1c0 | file object: 0xffff94895fe9c240 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9c350 | file object: 0xffff94895fe9c3d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9c4e0 | file object: 0xffff94895fe9c560 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895fe9c670 | file object: 0xffff94895fe9c6f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe9c800 | file object: 0xffff94895fe9c880 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9c990 | file object: 0xffff94895fe9ca10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Resource Manager\Microsoft.VisualStudio.Azure.ResourceManager.Common.dll
pool: 0xffff94895fe9cb20 | file object: 0xffff94895fe9cba0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.DataDesign.Interfaces.dll
pool: 0xffff94895fe9ccb0 | file object: 0xffff94895fe9cd30 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V0c1ea960#\523deb4c222d8a15fc739fb29d83760f\Microsoft.VisualStudio.Platform.VSEditor.ni.dll.aux
pool: 0xffff94895fe9ce40 | file object: 0xffff94895fe9cec0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895fe9d160 | file object: 0xffff94895fe9d1e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Templates.CS.ManagedCore.Resources.en-US.Project..vstman
pool: 0xffff94895fe9d2f0 | file object: 0xffff94895fe9d370 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Templates.CS.ManagedWeb.Shared.Project..vstman
pool: 0xffff94895fe9d480 | file object: 0xffff94895fe9d500 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\nuyyjiec.xhl\Microsoft.VisualStudio.Containers.Tools.Common.Package.dll
pool: 0xffff94895fe9d610 | file object: 0xffff94895fe9d690 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.SolutionRestoreManager.dll
pool: 0xffff94895fe9d7a0 | file object: 0xffff94895fe9d820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9d930 | file object: 0xffff94895fe9d9b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\nuyyjiec.xhl\Microsoft.VisualStudio.Containers.Tools.Extensions.Shared.dll
pool: 0xffff94895fe9dac0 | file object: 0xffff94895fe9db40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9dc50 | file object: 0xffff94895fe9dcd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9dde0 | file object: 0xffff94895fe9de60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9e100 | file object: 0xffff94895fe9e180 | offsetby: 0x80
\$Directory
pool: 0xffff94895fe9e290 | file object: 0xffff94895fe9e310 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V68a56f61#\db66e07b814f5d2beb116bcdb0f97f80\Microsoft.VisualStudio.Text.Internal.ni.dll.aux
pool: 0xffff94895fe9e420 | file object: 0xffff94895fe9e4a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\nuyyjiec.xhl\Microsoft.VisualStudio.Containers.Tools.Common.dll
pool: 0xffff94895fe9e5b0 | file object: 0xffff94895fe9e630 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.VisualStudio.Common.dll
pool: 0xffff94895fe9e740 | file object: 0xffff94895fe9e7c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9e8d0 | file object: 0xffff94895fe9e950 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\aepxgmna.u04\Microsoft.VisualStudio.Debugger.DebugAdapterHost.Interfaces.dll
pool: 0xffff94895fe9ea60 | file object: 0xffff94895fe9eae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9ebf0 | file object: 0xffff94895fe9ec70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Text.Internal.dll
pool: 0xffff94895fe9ed80 | file object: 0xffff94895fe9ee00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\nuyyjiec.xhl\Microsoft.VisualStudio.Containers.Tools.Common.Package.dll
pool: 0xffff94895fe9f0a0 | file object: 0xffff94895fe9f120 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9f230 | file object: 0xffff94895fe9f2b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Json.Editor.dll
pool: 0xffff94895fe9f3c0 | file object: 0xffff94895fe9f440 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Azure.ResourceManager.Tools.Project..vstman
pool: 0xffff94895fe9f550 | file object: 0xffff94895fe9f5d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Azure.Waverton.Projects.Project..vstman
pool: 0xffff94895fe9f6e0 | file object: 0xffff94895fe9f760 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.DesktopBridge.Tools.Resources.en-US.Project..vstman
pool: 0xffff94895fe9f870 | file object: 0xffff94895fe9f8f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.Protocol.dll
pool: 0xffff94895fe9fa00 | file object: 0xffff94895fe9fa80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fe9fb90 | file object: 0xffff94895fe9fc10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\SourceBasedTestDiscovery\Microsoft.CodeAnalysis.UnitTesting.SourceBasedTestDiscovery.dll
pool: 0xffff94895fe9fd20 | file object: 0xffff94895fe9fda0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Extensions.dll
pool: 0xffff94895fea0040 | file object: 0xffff94895fea00c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.Configuration.dll
pool: 0xffff94895fea01d0 | file object: 0xffff94895fea0250 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.Configuration.dll
pool: 0xffff94895fea0360 | file object: 0xffff94895fea03e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.PackageManagement.VisualStudio.dll
pool: 0xffff94895fea04f0 | file object: 0xffff94895fea0570 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Library Manager\Microsoft.Web.LibraryManager.Contracts.dll
pool: 0xffff94895fea0680 | file object: 0xffff94895fea0700 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\Microsoft.VisualStudio.Workspace.Extensions.dll
pool: 0xffff94895fea0810 | file object: 0xffff94895fea0890 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Templates.CS.Shared.Resources.en-US.Project..vstman
pool: 0xffff94895fea09a0 | file object: 0xffff94895fea0a20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\aepxgmna.u04\Microsoft.VisualStudio.Debugger.DebugAdapterHost.Interfaces.dll
pool: 0xffff94895fea0b30 | file object: 0xffff94895fea0bb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.TestTools.Templates.Managed.Resources.en-US.Project..vstman
pool: 0xffff94895fea0cc0 | file object: 0xffff94895fea0d40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea0e50 | file object: 0xffff94895fea0ed0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\Microsoft.VisualStudio.Workspace.Extensions.dll
pool: 0xffff94895fea1170 | file object: 0xffff94895fea11f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea1300 | file object: 0xffff94895fea1380 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea1490 | file object: 0xffff94895fea1510 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\VSLangProj80.dll
pool: 0xffff94895fea1620 | file object: 0xffff94895fea16a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\aepxgmna.u04\Microsoft.VisualStudio.Shared.VSCodeDebugProtocol.dll
pool: 0xffff94895fea17b0 | file object: 0xffff94895fea1830 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\VSLangProj2.dll
pool: 0xffff94895fea1940 | file object: 0xffff94895fea19c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.Console.dll
pool: 0xffff94895fea1ad0 | file object: 0xffff94895fea1b50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea1c60 | file object: 0xffff94895fea1ce0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea1df0 | file object: 0xffff94895fea1e70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea2110 | file object: 0xffff94895fea2190 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\Microsoft.VisualStudio.Workspace.Implementation.dll
pool: 0xffff94895fea22a0 | file object: 0xffff94895fea2320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea2430 | file object: 0xffff94895fea24b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea25c0 | file object: 0xffff94895fea2640 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea2750 | file object: 0xffff94895fea27d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Templates.CS.Shared.Project..vstman
pool: 0xffff94895fea28e0 | file object: 0xffff94895fea2960 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\Microsoft.VisualStudio.Debugger.UI.Interfaces.dll
pool: 0xffff94895fea2a70 | file object: 0xffff94895fea2af0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Search\Microsoft.VisualStudio.Search.dll
pool: 0xffff94895fea2c00 | file object: 0xffff94895fea2c80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Templates.CS.Wpf.Resources.en-US.Project..vstman
pool: 0xffff94895fea2d90 | file object: 0xffff94895fea2e10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Scaffolding\Microsoft.WebTools.Scaffolding.Core.dll
pool: 0xffff94895fea30b0 | file object: 0xffff94895fea3130 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Templates.CS.Winforms.en-US.Project..vstman
pool: 0xffff94895fea3240 | file object: 0xffff94895fea32c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Utilities.dll
pool: 0xffff94895fea33d0 | file object: 0xffff94895fea3450 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Automation\v4.0_3.0.0.0__31bf3856ad364e35\System.Management.Automation.dll
pool: 0xffff94895fea3560 | file object: 0xffff94895fea35e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea36f0 | file object: 0xffff94895fea3770 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.WebTools.DotNet.ProjectTemplates.Project..vstman
pool: 0xffff94895fea3880 | file object: 0xffff94895fea3900 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.WebTools.ProjectTemplates.Project..vstman
pool: 0xffff94895fea3a10 | file object: 0xffff94895fea3a90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895fea3ba0 | file object: 0xffff94895fea3c20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Nerdbank.Streams.2.x\Nerdbank.Streams.dll
pool: 0xffff94895fea3d30 | file object: 0xffff94895fea3db0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\Wizards\Microsoft.VC.Wizards.dll
pool: 0xffff94895fea4050 | file object: 0xffff94895fea40d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea41e0 | file object: 0xffff94895fea4260 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Search\Microsoft.VisualStudio.Platform.SearchProviders.dll
pool: 0xffff94895fea4370 | file object: 0xffff94895fea43f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\TaskRunnerExplorer\Microsoft.WebTools.TaskRunnerExplorer.Contracts.dll
pool: 0xffff94895fea4500 | file object: 0xffff94895fea4580 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea4690 | file object: 0xffff94895fea4710 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.VC.CMake.Project.Project..vstman
pool: 0xffff94895fea4820 | file object: 0xffff94895fea48a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.VC.Ide.ATL.Project..vstman
pool: 0xffff94895fea49b0 | file object: 0xffff94895fea4a30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.ProductKeyDialog.dll
pool: 0xffff94895fea4b40 | file object: 0xffff94895fea4bc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\TaskRunnerExplorer\Microsoft.VisualStudio.TaskRunnerExplorer.14.0.dll
pool: 0xffff94895fea4cd0 | file object: 0xffff94895fea4d50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.VC.Ide.MDD.Project..vstman
pool: 0xffff94895fea4e60 | file object: 0xffff94895fea4ee0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.S5aeb222a#\669c764fff7b343d0a3c4e96a2cc6f40\Microsoft.ServiceHub.Client.ni.dll.aux
pool: 0xffff94895fea5180 | file object: 0xffff94895fea5200 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Nerdbank.Streams\b4a91d27662d50e6e3d953b0a1033bde\Nerdbank.Streams.ni.dll.aux
pool: 0xffff94895fea5310 | file object: 0xffff94895fea5390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea54a0 | file object: 0xffff94895fea5520 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.VC.Templates.Desktop.Project..vstman
pool: 0xffff94895fea5630 | file object: 0xffff94895fea56b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.ExtensionsExplorer.dll
pool: 0xffff94895fea57c0 | file object: 0xffff94895fea5840 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea5950 | file object: 0xffff94895fea59d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ServiceHubClient\Microsoft.ServiceHub.Client.dll
pool: 0xffff94895fea5ae0 | file object: 0xffff94895fea5b60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.VC.Templates.Pro.Project..vstman
pool: 0xffff94895fea5c70 | file object: 0xffff94895fea5cf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.VC.Templates.UnitTest.Project..vstman
pool: 0xffff94895fea5e00 | file object: 0xffff94895fea5e80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Debugger.Interop.Internal.dll
pool: 0xffff94895fea6120 | file object: 0xffff94895fea61a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.ExtensionsExplorer.UI.dll
pool: 0xffff94895fea62b0 | file object: 0xffff94895fea6330 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.WebTools.Azure.Templates.Project..vstman
pool: 0xffff94895fea6440 | file object: 0xffff94895fea64c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea65d0 | file object: 0xffff94895fea6650 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Publish\Environments\Microsoft.WebTools.Environments.VS.dll
pool: 0xffff94895fea6760 | file object: 0xffff94895fea67e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Git.CoreServices.dll
pool: 0xffff94895fea68f0 | file object: 0xffff94895fea6970 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Git.Controls.dll
pool: 0xffff94895fea6a80 | file object: 0xffff94895fea6b00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\Wizards\Microsoft.VC.Wizards.dll
pool: 0xffff94895fea6c10 | file object: 0xffff94895fea6c90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\StreamJsonRpc.1.x\StreamJsonRpc.dll
pool: 0xffff94895fea6da0 | file object: 0xffff94895fea6e20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea70c0 | file object: 0xffff94895fea7140 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Search\Microsoft.VisualStudio.Search.dll
pool: 0xffff94895fea7250 | file object: 0xffff94895fea72d0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.InteropServices.RuntimeInformation\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.InteropServices.RuntimeInformation.dll
pool: 0xffff94895fea73e0 | file object: 0xffff94895fea7460 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\Microsoft.VisualStudio.Workspace.Implementation.dll
pool: 0xffff94895fea7570 | file object: 0xffff94895fea75f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Telemetry.dll
pool: 0xffff94895fea7700 | file object: 0xffff94895fea7780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea7890 | file object: 0xffff94895fea7910 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.DiffBase.Contracts.dll
pool: 0xffff94895fea7a20 | file object: 0xffff94895fea7aa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea7bb0 | file object: 0xffff94895fea7c30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\LanguageServer\Microsoft.VisualStudio.LanguageServer.Client.Implementation.dll
pool: 0xffff94895fea7d40 | file object: 0xffff94895fea7dc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea8060 | file object: 0xffff94895fea80e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea81f0 | file object: 0xffff94895fea8270 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea8380 | file object: 0xffff94895fea8400 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea8510 | file object: 0xffff94895fea8590 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea86a0 | file object: 0xffff94895fea8720 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\SolutionTemplates\blank.vsdir
pool: 0xffff94895fea8830 | file object: 0xffff94895fea88b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\templateManifest1.2052.vstman
pool: 0xffff94895fea89c0 | file object: 0xffff94895fea8a40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.CodeReview.dll
pool: 0xffff94895fea8b50 | file object: 0xffff94895fea8bd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Search\Microsoft.VisualStudio.Search.Implementation.dll
pool: 0xffff94895fea8ce0 | file object: 0xffff94895fea8d60 | offsetby: 0x80
\Windows\assembly\GAC\stdole\7.0.3300.0__b03f5f7f11d50a3a\stdole.dll
pool: 0xffff94895fea8e70 | file object: 0xffff94895fea8ef0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\Storage\Microsoft.VisualStudio.ConnectedServices.Azure.Storage.dll
pool: 0xffff94895fea9000 | file object: 0xffff94895fea9080 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.Commenting.Contracts.dll
pool: 0xffff94895fea9190 | file object: 0xffff94895fea9210 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea9320 | file object: 0xffff94895fea93a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Git.Contracts.dll
pool: 0xffff94895fea94b0 | file object: 0xffff94895fea9530 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\TaskRunnerExplorer\Microsoft.WebTools.TaskRunnerExplorer.Contracts.dll
pool: 0xffff94895fea9640 | file object: 0xffff94895fea96c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\ProjectTemplates\SSDT\SSDT.vsdir
pool: 0xffff94895fea97d0 | file object: 0xffff94895fea9850 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fea9960 | file object: 0xffff94895fea99e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\Microsoft.WebTools.Azure.Contracts.dll
pool: 0xffff94895fea9af0 | file object: 0xffff94895fea9b70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\templateManifest10.1029.vstman
pool: 0xffff94895fea9c80 | file object: 0xffff94895fea9d00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\AzureSDK\2.0.0.0\Microsoft.Rest.ClientRuntime.dll
pool: 0xffff94895fea9e10 | file object: 0xffff94895fea9e90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feaa130 | file object: 0xffff94895feaa1b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feaa2c0 | file object: 0xffff94895feaa340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feaa450 | file object: 0xffff94895feaa4d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\templateManifest12.1045.vstman
pool: 0xffff94895feaa5e0 | file object: 0xffff94895feaa660 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feaa770 | file object: 0xffff94895feaa7f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Shared.dll
pool: 0xffff94895feaa900 | file object: 0xffff94895feaa980 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.VisualStudio.Implementation.dll
pool: 0xffff94895feaaa90 | file object: 0xffff94895feaab10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feaac20 | file object: 0xffff94895feaaca0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\templateManifest13.1055.vstman
pool: 0xffff94895feaadb0 | file object: 0xffff94895feaae30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feab0d0 | file object: 0xffff94895feab150 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\templateManifest2.1028.vstman
pool: 0xffff94895feab260 | file object: 0xffff94895feab2e0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.IO.Compression\v4.0_4.0.0.0__b77a5c561934e089\System.IO.Compression.dll
pool: 0xffff94895feab3f0 | file object: 0xffff94895feab470 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\templateManifest3.1031.vstman
pool: 0xffff94895feab580 | file object: 0xffff94895feab600 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Package.LanguageService.15.0.dll
pool: 0xffff94895feab710 | file object: 0xffff94895feab790 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feab8a0 | file object: 0xffff94895feab920 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feaba30 | file object: 0xffff94895feabab0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feabbc0 | file object: 0xffff94895feabc40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Git.Contracts.dll
pool: 0xffff94895feabd50 | file object: 0xffff94895feabdd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feac070 | file object: 0xffff94895feac0f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feac200 | file object: 0xffff94895feac280 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feac390 | file object: 0xffff94895feac410 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\templateManifest4.3082.vstman
pool: 0xffff94895feac520 | file object: 0xffff94895feac5a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895feac6b0 | file object: 0xffff94895feac730 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feac840 | file object: 0xffff94895feac8c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.VisualStudio.dll
pool: 0xffff94895feac9d0 | file object: 0xffff94895feaca50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feacb60 | file object: 0xffff94895feacbe0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\templateManifest8.1042.vstman
pool: 0xffff94895feaccf0 | file object: 0xffff94895feacd70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fead010 | file object: 0xffff94895fead090 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fead1a0 | file object: 0xffff94895fead220 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\1ta1utvq.5rj\Microsoft.Templates.Core.dll
pool: 0xffff94895fead330 | file object: 0xffff94895fead3b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\templateManifest9.1049.vstman
pool: 0xffff94895fead4c0 | file object: 0xffff94895fead540 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fead650 | file object: 0xffff94895fead6d0 | offsetby: 0x80
\Windows\System32\adsldpc.dll
pool: 0xffff94895fead7e0 | file object: 0xffff94895fead860 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895fead970 | file object: 0xffff94895fead9f0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\CustomMarshalers\7f900344403fdc1a677cb6b77504f8cf\CustomMarshalers.ni.dll.aux
pool: 0xffff94895feadb00 | file object: 0xffff94895feadb80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feadc90 | file object: 0xffff94895feadd10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feade20 | file object: 0xffff94895feadea0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Dired13b18a9#\eeed02aba684e7c50c927553cb11c31e\System.DirectoryServices.ni.dll
pool: 0xffff94895feae140 | file object: 0xffff94895feae1c0 | offsetby: 0x80
\Windows\System32\activeds.tlb
pool: 0xffff94895feae2d0 | file object: 0xffff94895feae350 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feae460 | file object: 0xffff94895feae4e0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\CustomMarshalers\7f900344403fdc1a677cb6b77504f8cf\CustomMarshalers.ni.dll
pool: 0xffff94895feae5f0 | file object: 0xffff94895feae670 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\1ta1utvq.5rj\Microsoft.Templates.Extensions.2019.dll
pool: 0xffff94895feae780 | file object: 0xffff94895feae800 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feae910 | file object: 0xffff94895feae990 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feaeaa0 | file object: 0xffff94895feaeb20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feaec30 | file object: 0xffff94895feaecb0 | offsetby: 0x80
\Windows\System32\activeds.dll
pool: 0xffff94895feaedc0 | file object: 0xffff94895feaee40 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.DirectoryServices.AccountManagement\v4.0_4.0.0.0__b77a5c561934e089\System.DirectoryServices.AccountManagement.dll
pool: 0xffff94895feaf0e0 | file object: 0xffff94895feaf160 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feaf270 | file object: 0xffff94895feaf2f0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Dired13b18a9#\eeed02aba684e7c50c927553cb11c31e\System.DirectoryServices.ni.dll.aux
pool: 0xffff94895feaf400 | file object: 0xffff94895feaf480 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\templateManifest5.1036.vstman
pool: 0xffff94895feaf590 | file object: 0xffff94895feaf610 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895feaf720 | file object: 0xffff94895feaf7a0 | offsetby: 0x80
\Windows\System32\adsnt.dll
pool: 0xffff94895feaf8b0 | file object: 0xffff94895feaf930 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\templateManifest7.1041.vstman
pool: 0xffff94895feafa40 | file object: 0xffff94895feafac0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feafbd0 | file object: 0xffff94895feafc50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\templateManifest6.1040.vstman
pool: 0xffff94895feafd60 | file object: 0xffff94895feafde0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb0080 | file object: 0xffff94895feb0100 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\Microsoft.WebTools.Azure.Client.dll
pool: 0xffff94895feb0210 | file object: 0xffff94895feb0290 | offsetby: 0x80
\$Directory
pool: 0xffff94895feb03a0 | file object: 0xffff94895feb0420 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb0530 | file object: 0xffff94895feb05b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\Microsoft.VisualStudio.Debugger.UI.Interfaces.dll
pool: 0xffff94895feb06c0 | file object: 0xffff94895feb0740 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.WebClient.Diagnostics.Services.dll
pool: 0xffff94895feb0850 | file object: 0xffff94895feb08d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb09e0 | file object: 0xffff94895feb0a60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.TextManager.Interop.12.0.dll
pool: 0xffff94895feb0b70 | file object: 0xffff94895feb0bf0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_64\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
pool: 0xffff94895feb0d00 | file object: 0xffff94895feb0d80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb1020 | file object: 0xffff94895feb10a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb11b0 | file object: 0xffff94895feb1230 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb1340 | file object: 0xffff94895feb13c0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_64\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
pool: 0xffff94895feb14d0 | file object: 0xffff94895feb1550 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb1660 | file object: 0xffff94895feb16e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TemplateEngine\Microsoft.VisualStudio.TemplateEngine.Shared.dll
pool: 0xffff94895feb17f0 | file object: 0xffff94895feb1870 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb1980 | file object: 0xffff94895feb1a00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb1b10 | file object: 0xffff94895feb1b90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb1ca0 | file object: 0xffff94895feb1d20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb1e30 | file object: 0xffff94895feb1eb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb2150 | file object: 0xffff94895feb21d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.CSharp.EditorFeatures.dll
pool: 0xffff94895feb22e0 | file object: 0xffff94895feb2360 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TemplateEngine\Microsoft.VisualStudio.TemplateEngine.VS.dll
pool: 0xffff94895feb2470 | file object: 0xffff94895feb24f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb2600 | file object: 0xffff94895feb2680 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Debugger.InteropA.dll
pool: 0xffff94895feb2790 | file object: 0xffff94895feb2810 | offsetby: 0x80
\$Directory
pool: 0xffff94895feb2920 | file object: 0xffff94895feb29a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb2ab0 | file object: 0xffff94895feb2b30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb2c40 | file object: 0xffff94895feb2cc0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.Extensions\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.Extensions.dll
pool: 0xffff94895feb2dd0 | file object: 0xffff94895feb2e50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb30f0 | file object: 0xffff94895feb3170 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb3280 | file object: 0xffff94895feb3300 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb3410 | file object: 0xffff94895feb3490 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb35a0 | file object: 0xffff94895feb3620 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.ApplicationInsights.Interfaces.dll
pool: 0xffff94895feb3730 | file object: 0xffff94895feb37b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895feb38c0 | file object: 0xffff94895feb3940 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb3a50 | file object: 0xffff94895feb3ad0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb3be0 | file object: 0xffff94895feb3c60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb3d70 | file object: 0xffff94895feb3df0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb4090 | file object: 0xffff94895feb4110 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\e1xcjrpa.qg3\Microsoft.VisualStudio.Docker.Compose.dll
pool: 0xffff94895feb4220 | file object: 0xffff94895feb42a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb43b0 | file object: 0xffff94895feb4430 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb4540 | file object: 0xffff94895feb45c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.PackageManagement.UI.dll
pool: 0xffff94895feb46d0 | file object: 0xffff94895feb4750 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895feb4860 | file object: 0xffff94895feb48e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.ContextManagement.Public.dll
pool: 0xffff94895feb49f0 | file object: 0xffff94895feb4a70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb4b80 | file object: 0xffff94895feb4c00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb4d10 | file object: 0xffff94895feb4d90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb5030 | file object: 0xffff94895feb50b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb51c0 | file object: 0xffff94895feb5240 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Web.HTML.dll
pool: 0xffff94895feb5350 | file object: 0xffff94895feb53d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\mhdggq4k.qg3\Microsoft.VisualStudio.Containers.Tools.Common.Package.dll
pool: 0xffff94895feb54e0 | file object: 0xffff94895feb5560 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\mhdggq4k.qg3\Microsoft.VisualStudio.Containers.Tools.Common.dll
pool: 0xffff94895feb5670 | file object: 0xffff94895feb56f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb5800 | file object: 0xffff94895feb5880 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb5990 | file object: 0xffff94895feb5a10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb5b20 | file object: 0xffff94895feb5ba0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb5cb0 | file object: 0xffff94895feb5d30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb5e40 | file object: 0xffff94895feb5ec0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_32\System.Web\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Web.dll
pool: 0xffff94895feb6160 | file object: 0xffff94895feb61e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895feb62f0 | file object: 0xffff94895feb6370 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb6480 | file object: 0xffff94895feb6500 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\mhdggq4k.qg3\Microsoft.VisualStudio.Containers.Tools.Common.Package.dll
pool: 0xffff94895feb6610 | file object: 0xffff94895feb6690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb67a0 | file object: 0xffff94895feb6820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb6930 | file object: 0xffff94895feb69b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb6ac0 | file object: 0xffff94895feb6b40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.GraphModel.dll
pool: 0xffff94895feb6c50 | file object: 0xffff94895feb6cd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.CSharp.Features.dll
pool: 0xffff94895feb6de0 | file object: 0xffff94895feb6e60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\mhdggq4k.qg3\Microsoft.VisualStudio.Containers.Tools.Common.dll
pool: 0xffff94895feb7100 | file object: 0xffff94895feb7180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb7290 | file object: 0xffff94895feb7310 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb7420 | file object: 0xffff94895feb74a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Web.Application.dll
pool: 0xffff94895feb75b0 | file object: 0xffff94895feb7630 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.Commenting.Presentation.dll
pool: 0xffff94895feb7740 | file object: 0xffff94895feb77c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb78d0 | file object: 0xffff94895feb7950 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb7a60 | file object: 0xffff94895feb7ae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb7bf0 | file object: 0xffff94895feb7c70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.DiffBase.Contracts.dll
pool: 0xffff94895feb7d80 | file object: 0xffff94895feb7e00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb80a0 | file object: 0xffff94895feb8120 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb8230 | file object: 0xffff94895feb82b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb83c0 | file object: 0xffff94895feb8440 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb8550 | file object: 0xffff94895feb85d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb86e0 | file object: 0xffff94895feb8760 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb8870 | file object: 0xffff94895feb88f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb8a00 | file object: 0xffff94895feb8a80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb8b90 | file object: 0xffff94895feb8c10 | offsetby: 0x80
\$Directory
pool: 0xffff94895feb8d20 | file object: 0xffff94895feb8da0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\EventsViewer\Microsoft.DiagnosticsHub.EventsViewerTool.dll
pool: 0xffff94895feb9040 | file object: 0xffff94895feb90c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\envdte80.dll
pool: 0xffff94895feb91d0 | file object: 0xffff94895feb9250 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.LanguageServer.Protocol.16.2\Microsoft.VisualStudio.LanguageServer.Protocol.dll
pool: 0xffff94895feb9360 | file object: 0xffff94895feb93e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895feb94f0 | file object: 0xffff94895feb9570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb9680 | file object: 0xffff94895feb9700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb9810 | file object: 0xffff94895feb9890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb99a0 | file object: 0xffff94895feb9a20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895feb9b30 | file object: 0xffff94895feb9bb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb9cc0 | file object: 0xffff94895feb9d40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feb9e50 | file object: 0xffff94895feb9ed0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895feba170 | file object: 0xffff94895feba1f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feba300 | file object: 0xffff94895feba380 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feba490 | file object: 0xffff94895feba510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895feba620 | file object: 0xffff94895feba6a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\CodeSense\Framework\Microsoft.VisualStudio.CodeSense.Common.dll
pool: 0xffff94895feba7b0 | file object: 0xffff94895feba830 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.ExternalAccess.Razor.dll
pool: 0xffff94895feba940 | file object: 0xffff94895feba9c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febaad0 | file object: 0xffff94895febab50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\3n5v0kzv.e5c\ProjectTemplates\templateManifest0.noloc.vstman
pool: 0xffff94895febac60 | file object: 0xffff94895febace0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febadf0 | file object: 0xffff94895febae70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\Microsoft.VisualStudio.Containers.Tools.Common.Package.dll
pool: 0xffff94895febb110 | file object: 0xffff94895febb190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febb2a0 | file object: 0xffff94895febb320 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\Microsoft.VisualStudio.LanguageServer.Protocol.dll
pool: 0xffff94895febb430 | file object: 0xffff94895febb4b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\OmniSharp.Extensions.LanguageProtocol.dll
pool: 0xffff94895febb5c0 | file object: 0xffff94895febb640 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\OmniSharp.Extensions.JsonRpc.dll
pool: 0xffff94895febb750 | file object: 0xffff94895febb7d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febb8e0 | file object: 0xffff94895febb960 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febba70 | file object: 0xffff94895febbaf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\Microsoft.VisualStudio.LiveShare.Razor.dll
pool: 0xffff94895febbc00 | file object: 0xffff94895febbc80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Publish\Microsoft.VisualStudio.Web.Publish.Contracts.dll
pool: 0xffff94895febbd90 | file object: 0xffff94895febbe10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.TextManager.Interop.10.0.dll
pool: 0xffff94895febc0b0 | file object: 0xffff94895febc130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febc240 | file object: 0xffff94895febc2c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895febc3d0 | file object: 0xffff94895febc450 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febc560 | file object: 0xffff94895febc5e0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\perl\package.json
pool: 0xffff94895febc6f0 | file object: 0xffff94895febc770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febc880 | file object: 0xffff94895febc900 | offsetby: 0x80
\$Directory
pool: 0xffff94895febca10 | file object: 0xffff94895febca90 | offsetby: 0x80
\$Directory
pool: 0xffff94895febcba0 | file object: 0xffff94895febcc20 | offsetby: 0x80
\$Directory
pool: 0xffff94895febcd30 | file object: 0xffff94895febcdb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febd050 | file object: 0xffff94895febd0d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febd1e0 | file object: 0xffff94895febd260 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febd370 | file object: 0xffff94895febd3f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febd500 | file object: 0xffff94895febd580 | offsetby: 0x80
\$Directory
pool: 0xffff94895febd690 | file object: 0xffff94895febd710 | offsetby: 0x80
\$Directory
pool: 0xffff94895febd820 | file object: 0xffff94895febd8a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.TemplateProviders.Implementation.dll
pool: 0xffff94895febd9b0 | file object: 0xffff94895febda30 | offsetby: 0x80
\$Directory
pool: 0xffff94895febdb40 | file object: 0xffff94895febdbc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febdcd0 | file object: 0xffff94895febdd50 | offsetby: 0x80
\$Directory
pool: 0xffff94895febde60 | file object: 0xffff94895febdee0 | offsetby: 0x80
\$Directory
pool: 0xffff94895febe180 | file object: 0xffff94895febe200 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895febe310 | file object: 0xffff94895febe390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febe4a0 | file object: 0xffff94895febe520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febe630 | file object: 0xffff94895febe6b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febe7c0 | file object: 0xffff94895febe840 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895febe950 | file object: 0xffff94895febe9d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895febeae0 | file object: 0xffff94895febeb60 | offsetby: 0x80
\$Directory
pool: 0xffff94895febec70 | file object: 0xffff94895febecf0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\extension-900ddfdf6d3b237ee2bed3762f0e96b0.code
pool: 0xffff94895febee00 | file object: 0xffff94895febee80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febf120 | file object: 0xffff94895febf1a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ProjectSystemQuery\Microsoft.VisualStudio.ProjectSystem.Query.dll
pool: 0xffff94895febf2b0 | file object: 0xffff94895febf330 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febf440 | file object: 0xffff94895febf4c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febf5d0 | file object: 0xffff94895febf650 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895febf760 | file object: 0xffff94895febf7e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895febf8f0 | file object: 0xffff94895febf970 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895febfa80 | file object: 0xffff94895febfb00 | offsetby: 0x80
\$Directory
pool: 0xffff94895febfc10 | file object: 0xffff94895febfc90 | offsetby: 0x80
\$Directory
pool: 0xffff94895febfda0 | file object: 0xffff94895febfe20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\e1xcjrpa.qg3\Microsoft.VisualStudio.Docker.LanguageService.dll
pool: 0xffff94895fec00c0 | file object: 0xffff94895fec0140 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec0250 | file object: 0xffff94895fec02d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec03e0 | file object: 0xffff94895fec0460 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec0570 | file object: 0xffff94895fec05f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895fec0700 | file object: 0xffff94895fec0780 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.VisualStudio.LanguageServices.LiveShare.dll
pool: 0xffff94895fec0890 | file object: 0xffff94895fec0910 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Html.LanguageServer.InProc.dll
pool: 0xffff94895fec0a20 | file object: 0xffff94895fec0aa0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec0bb0 | file object: 0xffff94895fec0c30 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec0d40 | file object: 0xffff94895fec0dc0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec1060 | file object: 0xffff94895fec10e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec11f0 | file object: 0xffff94895fec1270 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec1380 | file object: 0xffff94895fec1400 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec1510 | file object: 0xffff94895fec1590 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec16a0 | file object: 0xffff94895fec1720 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec1830 | file object: 0xffff94895fec18b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec19c0 | file object: 0xffff94895fec1a40 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec1b50 | file object: 0xffff94895fec1bd0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec1ce0 | file object: 0xffff94895fec1d60 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec1e70 | file object: 0xffff94895fec1ef0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec2000 | file object: 0xffff94895fec2080 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.VisualBasic.EditorFeatures.dll
pool: 0xffff94895fec2190 | file object: 0xffff94895fec2210 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec2320 | file object: 0xffff94895fec23a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec24b0 | file object: 0xffff94895fec2530 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec2640 | file object: 0xffff94895fec26c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895fec27d0 | file object: 0xffff94895fec2850 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec2960 | file object: 0xffff94895fec29e0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec2af0 | file object: 0xffff94895fec2b70 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec2c80 | file object: 0xffff94895fec2d00 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec2e10 | file object: 0xffff94895fec2e90 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec3130 | file object: 0xffff94895fec31b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\ProjectTemplates\templateManifest0.1033.vstman
pool: 0xffff94895fec32c0 | file object: 0xffff94895fec3340 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\TreeNavigation\Microsoft.VisualStudio.Shell.TreeNavigation.HierarchyProvider.dll
pool: 0xffff94895fec3450 | file object: 0xffff94895fec34d0 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec35e0 | file object: 0xffff94895fec3660 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec3770 | file object: 0xffff94895fec37f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895fec3900 | file object: 0xffff94895fec3980 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec3a90 | file object: 0xffff94895fec3b10 | offsetby: 0x80
\$Directory
pool: 0xffff94895fec3c20 | file object: 0xffff94895fec3ca0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\jeyhqjbx.yg3\ProjectTemplates\templateManifest0.noloc.vstman
pool: 0xffff94895fec3db0 | file object: 0xffff94895fec3e30 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff02160 | file object: 0xffff94895ff021e0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Product.Community,version=16.6.30128.74\_package.json
pool: 0xffff94895ff022f0 | file object: 0xffff94895ff02370 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_cmd_
pool: 0xffff94895ff02480 | file object: 0xffff94895ff02500 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.TestTools.Enterprise,version=16.6.30013.169\_package.json
pool: 0xffff94895ff02610 | file object: 0xffff94895ff02690 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.TestTools.CodeCoverage,version=16.0.28315.86\_package.json
pool: 0xffff94895ff027a0 | file object: 0xffff94895ff02820 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.AppInsights.Tools,version=16.5.29515.121\_package.json
pool: 0xffff94895ff02930 | file object: 0xffff94895ff029b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff02ac0 | file object: 0xffff94895ff02b40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff02c50 | file object: 0xffff94895ff02cd0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\SeverityLevel-0ca557913f5f851f35d5f69ac1c8b890.cod
pool: 0xffff94895ff02de0 | file object: 0xffff94895ff02e60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Templates.VB.Shared.Resources.en-US.Project..vstman
pool: 0xffff94895ff03100 | file object: 0xffff94895ff03180 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.WebDeploy,version=16.0.28517.75\_package.json
pool: 0xffff94895ff03290 | file object: 0xffff94895ff03310 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ComponentGroup.Azure.Prerequisites,version=16.4.29409.204\_package.json
pool: 0xffff94895ff03420 | file object: 0xffff94895ff034a0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ComponentGroup.WebToolsExtensions,version=16.6.30013.169\_package.json
pool: 0xffff94895ff035b0 | file object: 0xffff94895ff03630 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.TestTools.MSTestV2.Managed,version=16.0.28315.86\_package.json
pool: 0xffff94895ff03740 | file object: 0xffff94895ff037c0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-6d05e3f5dc09567173959a05670e6a2e.code
pool: 0xffff94895ff038d0 | file object: 0xffff94895ff03950 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.Azure.Kubernetes.Tools,version=16.0.28625.61\_package.json
pool: 0xffff94895ff03a60 | file object: 0xffff94895ff03ae0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\rust\package.jsonn-1d372262e86d4a24.json6d4a24
pool: 0xffff94895ff03bf0 | file object: 0xffff94895ff03c70 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.ManagedDesktop.Prerequisites,version=16.6.30013.169\_package.json
pool: 0xffff94895ff03d80 | file object: 0xffff94895ff03e00 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.Azure.ResourceManager.Tools,version=16.4.29409.204\_package.json
pool: 0xffff94895ff040a0 | file object: 0xffff94895ff04120 | offsetby: 0x80
pool: 0xffff94895ff04230 | file object: 0xffff94895ff042b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\1ta1utvq.5rj\Microsoft.Templates.UI.dll
pool: 0xffff94895ff043c0 | file object: 0xffff94895ff04440 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\vscode-windows-registry\build\Release\winregistry.node
pool: 0xffff94895ff04550 | file object: 0xffff94895ff045d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff046e0 | file object: 0xffff94895ff04760 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\jake\package.nls.json_package.json
pool: 0xffff94895ff04870 | file object: 0xffff94895ff048f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\objective-c\package.nls.jsonive-c\
pool: 0xffff94895ff04a00 | file object: 0xffff94895ff04a80 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Component.Azure.DataLake.Tools,version=16.6.30013.169\_package.json
pool: 0xffff94895ff04b90 | file object: 0xffff94895ff04c10 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_3
pool: 0xffff94895ff04d20 | file object: 0xffff94895ff04da0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.TestTools.Core,version=16.6.30013.169\_package.json
pool: 0xffff94895ff05040 | file object: 0xffff94895ff050c0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\patch-core-991bc51c9a5503a3545f2167dd373c79.coden
pool: 0xffff94895ff051d0 | file object: 0xffff94895ff05250 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_cmd_
pool: 0xffff94895ff05360 | file object: 0xffff94895ff053e0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Workload.Azure,version=16.4.29409.204\_package.json
pool: 0xffff94895ff054f0 | file object: 0xffff94895ff05570 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.CoreCLR.SDK,version=16.0.28315.86\_package.json
pool: 0xffff94895ff05680 | file object: 0xffff94895ff05700 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\index
pool: 0xffff94895ff05810 | file object: 0xffff94895ff05890 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_0
pool: 0xffff94895ff059a0 | file object: 0xffff94895ff05a20 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.JavaScript.EdgeAdapterHost,version=16.0.28315.86\_package.json
pool: 0xffff94895ff05b30 | file object: 0xffff94895ff05bb0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_1
pool: 0xffff94895ff05cc0 | file object: 0xffff94895ff05d40 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.JavaScript.Diagnostics,version=16.0.28517.75\_package.json
pool: 0xffff94895ff05e50 | file object: 0xffff94895ff05ed0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.ConnectedServices,version=16.5.29514.35\_package.json
pool: 0xffff94895ff06170 | file object: 0xffff94895ff061f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\vscode-account\package.json29813.82\_package.json
pool: 0xffff94895ff06300 | file object: 0xffff94895ff06380 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ComponentGroup.Azure.CloudServices,version=16.4.29409.204\_package.json
pool: 0xffff94895ff06490 | file object: 0xffff94895ff06510 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.JavaScript.TypeScript,version=16.5.29721.120\_package.json
pool: 0xffff94895ff06620 | file object: 0xffff94895ff066a0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.Azure.ServiceFabric.Tools,version=16.4.29313.120\_package.json
pool: 0xffff94895ff067b0 | file object: 0xffff94895ff06830 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.ManagedDesktop.Core,version=16.4.29318.151\_package.json
pool: 0xffff94895ff06940 | file object: 0xffff94895ff069c0 | offsetby: 0x80
܎İݠ訿舎￿蹠蒞舎￿藰謮舎￿蹰蒞舎￿蘀謮舎￿裡訩舎￿䀀`游Ṋ殻籯㩀ǖĂ "<sharedproces
pool: 0xffff94895ff06ad0 | file object: 0xffff94895ff06b50 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.Debugger.JustInTime,version=16.0.28517.75\_package.json
pool: 0xffff94895ff06c60 | file object: 0xffff94895ff06ce0 | offsetby: 0x80
܎Ę퀐訤舎￿즀詧舎￿祀詨舎￿즐詧舎￿祐詨舎￿鶸詧舎￿䀀H枰Ṋ᳁祁㩀ǖ <data_1e
pool: 0xffff94895ff06df0 | file object: 0xffff94895ff06e70 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ComponentGroup.Azure.ResourceManager.Tools,version=16.0.28528.71\_package.json
pool: 0xffff94895ff07110 | file object: 0xffff94895ff07190 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.Azure.Powershell,version=16.5.29515.121\_package.json
pool: 0xffff94895ff072a0 | file object: 0xffff94895ff07320 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff07430 | file object: 0xffff94895ff074b0 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha\target\release\print_pdb.exeon7\IDE\VC\SystemResources\vcproject.dll.mun
pool: 0xffff94895ff075c0 | file object: 0xffff94895ff07640 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\index
pool: 0xffff94895ff07750 | file object: 0xffff94895ff077d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\sql\package.jsontion\src\common\config.jsonson
pool: 0xffff94895ff078e0 | file object: 0xffff94895ff07960 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_0
pool: 0xffff94895ff07a70 | file object: 0xffff94895ff07af0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\base\browser\ui\codicons\codicon\codicon.ttf
pool: 0xffff94895ff07c00 | file object: 0xffff94895ff07c80 | offsetby: 0x80
\Windows\System32\en-US\Windows.UI.CredDialogController.dll.muion\RedirectionMap\Keys\V12S65BI\fpconfig.min[1].json.
pool: 0xffff94895ff07d90 | file object: 0xffff94895ff07e10 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.Debugger.Script,version=16.0.28315.86\_package.json
pool: 0xffff94895ff080b0 | file object: 0xffff94895ff08130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff08240 | file object: 0xffff94895ff082c0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.Debugger.Core,version=16.5.29721.120\_package.json
pool: 0xffff94895ff083d0 | file object: 0xffff94895ff08450 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff08560 | file object: 0xffff94895ff085e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff086f0 | file object: 0xffff94895ff08770 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.Roslyn.Compiler,version=16.0.28714.129\_package.json
pool: 0xffff94895ff08880 | file object: 0xffff94895ff08900 | offsetby: 0x80
pool: 0xffff94895ff08a10 | file object: 0xffff94895ff08a90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff08ba0 | file object: 0xffff94895ff08c20 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.CSharp\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.CSharp.dllp.dll
pool: 0xffff94895ff08d30 | file object: 0xffff94895ff08db0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff09050 | file object: 0xffff94895ff090d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-abyss\package.nls.jsonpackage.json
pool: 0xffff94895ff091e0 | file object: 0xffff94895ff09260 | offsetby: 0x80
\Device\HarddiskVolume2\Users\User\AppData\Local\nganhkhoa\lpus\ntkrnlmp.pdb\E7477A03A7078050CB7936455CE346B5\1\ntkrnlmp.pd
pool: 0xffff94895ff09370 | file object: 0xffff94895ff093f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff09500 | file object: 0xffff94895ff09580 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff09690 | file object: 0xffff94895ff09710 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.WebStackRuntime,version=16.0.28315.86\_package.json
pool: 0xffff94895ff09820 | file object: 0xffff94895ff098a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\merge-conflict\package.jsonpackage.nls.jsonon
pool: 0xffff94895ff099b0 | file object: 0xffff94895ff09a30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff09b40 | file object: 0xffff94895ff09bc0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.WebToolsExtensions.MSBuild,version=16.0.28315.86\_package.json
pool: 0xffff94895ff09cd0 | file object: 0xffff94895ff09d50 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dlloft\Windows\CurrentVersion\Search\Fligh
pool: 0xffff94895ff09e60 | file object: 0xffff94895ff09ee0 | offsetby: 0x80
܎Ĩ怐趈舎￿ࠀ蝩舎￿ᇀ逅舎￿ࠐ蝩舎￿ᇐ逅舎￿Ϩ訪舎￿耀X슀Ṋ뙖薗㩀ǖȠ<IndexedDB.e
pool: 0xffff94895ff0a180 | file object: 0xffff94895ff0a200 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_1
pool: 0xffff94895ff0a310 | file object: 0xffff94895ff0a390 | offsetby: 0x80
܎Ę言誘舎￿ 訪舎￿鶐詧舎￿ᚐ訪舎￿鶠詧舎￿즨詧舎￿耀H柸Ṋ᳁祁㩀ǖ <data
pool: 0xffff94895ff0a4a0 | file object: 0xffff94895ff0a520 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-5846d16abefcf035704dfed0bd5151f8.code
pool: 0xffff94895ff0a630 | file object: 0xffff94895ff0a6b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\9A8353062D72D6D0FE7C4017751
pool: 0xffff94895ff0a7c0 | file object: 0xffff94895ff0a840 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_3
pool: 0xffff94895ff0a950 | file object: 0xffff94895ff0a9d0 | offsetby: 0x80
괁ܐ扏捓dows넀薫舎￿≱⇔䑲㷚˜蠄€ŒlāĀȁ8Ѐ겫擨쌗얫଑㯗졭誝툳朘䔡㕅茒⏿ᶧāԀāԀȁȁԀ ȠāԀ
pool: 0xffff94895ff0aae0 | file object: 0xffff94895ff0ab60 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\RequestData-0bdb37369a4dd3528c48b1d616876645
pool: 0xffff94895ff0ac70 | file object: 0xffff94895ff0acf0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\socksclient-5a328ffa0ebe7171470b6bd8f341fdae.code
pool: 0xffff94895ff0ae00 | file object: 0xffff94895ff0ae80 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\search-result\package.nls.json7b47364.codeon
pool: 0xffff94895ff0b120 | file object: 0xffff94895ff0b1a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\ruby\package.jsonll16.1.28810.153\_package.json
pool: 0xffff94895ff0b2b0 | file object: 0xffff94895ff0b330 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_2
pool: 0xffff94895ff0b440 | file object: 0xffff94895ff0b4c0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_2
pool: 0xffff94895ff0b5d0 | file object: 0xffff94895ff0b650 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.WebToolsAzure,version=16.0.28315.86\_package.json
pool: 0xffff94895ff0b760 | file object: 0xffff94895ff0b7e0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.DotNetCoreDebugging,version=16.0.28315.86\_package.json
pool: 0xffff94895ff0b8f0 | file object: 0xffff94895ff0b970 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff0ba80 | file object: 0xffff94895ff0bb00 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.SQL.LocalDB.Runtime,version=16.0.28625.61\_package.json
pool: 0xffff94895ff0bc10 | file object: 0xffff94895ff0bc90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff0bda0 | file object: 0xffff94895ff0be20 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.FSharp.WebTemplates,version=16.3.29207.166\_package.json
pool: 0xffff94895ff0c0c0 | file object: 0xffff94895ff0c140 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\ConstraintIndex\Apps_{4c296fb1-4cc3-4437-a81a-d4c780518b50}s
pool: 0xffff94895ff0c250 | file object: 0xffff94895ff0c2d0 | offsetby: 0x80
pool: 0xffff94895ff0c3e0 | file object: 0xffff94895ff0c460 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Themes\CachedFiles\CachedImage_1920_1015_POS4.jpgȁȁԀ Ƞā
pool: 0xffff94895ff0c570 | file object: 0xffff94895ff0c5f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\platform\files\node\watcher\win32\CodeHelper.exe
pool: 0xffff94895ff0c700 | file object: 0xffff94895ff0c780 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.TestTools.TestPlatform.IDE,version=16.6.30013.169\_package.json
pool: 0xffff94895ff0c890 | file object: 0xffff94895ff0c910 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.EntityFramework,version=16.0.28315.86\_package.json
pool: 0xffff94895ff0ca20 | file object: 0xffff94895ff0caa0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff0cbb0 | file object: 0xffff94895ff0cc30 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.VC.CoreIDE.Express,version=16.0.28516.191\_package.json
pool: 0xffff94895ff0cd40 | file object: 0xffff94895ff0cdc0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\typescript-basics\package.jsonrs\pac
pool: 0xffff94895ff0d060 | file object: 0xffff94895ff0d0e0 | offsetby: 0x80
pool: 0xffff94895ff0d1f0 | file object: 0xffff94895ff0d270 | offsetby: 0x80
晠蝁舎￿潐蝁舎￿퓠蜹舎￿蟐遦舎￿鏀蝁舎￿錐蝁舎￿鵠蝁舎￿骠蝁舎￿ꡠ蝁舎￿ꋠ蝁舎￿술蛱舎￿׀誛舎￿앀蝁舎￿顐遦舎￿ƀ蝃舎￿ˠ蝃舎￿
pool: 0xffff94895ff0d380 | file object: 0xffff94895ff0d400 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff0d510 | file object: 0xffff94895ff0d590 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff0d6a0 | file object: 0xffff94895ff0d720 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_256.dbȔఏᤖजᔃᴆ἟἟἟἟἟἟἟἟἟἟
pool: 0xffff94895ff0d830 | file object: 0xffff94895ff0d8b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff0d9c0 | file object: 0xffff94895ff0da40 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\TelemetryType-18df109b7fa685c95ce818fa03baa188
pool: 0xffff94895ff0db50 | file object: 0xffff94895ff0dbd0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.TestTools.DataCollectors,version=16.0.28315.86\_package.json
pool: 0xffff94895ff0dce0 | file object: 0xffff94895ff0dd60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff0de70 | file object: 0xffff94895ff0def0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\github-authentication\src\common\config.jsonson
pool: 0xffff94895ff0e000 | file object: 0xffff94895ff0e080 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff0e190 | file object: 0xffff94895ff0e210 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\MicrosoftEdgePDF.targetsize-16.pngȁȁԀ Ƞ
pool: 0xffff94895ff0e320 | file object: 0xffff94895ff0e3a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff0e4b0 | file object: 0xffff94895ff0e530 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.VC.CoreIde,version=16.0.28625.61\_package.json
pool: 0xffff94895ff0e640 | file object: 0xffff94895ff0e6c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff0e7d0 | file object: 0xffff94895ff0e850 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\github-authentication\dist\nls.metadata.jsonn
pool: 0xffff94895ff0e960 | file object: 0xffff94895ff0e9e0 | offsetby: 0x80
\Windows
pool: 0xffff94895ff0eaf0 | file object: 0xffff94895ff0eb70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff0ec80 | file object: 0xffff94895ff0ed00 | offsetby: 0x80
\Windows\System32\en-US\Conhost.exe.mui
pool: 0xffff94895ff0ee10 | file object: 0xffff94895ff0ee90 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff0f130 | file object: 0xffff94895ff0f1b0 | offsetby: 0x80
ꂀ宸钉￿༘ૐ訢舎￿徍钉￿讯舎￿检怜钉￿䂰誌舎￿䂰誌舎￿￿￿\R\C￿￿sc￿￿ザ偐
pool: 0xffff94895ff0f2c0 | file object: 0xffff94895ff0f340 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\HttpRequestParser-94d0ea88b76724a81c25d3cadae91be0.c
pool: 0xffff94895ff0f450 | file object: 0xffff94895ff0f4d0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.VC.Redist.14.Latest,version=16.5.29515.121\_package.json
pool: 0xffff94895ff0f5e0 | file object: 0xffff94895ff0f660 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\CorrelationIdManager-32c0083fbbfd4ab6a2d3990aa1e1f4d
pool: 0xffff94895ff0f770 | file object: 0xffff94895ff0f7f0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ComponentGroup.MSIX.Packaging,version=16.4.29409.204\_package.json
pool: 0xffff94895ff0f900 | file object: 0xffff94895ff0f980 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\StackFrame-60d885482fd50c360a40785557ecdc5c.coden
pool: 0xffff94895ff0fa90 | file object: 0xffff94895ff0fb10 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.Azure.ClientLibs,version=16.0.28315.86\_package.json
pool: 0xffff94895ff0fc20 | file object: 0xffff94895ff0fca0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Workload.ManagedDesktop,version=16.6.30013.169\_package.json
pool: 0xffff94895ff0fdb0 | file object: 0xffff94895ff0fe30 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.Azure.AuthoringTools,version=16.0.28625.61\_package.json
pool: 0xffff94895ff100d0 | file object: 0xffff94895ff10150 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.TestTools.Native,version=16.0.28315.86\_package.json
pool: 0xffff94895ff10260 | file object: 0xffff94895ff102e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff103f0 | file object: 0xffff94895ff10470 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.UWP.Common.Build,version=16.5.29514.35\_package.json
pool: 0xffff94895ff10580 | file object: 0xffff94895ff10600 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ComponentGroup.NativeDesktop.Core,version=16.2.29012.281\_package.json
pool: 0xffff94895ff10710 | file object: 0xffff94895ff10790 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff108a0 | file object: 0xffff94895ff10920 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code
pool: 0xffff94895ff10a30 | file object: 0xffff94895ff10ab0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895ff10bc0 | file object: 0xffff94895ff10c40 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe
pool: 0xffff94895ff10d50 | file object: 0xffff94895ff10dd0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ComponentGroup.WebToolsExtensions.CMake,version=16.3.29207.166\_package.json
pool: 0xffff94895ff11070 | file object: 0xffff94895ff110f0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\logs\20200604T001916\exthost1\output_logging_20200604T001931\3-Git.logt.logkage.nls.jso
pool: 0xffff94895ff11200 | file object: 0xffff94895ff11280 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff11390 | file object: 0xffff94895ff11410 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff11520 | file object: 0xffff94895ff115a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\vscode-account\package.nls.json001929\
pool: 0xffff94895ff116b0 | file object: 0xffff94895ff11730 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe
pool: 0xffff94895ff11840 | file object: 0xffff94895ff118c0 | offsetby: 0x80
\Users\User\AppData\Local\Temp\appInsights-nodeAIF-444c3af9-8e69-4462-ab49-4191e6ad19166-04_062545_5652-5
pool: 0xffff94895ff119d0 | file object: 0xffff94895ff11a50 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\node-pty\build\Release\conpty.node
pool: 0xffff94895ff11b60 | file object: 0xffff94895ff11be0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff11cf0 | file object: 0xffff94895ff11d70 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.VC.CMake.Project,version=16.3.29103.31\_package.json
pool: 0xffff94895ff12010 | file object: 0xffff94895ff12090 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff121a0 | file object: 0xffff94895ff12220 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff12330 | file object: 0xffff94895ff123b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff124c0 | file object: 0xffff94895ff12540 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff12650 | file object: 0xffff94895ff126d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff127e0 | file object: 0xffff94895ff12860 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.VC.TestAdapterForBoostTest,version=16.0.28517.75\_package.json
pool: 0xffff94895ff12970 | file object: 0xffff94895ff129f0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.PackageGroup.DiagnosticsHub.Platform,version=16.4.29313.120\_package.json
pool: 0xffff94895ff12b00 | file object: 0xffff94895ff12b80 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.VC.ASAN,version=16.5.29515.121\_package.json
pool: 0xffff94895ff12c90 | file object: 0xffff94895ff12d10 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.VC.TestAdapterForGoogleTest,version=16.0.28517.75\_package.json
pool: 0xffff94895ff12e20 | file object: 0xffff94895ff12ea0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.VC.ATL,version=16.4.29313.120\_package.json
pool: 0xffff94895ff13140 | file object: 0xffff94895ff131c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code
pool: 0xffff94895ff132d0 | file object: 0xffff94895ff13350 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Workload.NativeDesktop,version=16.5.29514.35\_package.json
pool: 0xffff94895ff13460 | file object: 0xffff94895ff134e0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.Graphics,version=16.0.28517.75\_package.json
pool: 0xffff94895ff135f0 | file object: 0xffff94895ff13670 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.TestTools.CodedUITest,version=16.0.28315.86\_package.json
pool: 0xffff94895ff13780 | file object: 0xffff94895ff13800 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff13910 | file object: 0xffff94895ff13990 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ComponentGroup.UWP.NetCoreAndStandard,version=16.3.29102.218\_package.json
pool: 0xffff94895ff13aa0 | file object: 0xffff94895ff13b20 | offsetby: 0x80
\Windows
pool: 0xffff94895ff13c30 | file object: 0xffff94895ff13cb0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.DiagnosticTools,version=16.5.29515.121\_package.json
pool: 0xffff94895ff13dc0 | file object: 0xffff94895ff13e40 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.VC.Tools.x86,version=16.4.29313.120\_package.json
pool: 0xffff94895ff140e0 | file object: 0xffff94895ff14160 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.TestTools.UWP,version=16.2.28930.63\_package.json
pool: 0xffff94895ff14270 | file object: 0xffff94895ff142f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff14400 | file object: 0xffff94895ff14480 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.PackageGroup.Icecap.Core,version=16.0.28315.86\_package.json
pool: 0xffff94895ff14590 | file object: 0xffff94895ff14610 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff14720 | file object: 0xffff94895ff147a0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.UWP.ClientDiagnostics,version=16.0.28315.86\_package.json
pool: 0xffff94895ff148b0 | file object: 0xffff94895ff14930 | offsetby: 0x80
\Windows\System32\conhost.exe
pool: 0xffff94895ff14a40 | file object: 0xffff94895ff14ac0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.TestTools.Templates.UWP,version=16.1.28811.260\_package.json
pool: 0xffff94895ff14bd0 | file object: 0xffff94895ff14c50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff14d60 | file object: 0xffff94895ff14de0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff15080 | file object: 0xffff94895ff15100 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.Graphics.Tools,version=16.0.28625.61\_package.json
pool: 0xffff94895ff15210 | file object: 0xffff94895ff15290 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff153a0 | file object: 0xffff94895ff15420 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ComponentGroup.UWP.Support,version=16.4.29409.204\_package.json
pool: 0xffff94895ff15530 | file object: 0xffff94895ff155b0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\workbench\services\extensions\node\extensionHostProcess.nls.js
pool: 0xffff94895ff156c0 | file object: 0xffff94895ff15740 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff15850 | file object: 0xffff94895ff158d0 | offsetby: 0x80
\Windows\System32\WindowsPowerShell\v1.0\powershell.exe.config
pool: 0xffff94895ff159e0 | file object: 0xffff94895ff15a60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff15b70 | file object: 0xffff94895ff15bf0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ComponentGroup.UWP.Xamarin,version=16.5.29514.35\_package.json
pool: 0xffff94895ff15d00 | file object: 0xffff94895ff15d80 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedExtensions\builtin
pool: 0xffff94895ff16020 | file object: 0xffff94895ff160a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff161b0 | file object: 0xffff94895ff16230 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff16340 | file object: 0xffff94895ff163c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff164d0 | file object: 0xffff94895ff16550 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.Windows10SDK.18362,version=16.1.28829.92\_package.json
pool: 0xffff94895ff16660 | file object: 0xffff94895ff166e0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.UWP.Common,version=16.4.29409.204\_package.json
pool: 0xffff94895ff167f0 | file object: 0xffff94895ff16870 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff16980 | file object: 0xffff94895ff16a00 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedExtensions\user
pool: 0xffff94895ff16b10 | file object: 0xffff94895ff16b90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff16ca0 | file object: 0xffff94895ff16d20 | offsetby: 0x80
\Windows\System32\conhost.exe
pool: 0xffff94895ff16e30 | file object: 0xffff94895ff16eb0 | offsetby: 0x80
\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
pool: 0xffff94895ff17150 | file object: 0xffff94895ff171d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff172e0 | file object: 0xffff94895ff17360 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.VC.Tools.x86.x64,version=16.6.30013.169\_package.json
pool: 0xffff94895ff17470 | file object: 0xffff94895ff174f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff17600 | file object: 0xffff94895ff17680 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff17790 | file object: 0xffff94895ff17810 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff94895ff17920 | file object: 0xffff94895ff179a0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.UWP.Templates,version=16.0.28516.191\_package.json
pool: 0xffff94895ff17ab0 | file object: 0xffff94895ff17b30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff17c40 | file object: 0xffff94895ff17cc0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Workload.Universal,version=16.6.30020.46\_package.json
pool: 0xffff94895ff17dd0 | file object: 0xffff94895ff17e50 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.VC.DiagnosticTools,version=16.5.29515.121\_package.json
pool: 0xffff94895ff180f0 | file object: 0xffff94895ff18170 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\icudtl.dat
pool: 0xffff94895ff18280 | file object: 0xffff94895ff18300 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\utf16-f7fb7a5600e048b65cd1220e1e31aaf5.code
pool: 0xffff94895ff18410 | file object: 0xffff94895ff18490 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-5aa25814ea7180be0824ed0958291cd9.code
pool: 0xffff94895ff185a0 | file object: 0xffff94895ff18620 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff18730 | file object: 0xffff94895ff187b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff188c0 | file object: 0xffff94895ff18940 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff18a50 | file object: 0xffff94895ff18ad0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff18be0 | file object: 0xffff94895ff18c60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff18d70 | file object: 0xffff94895ff18df0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff19090 | file object: 0xffff94895ff19110 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff19220 | file object: 0xffff94895ff192a0 | offsetby: 0x80
\Users\User\AppData\Local\Temp\VSCode Crashes\settings.dat
pool: 0xffff94895ff193b0 | file object: 0xffff94895ff19430 | offsetby: 0x80
\Windows\System32\en-US\Conhost.exe.mui
pool: 0xffff94895ff19540 | file object: 0xffff94895ff195c0 | offsetby: 0x80
\Device\HarddiskVolume2\Windows\Branding\Basebrd\bas
pool: 0xffff94895ff196d0 | file object: 0xffff94895ff19750 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff19860 | file object: 0xffff94895ff198e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff199f0 | file object: 0xffff94895ff19a70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff19b80 | file object: 0xffff94895ff19c00 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff19d10 | file object: 0xffff94895ff19d90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1a030 | file object: 0xffff94895ff1a0b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff1a1c0 | file object: 0xffff94895ff1a240 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1a350 | file object: 0xffff94895ff1a3d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1a4e0 | file object: 0xffff94895ff1a560 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.ConsoleHost\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.ConsoleHost.dll
pool: 0xffff94895ff1a670 | file object: 0xffff94895ff1a6f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\platform\files\node\watcher\win32\CodeHelper.exe
pool: 0xffff94895ff1a800 | file object: 0xffff94895ff1a880 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1a990 | file object: 0xffff94895ff1aa10 | offsetby: 0x80
\Windows\Prefetch\POWERSHELL.EXE-920BBA2A.pf
pool: 0xffff94895ff1ab20 | file object: 0xffff94895ff1aba0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1acb0 | file object: 0xffff94895ff1ad30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1ae40 | file object: 0xffff94895ff1aec0 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff94895ff1b160 | file object: 0xffff94895ff1b1e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1b2f0 | file object: 0xffff94895ff1b370 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Transactions\e73720f27017195d342aff407d9504ef\System.Transactions.ni.dll
pool: 0xffff94895ff1b480 | file object: 0xffff94895ff1b500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1b610 | file object: 0xffff94895ff1b690 | offsetby: 0x80
僐蠕舎￿倠蠕舎￿¸TRCHINeHss㧀岣钉￿〲歹ഐ護舎￿傐蠕舎￿傐蠕舎￿傸蠕舎￿傸蠕舎￿
pool: 0xffff94895ff1b7a0 | file object: 0xffff94895ff1b820 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff1b930 | file object: 0xffff94895ff1b9b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff1bac0 | file object: 0xffff94895ff1bb40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1bc50 | file object: 0xffff94895ff1bcd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff1bde0 | file object: 0xffff94895ff1be60 | offsetby: 0x80
\Windows\System32\WindowsPowerShell\v1.0\Modules\BitLocker\Microsoft.BitLocker.Structures.dll
pool: 0xffff94895ff1c100 | file object: 0xffff94895ff1c180 | offsetby: 0x80
\Windows\System32\WindowsPowerShell\v1.0\Modules\Dism\Microsoft.Dism.PowerShell.dll
pool: 0xffff94895ff1c290 | file object: 0xffff94895ff1c310 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff1c420 | file object: 0xffff94895ff1c4a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\bootstrap-fork.js
pool: 0xffff94895ff1c5b0 | file object: 0xffff94895ff1c630 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code
pool: 0xffff94895ff1c740 | file object: 0xffff94895ff1c7c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1c8d0 | file object: 0xffff94895ff1c950 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Management\e40e5dfbda2461704b289f4dd7c99033\System.Management.ni.dll
pool: 0xffff94895ff1ca60 | file object: 0xffff94895ff1cae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1cbf0 | file object: 0xffff94895ff1cc70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1cd80 | file object: 0xffff94895ff1ce00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1d0a0 | file object: 0xffff94895ff1d120 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1d230 | file object: 0xffff94895ff1d2b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1d3c0 | file object: 0xffff94895ff1d440 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.Security\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Security.dll
pool: 0xffff94895ff1d550 | file object: 0xffff94895ff1d5d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1d6e0 | file object: 0xffff94895ff1d760 | offsetby: 0x80
\Program Files\WindowsPowerShell\Modules\PSReadline\2.0.0\Microsoft.PowerShell.PSReadline.dll
pool: 0xffff94895ff1d870 | file object: 0xffff94895ff1d8f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1da00 | file object: 0xffff94895ff1da80 | offsetby: 0x80
\Users\User\AppData\Local\Temp\VSCode Crashes\CrashpadMetrics-active.pma
pool: 0xffff94895ff1db90 | file object: 0xffff94895ff1dc10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff1dd20 | file object: 0xffff94895ff1dda0 | offsetby: 0x80
\Windows\System32\WindowsPowerShell\v1.0\Modules\AppvClient\Microsoft.AppV.AppVClientPowerShell.dll
pool: 0xffff94895ff1e040 | file object: 0xffff94895ff1e0c0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Utility\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Commands.Utility.dll
pool: 0xffff94895ff1e1d0 | file object: 0xffff94895ff1e250 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94895ff1e360 | file object: 0xffff94895ff1e3e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\sbcs-data-81c333ac2d8bbef764b01311ecdaeeac.code
pool: 0xffff94895ff1e4f0 | file object: 0xffff94895ff1e570 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\locales\en-US.pak
pool: 0xffff94895ff1e680 | file object: 0xffff94895ff1e700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1e810 | file object: 0xffff94895ff1e890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1e9a0 | file object: 0xffff94895ff1ea20 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\extensionHostProcess-994dd58bb1f4b2bb1e0293cfbacbb307.code
pool: 0xffff94895ff1eb30 | file object: 0xffff94895ff1ebb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1ecc0 | file object: 0xffff94895ff1ed40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1ee50 | file object: 0xffff94895ff1eed0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\chrome_200_percent.pak
pool: 0xffff94895ff1f170 | file object: 0xffff94895ff1f1f0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System\3b82ac2a7aa1eb0957c2ba3eb9eaaa93\System.ni.dll.aux
pool: 0xffff94895ff1f300 | file object: 0xffff94895ff1f380 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1f490 | file object: 0xffff94895ff1f510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1f620 | file object: 0xffff94895ff1f6a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1f7b0 | file object: 0xffff94895ff1f830 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources.pak
pool: 0xffff94895ff1f940 | file object: 0xffff94895ff1f9c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff1fad0 | file object: 0xffff94895ff1fb50 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff94895ff1fc60 | file object: 0xffff94895ff1fce0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\workbench\services\extensions\node\extensionHostProcess.js
pool: 0xffff94895ff1fdf0 | file object: 0xffff94895ff1fe70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff20110 | file object: 0xffff94895ff20190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff202a0 | file object: 0xffff94895ff20320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff20430 | file object: 0xffff94895ff204b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\extensionHostProcess.nls-0ac92b35016e374e76388288352dd502.code
pool: 0xffff94895ff205c0 | file object: 0xffff94895ff20640 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff20750 | file object: 0xffff94895ff207d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff208e0 | file object: 0xffff94895ff20960 | offsetby: 0x80
\Windows\System32\atl.dll
pool: 0xffff94895ff20a70 | file object: 0xffff94895ff20af0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff20c00 | file object: 0xffff94895ff20c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff20d90 | file object: 0xffff94895ff20e10 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff210b0 | file object: 0xffff94895ff21130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff21240 | file object: 0xffff94895ff212c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff213d0 | file object: 0xffff94895ff21450 | offsetby: 0x80
\Windows\SysWOW64\oleaut32.dll
pool: 0xffff94895ff21560 | file object: 0xffff94895ff215e0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\Config\machine.config
pool: 0xffff94895ff216f0 | file object: 0xffff94895ff21770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff21880 | file object: 0xffff94895ff21900 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\paths-ad86309ce9e51e983ca287b6e1453da6.code
pool: 0xffff94895ff21a10 | file object: 0xffff94895ff21a90 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff21ba0 | file object: 0xffff94895ff21c20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff21d30 | file object: 0xffff94895ff21db0 | offsetby: 0x80
\Windows\System32\WindowsPowerShell\v1.0\Modules\Microsoft.PowerShell.Utility\Microsoft.PowerShell.Utility.psm1
pool: 0xffff94895ff22050 | file object: 0xffff94895ff220d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff221e0 | file object: 0xffff94895ff22260 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff22370 | file object: 0xffff94895ff223f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar
pool: 0xffff94895ff22500 | file object: 0xffff94895ff22580 | offsetby: 0x80
\Windows\System32\WindowsPowerShell\v1.0\powershell.exe.config
pool: 0xffff94895ff22690 | file object: 0xffff94895ff22710 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff22820 | file object: 0xffff94895ff228a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff229b0 | file object: 0xffff94895ff22a30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff22b40 | file object: 0xffff94895ff22bc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff22cd0 | file object: 0xffff94895ff22d50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff22e60 | file object: 0xffff94895ff22ee0 | offsetby: 0x80
ᎀ宲钉￿ᥬ餰訢舎￿【埪钉￿퍠蛼舎￿鳠怜钉￿哰誌舎￿哰誌舎￿￿￿\R\C￿￿sc￿￿l偐
pool: 0xffff94895ff23180 | file object: 0xffff94895ff23200 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff23310 | file object: 0xffff94895ff23390 | offsetby: 0x80
܎Ġ倐裤舎￿ᇀ逅舎￿ᇐ逅舎￿ʨ詨舎￿쀀P節ṋꀰ쾎㩀ǖ <edb.
pool: 0xffff94895ff234a0 | file object: 0xffff94895ff23520 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\extend-node-ef8947e5853c57243d5c4b556700fc97.code
pool: 0xffff94895ff23630 | file object: 0xffff94895ff236b0 | offsetby: 0x80
.\Device\HarddiskVolume2齔㩀ǖŽp\Device\HarddiskVolume2\Windows\System32\Windows.StateRepositoryPS.dll
pool: 0xffff94895ff237c0 | file object: 0xffff94895ff23840 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar
pool: 0xffff94895ff23950 | file object: 0xffff94895ff239d0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-4140033653525364407bb215bfec4a84.code
pool: 0xffff94895ff23ae0 | file object: 0xffff94895ff23b60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff23c70 | file object: 0xffff94895ff23cf0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\safer-1c2a09e300db67a8a341e0ad4e80debe.code
pool: 0xffff94895ff23e00 | file object: 0xffff94895ff23e80 | offsetby: 0x80
\Registry\Machine\System\CurrentControlSet\Control\StateSeparation\RedirectionMap\Keys34-73a32824fd2c
pool: 0xffff94895ff24120 | file object: 0xffff94895ff241a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff242b0 | file object: 0xffff94895ff24330 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff24440 | file object: 0xffff94895ff244c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff245d0 | file object: 0xffff94895ff24650 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff24760 | file object: 0xffff94895ff247e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-27ab7666a43a3fc396891c4471642da6.code
pool: 0xffff94895ff248f0 | file object: 0xffff94895ff24970 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\windowsPtyAgent-d2a2137688704b06b4c3344a48ef270f.code
pool: 0xffff94895ff24a80 | file object: 0xffff94895ff24b00 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\User\globalStorage\state.vscdb-journal
pool: 0xffff94895ff24c10 | file object: 0xffff94895ff24c90 | offsetby: 0x80
€ǿāԀ$ǿԁԀ鄑샋狀먔믢꙼ϩǿȁԀ Ƞǿā
pool: 0xffff94895ff24da0 | file object: 0xffff94895ff24e20 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Network Persistent State
pool: 0xffff94895ff250c0 | file object: 0xffff94895ff25140 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff25250 | file object: 0xffff94895ff252d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff253e0 | file object: 0xffff94895ff25460 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff25570 | file object: 0xffff94895ff255f0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\b4bf7266d73c05a0e87b198b961a00a0\System.Core.ni.dll.aux
pool: 0xffff94895ff25700 | file object: 0xffff94895ff25780 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\c9243edb149eb78c5309c103df69d594\System.Core.ni.dll.aux
pool: 0xffff94895ff25890 | file object: 0xffff94895ff25910 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-seti\icons\vs-seti-icon-theme.json
pool: 0xffff94895ff25a20 | file object: 0xffff94895ff25aa0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Logging-4d14e756190b7f7e871ad4787c0d8a9a.code
pool: 0xffff94895ff25bb0 | file object: 0xffff94895ff25c30 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff25d40 | file object: 0xffff94895ff25dc0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Console-14628e5cf57ea3ec1069cae786d1b927.code
pool: 0xffff94895ff26060 | file object: 0xffff94895ff260e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff261f0 | file object: 0xffff94895ff26270 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\logs\20200604T001916\output_1_20200604T001919
pool: 0xffff94895ff26380 | file object: 0xffff94895ff26400 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff26510 | file object: 0xffff94895ff26590 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Util-c3ede64b2c143713c50d0e05e9bc6d6e.code
pool: 0xffff94895ff266a0 | file object: 0xffff94895ff26720 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff26830 | file object: 0xffff94895ff268b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff269c0 | file object: 0xffff94895ff26a40 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff26b50 | file object: 0xffff94895ff26bd0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff26ce0 | file object: 0xffff94895ff26d60 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\applicationinsights-e7dc17fb494ce28c76ef9ace910de3ea.code
pool: 0xffff94895ff26e70 | file object: 0xffff94895ff26ef0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff27000 | file object: 0xffff94895ff27080 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff27190 | file object: 0xffff94895ff27210 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-defaults\themes\dark_plus.json
pool: 0xffff94895ff27320 | file object: 0xffff94895ff273a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff274b0 | file object: 0xffff94895ff27530 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff27640 | file object: 0xffff94895ff276c0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\terminal-7e83cefe01bc66d8a98b6f9b5b982349.code
pool: 0xffff94895ff277d0 | file object: 0xffff94895ff27850 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\HttpDependencies-287cf9800bfe197545a1e081ce6abf11.code
pool: 0xffff94895ff27960 | file object: 0xffff94895ff279e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\RequestResponseHeaders-fae18375f7d172ea7e154e3b7f7cfa40.code
pool: 0xffff94895ff27af0 | file object: 0xffff94895ff27b70 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff27c80 | file object: 0xffff94895ff27d00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff27e10 | file object: 0xffff94895ff27e90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Platform.AppDomainManager.dll
pool: 0xffff94895ff28130 | file object: 0xffff94895ff281b0 | offsetby: 0x80
\Windows\System32\msisip.dll
pool: 0xffff94895ff282c0 | file object: 0xffff94895ff28340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff28450 | file object: 0xffff94895ff284d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff285e0 | file object: 0xffff94895ff28660 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff28770 | file object: 0xffff94895ff287f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VSFinalizer.exe
pool: 0xffff94895ff28900 | file object: 0xffff94895ff28980 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff28a90 | file object: 0xffff94895ff28b10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff28c20 | file object: 0xffff94895ff28ca0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\patch-core-a084c55e5e1d75abb28ad86518386782.code
pool: 0xffff94895ff28db0 | file object: 0xffff94895ff28e30 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceModel\v4.0_4.0.0.0__b77a5c561934e089\System.ServiceModel.dll
pool: 0xffff94895ff290d0 | file object: 0xffff94895ff29150 | offsetby: 0x80
\Windows\System32\en-US\d2d1.dll.mui
pool: 0xffff94895ff29260 | file object: 0xffff94895ff292e0 | offsetby: 0x80
\Windows\System32\WindowsPowerShell\v1.0\pwrshsip.dll
pool: 0xffff94895ff293f0 | file object: 0xffff94895ff29470 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.ContextManagement.Public.dll
pool: 0xffff94895ff29580 | file object: 0xffff94895ff29600 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.TextTemplating.Interfaces.11.0.dll
pool: 0xffff94895ff29710 | file object: 0xffff94895ff29790 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff298a0 | file object: 0xffff94895ff29920 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VSFinalizerDependencies\Msal\Microsoft.Identity.Client.dll
pool: 0xffff94895ff29a30 | file object: 0xffff94895ff29ab0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\OmniSharp.Extensions.LanguageServer.dll
pool: 0xffff94895ff29bc0 | file object: 0xffff94895ff29c40 | offsetby: 0x80
\Windows\System32\sqmapi.dll
pool: 0xffff94895ff29d50 | file object: 0xffff94895ff29dd0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\HttpDependencyParser-a4fc0db468267796ae6314694b8fa5bd.code
pool: 0xffff94895ff2a070 | file object: 0xffff94895ff2a0f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff2a200 | file object: 0xffff94895ff2a280 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff2a390 | file object: 0xffff94895ff2a410 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff2a520 | file object: 0xffff94895ff2a5a0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-1fa00ed11ade30b8c4f9d8cda9f13522.code
pool: 0xffff94895ff2a6b0 | file object: 0xffff94895ff2a730 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff2a840 | file object: 0xffff94895ff2a8c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VSFinalizer.exe.config
pool: 0xffff94895ff2a9d0 | file object: 0xffff94895ff2aa50 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff2ab60 | file object: 0xffff94895ff2abe0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\1033\msenvui.dll
pool: 0xffff94895ff2acf0 | file object: 0xffff94895ff2ad70 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff2b010 | file object: 0xffff94895ff2b090 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff2b1a0 | file object: 0xffff94895ff2b220 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff2b330 | file object: 0xffff94895ff2b3b0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff2b4c0 | file object: 0xffff94895ff2b540 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff2b650 | file object: 0xffff94895ff2b6d0 | offsetby: 0x80
\Windows\System32\Microsoft\Protect\S-1-5-18\Preferred
pool: 0xffff94895ff2b7e0 | file object: 0xffff94895ff2b860 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff2b970 | file object: 0xffff94895ff2b9f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff2bb00 | file object: 0xffff94895ff2bb80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff2bc90 | file object: 0xffff94895ff2bd10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff2be20 | file object: 0xffff94895ff2bea0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Net.Http\4d871daa5d924c35bb2668cbd6314218\System.Net.Http.ni.dll
pool: 0xffff94895ff2c140 | file object: 0xffff94895ff2c1c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff2c2d0 | file object: 0xffff94895ff2c350 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff2c460 | file object: 0xffff94895ff2c4e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\DDConfigCA.exe
pool: 0xffff94895ff2c5f0 | file object: 0xffff94895ff2c670 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff2c780 | file object: 0xffff94895ff2c800 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff2c910 | file object: 0xffff94895ff2c990 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\concrt140.dll
pool: 0xffff94895ff2caa0 | file object: 0xffff94895ff2cb20 | offsetby: 0x80
\Windows\System32\en-US\OpenWith.exe.mui
pool: 0xffff94895ff2cc30 | file object: 0xffff94895ff2ccb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\1033\msenvmui.dll
pool: 0xffff94895ff2cdc0 | file object: 0xffff94895ff2ce40 | offsetby: 0x80
\Program Files (x86)\Common Files\Microsoft Shared\MSEnv\VsLogP.dll
pool: 0xffff94895ff2d0e0 | file object: 0xffff94895ff2d160 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Net.Http\4d871daa5d924c35bb2668cbd6314218\System.Net.Http.ni.dll.aux
pool: 0xffff94895ff2d270 | file object: 0xffff94895ff2d2f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff2d400 | file object: 0xffff94895ff2d480 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\msenv.dll
pool: 0xffff94895ff2d590 | file object: 0xffff94895ff2d610 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V7702e130#\435cf86f324c6dbfa667566b8ab82479\Microsoft.VisualStudio.CommonIDE.ni.dll.aux
pool: 0xffff94895ff2d720 | file object: 0xffff94895ff2d7a0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff2d8b0 | file object: 0xffff94895ff2d930 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff2da40 | file object: 0xffff94895ff2dac0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff2dbd0 | file object: 0xffff94895ff2dc50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94895ff2dd60 | file object: 0xffff94895ff2dde0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Library Manager\Microsoft.Web.LibraryManager.Vsix.dll
pool: 0xffff94895ff2e080 | file object: 0xffff94895ff2e100 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Forms\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Forms.dll
pool: 0xffff94895ff2e210 | file object: 0xffff94895ff2e290 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Shell.Framework.dll
pool: 0xffff94895ff2e3a0 | file object: 0xffff94895ff2e420 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\netstandard\v4.0_2.0.0.0__cc7b13ffcd2ddd51\netstandard.dll
pool: 0xffff94895ff2e530 | file object: 0xffff94895ff2e5b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Shell.Interop.9.0.dll
pool: 0xffff94895ff2e6c0 | file object: 0xffff94895ff2e740 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff2e850 | file object: 0xffff94895ff2e8d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\1ta1utvq.5rj\en-US\Microsoft.Templates.resources.dll
pool: 0xffff94895ff2e9e0 | file object: 0xffff94895ff2ea60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Microsoft.VisualStudio.Data.Tools.Package.SqlProfile.dll
pool: 0xffff94895ff2eb70 | file object: 0xffff94895ff2ebf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff2ed00 | file object: 0xffff94895ff2ed80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.OLE.Interop.dll
pool: 0xffff94895ff2f020 | file object: 0xffff94895ff2f0a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\aepxgmna.u04\Microsoft.VisualStudio.Debugger.VSCodeDebuggerHost.dll
pool: 0xffff94895ff2f1b0 | file object: 0xffff94895ff2f230 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Shell.Interop.dll
pool: 0xffff94895ff2f340 | file object: 0xffff94895ff2f3c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.TextTemplating.VSHost.15.0.dll
pool: 0xffff94895ff2f4d0 | file object: 0xffff94895ff2f550 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Shell.15.0.dll
pool: 0xffff94895ff2f660 | file object: 0xffff94895ff2f6e0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\68c30330810670ae9f5e78854504aaae\System.Xaml.ni.dll
pool: 0xffff94895ff2f7f0 | file object: 0xffff94895ff2f870 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff2f980 | file object: 0xffff94895ff2fa00 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V32c79513#\4f3d2e14a23c19ad206849aadadeb908\Microsoft.VisualStudio.Utilities.ni.dll.aux
pool: 0xffff94895ff2fb10 | file object: 0xffff94895ff2fb90 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff2fca0 | file object: 0xffff94895ff2fd20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Interop\Microsoft.VisualStudio.Shell.Interop.8.0.dll
pool: 0xffff94895ff2fe30 | file object: 0xffff94895ff2feb0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vc1f51adf#\5f9b542a15c5d14a88940a2ff8efdfe3\Microsoft.VisualStudio.Shell.15.0.ni.dll.aux
pool: 0xffff94895ff30150 | file object: 0xffff94895ff301d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff302e0 | file object: 0xffff94895ff30360 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Drawing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Drawing.dll
pool: 0xffff94895ff30470 | file object: 0xffff94895ff304f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Utilities.dll
pool: 0xffff94895ff30600 | file object: 0xffff94895ff30680 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff30790 | file object: 0xffff94895ff30810 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.CommonIDE.dll
pool: 0xffff94895ff30920 | file object: 0xffff94895ff309a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Telemetry.Package.dll
pool: 0xffff94895ff30ab0 | file object: 0xffff94895ff30b30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Validation.dll
pool: 0xffff94895ff30c40 | file object: 0xffff94895ff30cc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\1ta1utvq.5rj\Microsoft.Templates.dll
pool: 0xffff94895ff30dd0 | file object: 0xffff94895ff30e50 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V412add50#\dace5a3e2d8c9f1791aa15d2ce6d811c\Microsoft.VisualStudio.Shell.UI.Internal.ni.dll.aux
pool: 0xffff94895ff310f0 | file object: 0xffff94895ff31170 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Telemetry.dll
pool: 0xffff94895ff31280 | file object: 0xffff94895ff31300 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff31410 | file object: 0xffff94895ff31490 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.WPFFlavor.dll
pool: 0xffff94895ff315a0 | file object: 0xffff94895ff31620 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\mhdggq4k.qg3\Microsoft.VisualStudio.Containers.Tools.Package.dll
pool: 0xffff94895ff31730 | file object: 0xffff94895ff317b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff318c0 | file object: 0xffff94895ff31940 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff31a50 | file object: 0xffff94895ff31ad0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Shell.UI.Internal.dll
pool: 0xffff94895ff31be0 | file object: 0xffff94895ff31c60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\aepxgmna.u04\Microsoft.VisualStudio.Debugger.VSCodeDebuggerHost.dll
pool: 0xffff94895ff31d70 | file object: 0xffff94895ff31df0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Azure.DataLakeToolsForVS.dll
pool: 0xffff94895ff32090 | file object: 0xffff94895ff32110 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff32220 | file object: 0xffff94895ff322a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Shell.Interop.10.0.dll
pool: 0xffff94895ff323b0 | file object: 0xffff94895ff32430 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\VB\Bin\1033\msvbprjUI.dll
pool: 0xffff94895ff32540 | file object: 0xffff94895ff325c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff326d0 | file object: 0xffff94895ff32750 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff32860 | file object: 0xffff94895ff328e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff329f0 | file object: 0xffff94895ff32a70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.WPFFlavor.dll
pool: 0xffff94895ff32b80 | file object: 0xffff94895ff32c00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\Microsoft.VisualStudio.ConnectedServices.Package2.dll
pool: 0xffff94895ff32d10 | file object: 0xffff94895ff32d90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\Microsoft.VisualStudio.ConnectedServices.Package2.dll
pool: 0xffff94895ff33030 | file object: 0xffff94895ff330b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff331c0 | file object: 0xffff94895ff33240 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\mhdggq4k.qg3\Microsoft.VisualStudio.Containers.Tools.Package.dll
pool: 0xffff94895ff33350 | file object: 0xffff94895ff333d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Azure.DataLakeToolsForVS.dll
pool: 0xffff94895ff334e0 | file object: 0xffff94895ff33560 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Graphics\Debugger\VsGraphicsDebuggerPkg.dll
pool: 0xffff94895ff33670 | file object: 0xffff94895ff336f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Diagnostics.Assert.dll
pool: 0xffff94895ff33800 | file object: 0xffff94895ff33880 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\1033\MetricsPackageUI.dll
pool: 0xffff94895ff33990 | file object: 0xffff94895ff33a10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff33b20 | file object: 0xffff94895ff33ba0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff33cb0 | file object: 0xffff94895ff33d30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VS SCC\1033\VssProviderui.dll
pool: 0xffff94895ff33e40 | file object: 0xffff94895ff33ec0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\1033\Microsoft.VisualStudio.Web.ApplicationUI.dll
pool: 0xffff94895ff34160 | file object: 0xffff94895ff341e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Graphics\Debugger\VsGraphicsDebuggerPkg.dll
pool: 0xffff94895ff342f0 | file object: 0xffff94895ff34370 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff34480 | file object: 0xffff94895ff34500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff34610 | file object: 0xffff94895ff34690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff347a0 | file object: 0xffff94895ff34820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff34930 | file object: 0xffff94895ff349b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff34ac0 | file object: 0xffff94895ff34b40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff34c50 | file object: 0xffff94895ff34cd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\msvcp140.dll
pool: 0xffff94895ff34de0 | file object: 0xffff94895ff34e60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff35100 | file object: 0xffff94895ff35180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff35290 | file object: 0xffff94895ff35310 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff35420 | file object: 0xffff94895ff354a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff355b0 | file object: 0xffff94895ff35630 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ManagedProjectSystem\Microsoft.VisualStudio.ProjectSystem.Managed.VS.Client.dll
pool: 0xffff94895ff35740 | file object: 0xffff94895ff357c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff358d0 | file object: 0xffff94895ff35950 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff35a60 | file object: 0xffff94895ff35ae0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.CodeMarkers.dll
pool: 0xffff94895ff35bf0 | file object: 0xffff94895ff35c70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ManagedProjectSystem\Microsoft.VisualStudio.ProjectSystem.Managed.VS.Client.dll
pool: 0xffff94895ff35d80 | file object: 0xffff94895ff35e00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff360a0 | file object: 0xffff94895ff36120 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff36230 | file object: 0xffff94895ff362b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ManagedProjectSystem\Microsoft.VisualStudio.ProjectSystem.Managed.VS.dll
pool: 0xffff94895ff363c0 | file object: 0xffff94895ff36440 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff36550 | file object: 0xffff94895ff365d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ManagedProjectSystem\Microsoft.VisualStudio.ProjectSystem.Managed.VS.dll
pool: 0xffff94895ff366e0 | file object: 0xffff94895ff36760 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\vcruntime140.dll
pool: 0xffff94895ff36870 | file object: 0xffff94895ff368f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff36a00 | file object: 0xffff94895ff36a80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff36b90 | file object: 0xffff94895ff36c10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Microsoft.VisualStudio.Data.Tools.Package.dll
pool: 0xffff94895ff36d20 | file object: 0xffff94895ff36da0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Microsoft.VisualStudio.Data.Tools.Package.dll
pool: 0xffff94895ff37040 | file object: 0xffff94895ff370c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff371d0 | file object: 0xffff94895ff37250 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff37360 | file object: 0xffff94895ff373e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLEditor\Microsoft.VisualStudio.Data.Tools.SqlEditor.dll
pool: 0xffff94895ff374f0 | file object: 0xffff94895ff37570 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\WebJobs\Microsoft.WebTools.Azure.Functions.dll
pool: 0xffff94895ff37680 | file object: 0xffff94895ff37700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff37810 | file object: 0xffff94895ff37890 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Designers\Microsoft.VisualStudio.Data.Tools.Relational.Design.Package.dll
pool: 0xffff94895ff379a0 | file object: 0xffff94895ff37a20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff37b30 | file object: 0xffff94895ff37bb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Microsoft.VisualStudio.Data.Tools.Package.SqlProfile.dll
pool: 0xffff94895ff37cc0 | file object: 0xffff94895ff37d40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\1033\Microsoft.VisualStudio.Data.Tools.SqlCLRIntellisenseHostingEngineUI.dll
pool: 0xffff94895ff37e50 | file object: 0xffff94895ff37ed0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\VsGraphics\microsoft.visualstudio.graphics.dll
pool: 0xffff94895ff38170 | file object: 0xffff94895ff381f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Microsoft.VisualStudio.Data.Tools.SqlObjectExplorer.dll
pool: 0xffff94895ff38300 | file object: 0xffff94895ff38380 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\1033\Microsoft.VisualStudio.QualityTools.TestCaseManagementUI.dll
pool: 0xffff94895ff38490 | file object: 0xffff94895ff38510 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\VC\ClassWizard\ClwWizard.dll
pool: 0xffff94895ff38620 | file object: 0xffff94895ff386a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\WebJobs\Microsoft.WebTools.Azure.Functions.dll
pool: 0xffff94895ff387b0 | file object: 0xffff94895ff38830 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff38940 | file object: 0xffff94895ff389c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\VC\ClassWizard\ClwWizard.dll
pool: 0xffff94895ff38ad0 | file object: 0xffff94895ff38b50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Designers\Microsoft.VisualStudio.Data.Tools.Relational.Design.Package.dll
pool: 0xffff94895ff38c60 | file object: 0xffff94895ff38ce0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLEditor\Microsoft.VisualStudio.Data.Tools.SqlDebugger.dll
pool: 0xffff94895ff38df0 | file object: 0xffff94895ff38e70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\WebJobs\Microsoft.WebTools.Azure.WebJobs.Package.dll
pool: 0xffff94895ff39110 | file object: 0xffff94895ff39190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff392a0 | file object: 0xffff94895ff39320 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\VsGraphics\microsoft.visualstudio.graphics.dll
pool: 0xffff94895ff39430 | file object: 0xffff94895ff394b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff395c0 | file object: 0xffff94895ff39640 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff39750 | file object: 0xffff94895ff397d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff398e0 | file object: 0xffff94895ff39960 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Microsoft.VisualStudio.Data.Tools.SqlObjectExplorer.dll
pool: 0xffff94895ff39a70 | file object: 0xffff94895ff39af0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff39c00 | file object: 0xffff94895ff39c80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\CodeGenerators\Microsoft.WebTools.CodeGenerators.dll
pool: 0xffff94895ff39d90 | file object: 0xffff94895ff39e10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLEditor\Microsoft.VisualStudio.Data.Tools.SqlEditor.dll
pool: 0xffff94895ff3a0b0 | file object: 0xffff94895ff3a130 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLEditor\Microsoft.VisualStudio.Data.Tools.SqlDebugger.dll
pool: 0xffff94895ff3a240 | file object: 0xffff94895ff3a2c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3a3d0 | file object: 0xffff94895ff3a450 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\WebJobs\Microsoft.WebTools.Azure.WebJobs.Package.dll
pool: 0xffff94895ff3a560 | file object: 0xffff94895ff3a5e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\Tools\VDT\1033\vdt80pui.dll
pool: 0xffff94895ff3a6f0 | file object: 0xffff94895ff3a770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3a880 | file object: 0xffff94895ff3a900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3aa10 | file object: 0xffff94895ff3aa90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Project\Microsoft.VisualStudio.Web.Project.dll
pool: 0xffff94895ff3aba0 | file object: 0xffff94895ff3ac20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3ad30 | file object: 0xffff94895ff3adb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Scaffolding\Microsoft.WebTools.Scaffolding.VS.dll
pool: 0xffff94895ff3b050 | file object: 0xffff94895ff3b0d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\TaskRunnerExplorer\Microsoft.WebTools.TaskRunnerExplorer.Extensions.dll
pool: 0xffff94895ff3b1e0 | file object: 0xffff94895ff3b260 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\TaskRunnerExplorer\Microsoft.WebTools.TaskRunnerExplorer.dll
pool: 0xffff94895ff3b370 | file object: 0xffff94895ff3b3f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Scaffolding\Microsoft.WebTools.Scaffolding.VS.dll
pool: 0xffff94895ff3b500 | file object: 0xffff94895ff3b580 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\TaskRunnerExplorer\Microsoft.WebTools.TaskRunnerExplorer.Extensions.dll
pool: 0xffff94895ff3b690 | file object: 0xffff94895ff3b710 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3b820 | file object: 0xffff94895ff3b8a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Common\Microsoft.VisualStudio.WindowsAzure.CommonAzureTools.Package.dll
pool: 0xffff94895ff3b9b0 | file object: 0xffff94895ff3ba30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3bb40 | file object: 0xffff94895ff3bbc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3bcd0 | file object: 0xffff94895ff3bd50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3be60 | file object: 0xffff94895ff3bee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3c180 | file object: 0xffff94895ff3c200 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Project\Microsoft.VisualStudio.Web.Project.dll
pool: 0xffff94895ff3c310 | file object: 0xffff94895ff3c390 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\TaskRunnerExplorer\Microsoft.WebTools.TaskRunnerExplorer.dll
pool: 0xffff94895ff3c4a0 | file object: 0xffff94895ff3c520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3c630 | file object: 0xffff94895ff3c6b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3c7c0 | file object: 0xffff94895ff3c840 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\ProjectSystem\Microsoft.WebTools.ProjectSystem.dll
pool: 0xffff94895ff3c950 | file object: 0xffff94895ff3c9d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Common\Microsoft.VisualStudio.WindowsAzure.CommonAzureTools.Package.dll
pool: 0xffff94895ff3cae0 | file object: 0xffff94895ff3cb60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3cc70 | file object: 0xffff94895ff3ccf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\nuyyjiec.xhl\Microsoft.VisualStudio.Containers.Tools.Extensions.Package.dll
pool: 0xffff94895ff3ce00 | file object: 0xffff94895ff3ce80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\ProjectSystem\Microsoft.WebTools.ProjectSystem.dll
pool: 0xffff94895ff3d120 | file object: 0xffff94895ff3d1a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\nuyyjiec.xhl\Microsoft.VisualStudio.Containers.Tools.Extensions.Package.dll
pool: 0xffff94895ff3d2b0 | file object: 0xffff94895ff3d330 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\CodeGenerators\Microsoft.WebTools.CodeGenerators.dll
pool: 0xffff94895ff3d440 | file object: 0xffff94895ff3d4c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Kubernetes.Tools.Package.dll
pool: 0xffff94895ff3d5d0 | file object: 0xffff94895ff3d650 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Kubernetes.Tools.Package.dll
pool: 0xffff94895ff3d760 | file object: 0xffff94895ff3d7e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\Tools\VDT\1033\vdt80ui.dll
pool: 0xffff94895ff3d8f0 | file object: 0xffff94895ff3d970 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\VC#\VCSPackages\1033\csprojui.dll
pool: 0xffff94895ff3da80 | file object: 0xffff94895ff3db00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\qlbscfin.1er\GoogleTestAdapter.VsPackage.TAfGT.dll
pool: 0xffff94895ff3dc10 | file object: 0xffff94895ff3dc90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\1033\stanpackageui.dll
pool: 0xffff94895ff3dda0 | file object: 0xffff94895ff3de20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\txxba55a.20s\Microsoft.VisualStudio.DevOps.Package.15.0.dll
pool: 0xffff94895ff3e0c0 | file object: 0xffff94895ff3e140 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3e250 | file object: 0xffff94895ff3e2d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CMake\Microsoft.VisualStudio.CMake.Package.dll
pool: 0xffff94895ff3e3e0 | file object: 0xffff94895ff3e460 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\zkaemjb2.lop\Microsoft.VisualStudio.CloudExplorer.Package.dll
pool: 0xffff94895ff3e570 | file object: 0xffff94895ff3e5f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\qlbscfin.1er\GoogleTestAdapter.VsPackage.TAfGT.dll
pool: 0xffff94895ff3e700 | file object: 0xffff94895ff3e780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3e890 | file object: 0xffff94895ff3e910 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\AppCapabilitiesDesigner\Microsoft.VisualStudio.TabDesigner.Implementation.dll
pool: 0xffff94895ff3ea20 | file object: 0xffff94895ff3eaa0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CMake\Microsoft.VisualStudio.CMake.Package.dll
pool: 0xffff94895ff3ebb0 | file object: 0xffff94895ff3ec30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Commands\Microsoft.VisualStudio.Commands.dll
pool: 0xffff94895ff3ed40 | file object: 0xffff94895ff3edc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3f060 | file object: 0xffff94895ff3f0e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3f1f0 | file object: 0xffff94895ff3f270 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Commands\Microsoft.VisualStudio.Commands.dll
pool: 0xffff94895ff3f380 | file object: 0xffff94895ff3f400 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\DesktopBridge\Microsoft.VisualStudio.DesktopBridge.ProjectSystem.dll
pool: 0xffff94895ff3f510 | file object: 0xffff94895ff3f590 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\DesktopBridge\Microsoft.VisualStudio.DesktopBridge.ProjectSystem.dll
pool: 0xffff94895ff3f6a0 | file object: 0xffff94895ff3f720 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Editors.WCF.dll
pool: 0xffff94895ff3f830 | file object: 0xffff94895ff3f8b0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V48e6e4d8#\efcf0f139287d0ba0c7e0efeeeeccf01\Microsoft.VisualStudio.Diff.ni.dll.aux
pool: 0xffff94895ff3f9c0 | file object: 0xffff94895ff3fa40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff3fb50 | file object: 0xffff94895ff3fbd0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V60c407c8#\e4be3a2bd2b633bf7ad465f83cb70b83\Microsoft.VisualStudio.Editor.Implementation.ni.dll.aux
pool: 0xffff94895ff3fce0 | file object: 0xffff94895ff3fd60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\txxba55a.20s\Microsoft.VisualStudio.DevOps.Package.15.0.dll
pool: 0xffff94895ff3fe70 | file object: 0xffff94895ff3fef0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Diff.dll
pool: 0xffff94895ff40000 | file object: 0xffff94895ff40080 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff40190 | file object: 0xffff94895ff40210 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff40320 | file object: 0xffff94895ff403a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ClientDiagnostics\Microsoft.VisualStudio.ClientDiagnostics.dll
pool: 0xffff94895ff404b0 | file object: 0xffff94895ff40530 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff40640 | file object: 0xffff94895ff406c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\en\Microsoft.VisualStudio.Shell.Connected.resources.dll
pool: 0xffff94895ff407d0 | file object: 0xffff94895ff40850 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\en\Microsoft.VisualStudio.DesignTools.XamlDesignerHost.resources.dll
pool: 0xffff94895ff40960 | file object: 0xffff94895ff409e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ReferenceManager\en\Microsoft.VisualStudio.ReferenceManager.Providers.resources.dll
pool: 0xffff94895ff40af0 | file object: 0xffff94895ff40b70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TailoredProjectServices\Microsoft.VisualStudio.AppxPackage.dll
pool: 0xffff94895ff40c80 | file object: 0xffff94895ff40d00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff40e10 | file object: 0xffff94895ff40e90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TailoredProjectServices\Microsoft.VisualStudio.TailoredProjectServices.dll
pool: 0xffff94895ff41130 | file object: 0xffff94895ff411b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Templates.VB.Winforms.en-US.Project..vstman
pool: 0xffff94895ff412c0 | file object: 0xffff94895ff41340 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.Commenting.Presentation.dll
pool: 0xffff94895ff41450 | file object: 0xffff94895ff414d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.VisualStudio.LanguageServices.dll
pool: 0xffff94895ff415e0 | file object: 0xffff94895ff41660 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.Tools.dll
pool: 0xffff94895ff41770 | file object: 0xffff94895ff417f0 | offsetby: 0x80
\$Directory
pool: 0xffff94895ff41900 | file object: 0xffff94895ff41980 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Editor.Implementation.dll
pool: 0xffff94895ff41a90 | file object: 0xffff94895ff41b10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff41c20 | file object: 0xffff94895ff41ca0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94895ff41db0 | file object: 0xffff94895ff41e30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VsLog.dll
pool: 0xffff948960043540 | file object: 0xffff9489600435a0 | offsetby: 0x60
\$NonCachedIo
pool: 0xffff948960045090 | file object: 0xffff9489600450f0 | offsetby: 0x60
\$NonCachedIo
pool: 0xffff9489600454e0 | file object: 0xffff948960045540 | offsetby: 0x60
\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A}\MpKslDrv.sys
pool: 0xffff948960045650 | file object: 0xffff9489600456b0 | offsetby: 0x60
骠轆舎￿Ṑ譢舎￿Ѐ鈰轆舎￿
pool: 0xffff948960046790 | file object: 0xffff9489600467f0 | offsetby: 0x60
_dows\apppatch\drvmain.sdb
pool: 0xffff948960047310 | file object: 0xffff948960047370 | offsetby: 0x60
ȁԀ Ƞāက䀀āԀȁԀ Ƞā
pool: 0xffff948960047760 | file object: 0xffff9489600477c0 | offsetby: 0x60
\Windows\System32\drivers\lpus.sys
pool: 0xffff9489600488a0 | file object: 0xffff948960048900 | offsetby: 0x60
쬀診舎￿쬀診舎￿Ā䳀岴钉￿
pool: 0xffff948960184160 | file object: 0xffff9489601841e0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnostics-Performance%4Operational.evtx
pool: 0xffff9489601842f0 | file object: 0xffff948960184370 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960184480 | file object: 0xffff948960184500 | offsetby: 0x80
\Windows\System32\BitsProxy.dll
pool: 0xffff948960184610 | file object: 0xffff948960184690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601847a0 | file object: 0xffff948960184820 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_E971237E6F746E61211CEFFCF066C8C5
pool: 0xffff948960184930 | file object: 0xffff9489601849b0 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\BAD725C80F9E10846F35D039A996E4A8_88B6AE015495C1ECC395D19C1DD02894
pool: 0xffff948960184ac0 | file object: 0xffff948960184b40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960184c50 | file object: 0xffff948960184cd0 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff948960184de0 | file object: 0xffff948960184e60 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\B66240B0F6C84BD4857ABA60CF5CE4A0_5043E0F5DF723415C9EECC201C838A62
pool: 0xffff948960185100 | file object: 0xffff948960185180 | offsetby: 0x80
\Windows\System32\TaskSchdPS.dll
pool: 0xffff948960185290 | file object: 0xffff948960185310 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\77EC63BDA74BD0D0E0426DC8F8008506
pool: 0xffff948960185420 | file object: 0xffff9489601854a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601855b0 | file object: 0xffff948960185630 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\FB0D848F74F70BB2EAA93746D24D9749
pool: 0xffff948960185740 | file object: 0xffff9489601857c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601858d0 | file object: 0xffff948960185950 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960185a60 | file object: 0xffff948960185ae0 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff948960185bf0 | file object: 0xffff948960185c70 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\InputApp_1000.18362.449.0_neutral_neutral_cw5n1h2txyewy\S-1-5-21-3234566417-3121902272-2793192418-1001.pckgdep
pool: 0xffff948960185d80 | file object: 0xffff948960185e00 | offsetby: 0x80
\Windows\System32\en-US\winnlsres.dll.mui
pool: 0xffff9489601860a0 | file object: 0xffff948960186120 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960186230 | file object: 0xffff9489601862b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601863c0 | file object: 0xffff948960186440 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\75CA58072B9926F763A91F0CC2798706_93E4B2BA79A897B3100CCB27F2D3BF4F
pool: 0xffff948960186550 | file object: 0xffff9489601865d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601866e0 | file object: 0xffff948960186760 | offsetby: 0x80
\$Directory
pool: 0xffff948960186870 | file object: 0xffff9489601868f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960186a00 | file object: 0xffff948960186a80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960186b90 | file object: 0xffff948960186c10 | offsetby: 0x80
\Program Files\Windows Defender\en-US\shellext.dll.mui
pool: 0xffff948960186d20 | file object: 0xffff948960186da0 | offsetby: 0x80
\Windows\System32\Windows.Networking.Proximity.dll
pool: 0xffff948960187040 | file object: 0xffff9489601870c0 | offsetby: 0x80
\Windows\System32\WiFiCloudStore.dll
pool: 0xffff9489601871d0 | file object: 0xffff948960187250 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960187360 | file object: 0xffff9489601873e0 | offsetby: 0x80
\Windows\System32\DictationManager.dll
pool: 0xffff9489601874f0 | file object: 0xffff948960187570 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\InputApp_1000.18362.449.0_neutral_neutral_cw5n1h2txyewy\ActivationStore.dat
pool: 0xffff948960187680 | file object: 0xffff948960187700 | offsetby: 0x80
\Windows\SystemApps\InputApp_cw5n1h2txyewy\WindowsInternal.ComposableShell.Experiences.TextInput.InputApp.exe
pool: 0xffff948960187810 | file object: 0xffff948960187890 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601879a0 | file object: 0xffff948960187a20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960187b30 | file object: 0xffff948960187bb0 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.UI.winmd
pool: 0xffff948960187cc0 | file object: 0xffff948960187d40 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\InputApp_1000.18362.449.0_neutral_neutral_cw5n1h2txyewy\ActivationStore.dat
pool: 0xffff948960187e50 | file object: 0xffff948960187ed0 | offsetby: 0x80
\Windows\System32\en-US\windows.applicationmodel.datatransfer.dll.mui
pool: 0xffff948960188170 | file object: 0xffff9489601881f0 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff948960188300 | file object: 0xffff948960188380 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960188490 | file object: 0xffff948960188510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960188620 | file object: 0xffff9489601886a0 | offsetby: 0x80
\Windows\rescache\_merged\311641844\3663362964.pri
pool: 0xffff9489601887b0 | file object: 0xffff948960188830 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\InputApp_1000.18362.449.0_neutral_neutral_cw5n1h2txyewy\ActivationStore.dat.LOG1
pool: 0xffff948960188940 | file object: 0xffff9489601889c0 | offsetby: 0x80
\Windows\SystemApps\InputApp_cw5n1h2txyewy\resources.pri
pool: 0xffff948960188ad0 | file object: 0xffff948960188b50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960188c60 | file object: 0xffff948960188ce0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\InputApp_1000.18362.449.0_neutral_neutral_cw5n1h2txyewy\ActivationStore.dat.LOG2
pool: 0xffff948960188df0 | file object: 0xffff948960188e70 | offsetby: 0x80
\Windows\SystemApps\InputApp_cw5n1h2txyewy
pool: 0xffff948960189110 | file object: 0xffff948960189190 | offsetby: 0x80
\Windows\Prefetch\WINDOWSINTERNAL.COMPOSABLESHE-D76C7BDB.pf
pool: 0xffff9489601892a0 | file object: 0xffff948960189320 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960189430 | file object: 0xffff9489601894b0 | offsetby: 0x80
\Windows\System32\en-US\winnlsres.dll.mui
pool: 0xffff9489601895c0 | file object: 0xffff948960189640 | offsetby: 0x80
\Users\User\AppData\Local\Packages\InputApp_cw5n1h2txyewy\Settings\settings.dat
pool: 0xffff948960189750 | file object: 0xffff9489601897d0 | offsetby: 0x80
\Windows\SystemResources\TextInput\TextInput.pri
pool: 0xffff9489601898e0 | file object: 0xffff948960189960 | offsetby: 0x80
\Windows\TextInput\WindowsInternal.ComposableShell.Experiences.TextInput.LayoutData.dll
pool: 0xffff948960189a70 | file object: 0xffff948960189af0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\InputApp_cw5n1h2txyewy\Settings\settings.dat.LOG1
pool: 0xffff948960189c00 | file object: 0xffff948960189c80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960189d90 | file object: 0xffff948960189e10 | offsetby: 0x80
\Windows\TextInput\WindowsInternal.ComposableShell.Experiences.TextInput.dll
pool: 0xffff94896018a0b0 | file object: 0xffff94896018a130 | offsetby: 0x80
\Windows\rescache\_merged\1660115751\3115916243.pri
pool: 0xffff94896018a240 | file object: 0xffff94896018a2c0 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94896018a3d0 | file object: 0xffff94896018a450 | offsetby: 0x80
\Windows\Fonts\segoeui.ttf
pool: 0xffff94896018a560 | file object: 0xffff94896018a5e0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.exe
pool: 0xffff94896018a6f0 | file object: 0xffff94896018a770 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896018a880 | file object: 0xffff94896018a900 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff94896018aa10 | file object: 0xffff94896018aa90 | offsetby: 0x80
\Windows\System32\EditionUpgradeHelper.dll
pool: 0xffff94896018aba0 | file object: 0xffff94896018ac20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896018ad30 | file object: 0xffff94896018adb0 | offsetby: 0x80
\$Directory
pool: 0xffff94896018b050 | file object: 0xffff94896018b0d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896018b1e0 | file object: 0xffff94896018b260 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\ActivationStore.dat.LOG2
pool: 0xffff94896018b370 | file object: 0xffff94896018b3f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896018b500 | file object: 0xffff94896018b580 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\Microsoft.UI.Xaml.dll
pool: 0xffff94896018b690 | file object: 0xffff94896018b710 | offsetby: 0x80
\Windows\System32\en-US\Windows.Security.Authentication.Web.Core.dll.mui
pool: 0xffff94896018b820 | file object: 0xffff94896018b8a0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\ActivationStore.dat.LOG1
pool: 0xffff94896018b9b0 | file object: 0xffff94896018ba30 | offsetby: 0x80
\Users\User\AppData\Local\Packages\InputApp_cw5n1h2txyewy\Settings\settings.dat.LOG2
pool: 0xffff94896018bb40 | file object: 0xffff94896018bbc0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\ActivationStore.dat
pool: 0xffff94896018bcd0 | file object: 0xffff94896018bd50 | offsetby: 0x80
\Windows\System32\Windows.UI.Xaml.Resources.rs5.dll
pool: 0xffff94896018be60 | file object: 0xffff94896018bee0 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.ApplicationModel.winmd
pool: 0xffff94896018c180 | file object: 0xffff94896018c200 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.UI.Xaml.winmd
pool: 0xffff94896018c310 | file object: 0xffff94896018c390 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\ActivationStore.dat
pool: 0xffff94896018c4a0 | file object: 0xffff94896018c520 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe
pool: 0xffff94896018c630 | file object: 0xffff94896018c6b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\Settings\settings.dat
pool: 0xffff94896018c7c0 | file object: 0xffff94896018c840 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896018c950 | file object: 0xffff94896018c9d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\Settings\settings.dat.LOG1
pool: 0xffff94896018cae0 | file object: 0xffff94896018cb60 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\Settings\settings.dat.LOG2
pool: 0xffff94896018cc70 | file object: 0xffff94896018ccf0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_neutral_split.scale-100_8wekyb3d8bbwe\Assets\AppTiles\SplashScreen.scale-100.png
pool: 0xffff94896018ce00 | file object: 0xffff94896018ce80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896018d120 | file object: 0xffff94896018d1a0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94896018d2b0 | file object: 0xffff94896018d330 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\WinStore.App.dll
pool: 0xffff94896018d440 | file object: 0xffff94896018d4c0 | offsetby: 0x80
\Windows\System32\RuntimeBroker.exe
pool: 0xffff94896018d5d0 | file object: 0xffff94896018d650 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896018d760 | file object: 0xffff94896018d7e0 | offsetby: 0x80
\Windows\Prefetch\RUNTIMEBROKER.EXE-9F8CD5F6.pf
pool: 0xffff94896018d8f0 | file object: 0xffff94896018d970 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData
pool: 0xffff94896018da80 | file object: 0xffff94896018db00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896018dc10 | file object: 0xffff94896018dc90 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\LocalCache\perUserCache_0\82a11827-fe78-4f33-8d5f-c42de80338bc
pool: 0xffff94896018dda0 | file object: 0xffff94896018de20 | offsetby: 0x80
\Windows\System32
pool: 0xffff94896018e0c0 | file object: 0xffff94896018e140 | offsetby: 0x80
܎Ĩ떠遱舎￿諰蔑舎￿謀蔑舎￿軘謮舎￿쀀Xů䫐ṋ鸠괮㩀ǖ <MpKslDrv.sysp
pool: 0xffff94896018e250 | file object: 0xffff94896018e2d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896018e3e0 | file object: 0xffff94896018e460 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\LocalCache\perUserCache_0\ef5653de-42e1-454f-bdba-70c1caf10a7b
pool: 0xffff94896018e570 | file object: 0xffff94896018e5f0 | offsetby: 0x80
\Windows\System32\dmcfgutils.dll
pool: 0xffff94896018e700 | file object: 0xffff94896018e780 | offsetby: 0x80
\$Directory
pool: 0xffff94896018e890 | file object: 0xffff94896018e910 | offsetby: 0x80
\Windows\System32\cmgrcspps.dll
pool: 0xffff94896018ea20 | file object: 0xffff94896018eaa0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896018ebb0 | file object: 0xffff94896018ec30 | offsetby: 0x80
\Windows\System32\coredpussvr.exe
pool: 0xffff94896018ed40 | file object: 0xffff94896018edc0 | offsetby: 0x80
\Windows\System32\dmxmlhelputils.dll
pool: 0xffff94896018f060 | file object: 0xffff94896018f0e0 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.UI.winmd
pool: 0xffff94896018f1f0 | file object: 0xffff94896018f270 | offsetby: 0x80
\Windows\System32\coredpus.dll
pool: 0xffff94896018f380 | file object: 0xffff94896018f400 | offsetby: 0x80
鵀褷舎￿鵀褷舎￿Ȁ(ᨘ耀xg
pool: 0xffff94896018f510 | file object: 0xffff94896018f590 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\LocalCache\perUserCache_0\5060625c-1a9d-468e-a470-37b89ddaa9df
pool: 0xffff94896018f6a0 | file object: 0xffff94896018f720 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896018f830 | file object: 0xffff94896018f8b0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WindowsStore_12005.1001.1.0_x64__8wekyb3d8bbwe\Microsoft.Membership.MeControl.dll
pool: 0xffff94896018f9c0 | file object: 0xffff94896018fa40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896018fb50 | file object: 0xffff94896018fbd0 | offsetby: 0x80
\Windows\System32\enterprisecsps.dll
pool: 0xffff94896018fce0 | file object: 0xffff94896018fd60 | offsetby: 0x80
\Windows\System32\dmenterprisediagnostics.dll
pool: 0xffff94896018fe70 | file object: 0xffff94896018fef0 | offsetby: 0x80
\Windows\System32\Windows.Energy.dll
pool: 0xffff948960190000 | file object: 0xffff948960190080 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960190190 | file object: 0xffff948960190210 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960190320 | file object: 0xffff9489601903a0 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.Security.winmd
pool: 0xffff9489601904b0 | file object: 0xffff948960190530 | offsetby: 0x80
\Windows\System32\en-US\dnsapi.dll.mui
pool: 0xffff948960190640 | file object: 0xffff9489601906c0 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff9489601907d0 | file object: 0xffff948960190850 | offsetby: 0x80
\Windows\System32\coredpussvr.exe
pool: 0xffff948960190960 | file object: 0xffff9489601909e0 | offsetby: 0x80
\Windows\System32\MosStorage.dll
pool: 0xffff948960190af0 | file object: 0xffff948960190b70 | offsetby: 0x80
\Windows\System32\en-US\moshost.dll.mui
pool: 0xffff948960190c80 | file object: 0xffff948960190d00 | offsetby: 0x80
\Windows\System32\MapConfiguration.dll
pool: 0xffff948960190e10 | file object: 0xffff948960190e90 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-4BA0E729.pf
pool: 0xffff948960191130 | file object: 0xffff9489601911b0 | offsetby: 0x80
\Windows\System32\ztrace_maps.dll
pool: 0xffff9489601912c0 | file object: 0xffff948960191340 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960191450 | file object: 0xffff9489601914d0 | offsetby: 0x80
\Windows\System32\imagehlp.dll
pool: 0xffff9489601915e0 | file object: 0xffff948960191660 | offsetby: 0x80
\Windows\System32\en-US\tquery.dll.mui
pool: 0xffff948960191770 | file object: 0xffff9489601917f0 | offsetby: 0x80
\Windows\System32\ztrace_maps.dll
pool: 0xffff948960191900 | file object: 0xffff948960191980 | offsetby: 0x80
\Windows\System32\moshost.dll
pool: 0xffff948960191a90 | file object: 0xffff948960191b10 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
pool: 0xffff948960191c20 | file object: 0xffff948960191ca0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\FB0D848F74F70BB2EAA93746D24D9749
pool: 0xffff948960191db0 | file object: 0xffff948960191e30 | offsetby: 0x80
\Windows\System32\en-US\windows.ui.xaml.dll.mui
pool: 0xffff9489601920d0 | file object: 0xffff948960192150 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960192260 | file object: 0xffff9489601922e0 | offsetby: 0x80
\Windows\System32\MapsBtSvc.dll
pool: 0xffff9489601923f0 | file object: 0xffff948960192470 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
pool: 0xffff948960192580 | file object: 0xffff948960192600 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\LocalCache\perUserCache_0\17746679-5efa-4891-a8d7-8ca45b9e83f7
pool: 0xffff948960192710 | file object: 0xffff948960192790 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601928a0 | file object: 0xffff948960192920 | offsetby: 0x80
\Windows\System32\tbs.dll
pool: 0xffff948960192a30 | file object: 0xffff948960192ab0 | offsetby: 0x80
\Windows\System32\dmclient.exe
pool: 0xffff948960192bc0 | file object: 0xffff948960192c40 | offsetby: 0x80
\Windows\System32\wscinterop.dll
pool: 0xffff948960192d50 | file object: 0xffff948960192dd0 | offsetby: 0x80
\Windows\System32\MosStorage.dll
pool: 0xffff948960193070 | file object: 0xffff9489601930f0 | offsetby: 0x80
\Windows\System32\MapsBtSvc.dll
pool: 0xffff948960193200 | file object: 0xffff948960193280 | offsetby: 0x80
\Windows\System32\MapConfiguration.dll
pool: 0xffff948960193390 | file object: 0xffff948960193410 | offsetby: 0x80
\Windows\System32\powrprof.dll
pool: 0xffff948960193520 | file object: 0xffff9489601935a0 | offsetby: 0x80
\Windows\System32\ncrypt.dll
pool: 0xffff9489601936b0 | file object: 0xffff948960193730 | offsetby: 0x80
\Windows\System32\umpdc.dll
pool: 0xffff948960193840 | file object: 0xffff9489601938c0 | offsetby: 0x80
\Users\User\.vscode\extensions\ms-vscode-remote.remote-wsl-0.44.2\package.jsone\build\Release\windows_process_t
pool: 0xffff9489601939d0 | file object: 0xffff948960193a50 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\LocalCache\perUserCache_0\a0861cd0-f844-403c-8bf4-329dbbcf7ee9
pool: 0xffff948960193b60 | file object: 0xffff948960193be0 | offsetby: 0x80
\Windows\System32\ntasn1.dll
pool: 0xffff948960193cf0 | file object: 0xffff948960193d70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960194010 | file object: 0xffff948960194090 | offsetby: 0x80
\Windows\System32\SgrmEnclave.dll
pool: 0xffff9489601941a0 | file object: 0xffff948960194220 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960194330 | file object: 0xffff9489601943b0 | offsetby: 0x80
\Windows\System32\SecurityCenterBroker.dll
pool: 0xffff9489601944c0 | file object: 0xffff948960194540 | offsetby: 0x80
\Windows\System32\Sgrm\SgrmAssertions.cat
pool: 0xffff948960194650 | file object: 0xffff9489601946d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601947e0 | file object: 0xffff948960194860 | offsetby: 0x80
\Windows\System32\Sgrm\SgrmAssertions.bin
pool: 0xffff948960194970 | file object: 0xffff9489601949f0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\clr.dll
pool: 0xffff948960194b00 | file object: 0xffff948960194b80 | offsetby: 0x80
\Windows\System32\vbsapi.dll
pool: 0xffff948960194c90 | file object: 0xffff948960194d10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960194e20 | file object: 0xffff948960194ea0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960195140 | file object: 0xffff9489601951c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601952d0 | file object: 0xffff948960195350 | offsetby: 0x80
\Windows\System32\SyncController.dll
pool: 0xffff948960195460 | file object: 0xffff9489601954e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601955f0 | file object: 0xffff948960195670 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Devenv.Config,version=16.6.30021.99\_package.json
pool: 0xffff948960195780 | file object: 0xffff948960195800 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\Recovery\Active\{7257C127-0B98-4054-B478-8E934E07E189}.dat
pool: 0xffff948960195910 | file object: 0xffff948960195990 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.OneConnect_5.2002.431.0_x64__8wekyb3d8bbwe\S-1-5-21-3234566417-3121902272-2793192418-1001.pckgdep
pool: 0xffff948960195aa0 | file object: 0xffff948960195b20 | offsetby: 0x80
\$Directory
pool: 0xffff948960195c30 | file object: 0xffff948960195cb0 | offsetby: 0x80
\Windows\Prefetch\SPPSVC.EXE-B0F8131B.pf
pool: 0xffff948960195dc0 | file object: 0xffff948960195e40 | offsetby: 0x80
\Windows\System32
pool: 0xffff9489601960e0 | file object: 0xffff948960196160 | offsetby: 0x80
\Windows\System32\en-US\combase.dll.mui
pool: 0xffff948960196270 | file object: 0xffff9489601962f0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff948960196400 | file object: 0xffff948960196480 | offsetby: 0x80
\Windows\System32\networkhelper.dll
pool: 0xffff948960196590 | file object: 0xffff948960196610 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\B398B80134F72209547439DB21AB308D_5FDD03068CBBD8A96F3AB9595BA10093
pool: 0xffff948960196720 | file object: 0xffff9489601967a0 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-25616620.pf
pool: 0xffff9489601968b0 | file object: 0xffff948960196930 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960196a40 | file object: 0xffff948960196ac0 | offsetby: 0x80
\Windows\System32\en-US\SgrmBroker.exe.mui
pool: 0xffff948960196bd0 | file object: 0xffff948960196c50 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff948960196d60 | file object: 0xffff948960196de0 | offsetby: 0x80
\Windows\System32\APHostService.dll
pool: 0xffff948960197080 | file object: 0xffff948960197100 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff948960197210 | file object: 0xffff948960197290 | offsetby: 0x80
\Windows\System32\UserDataLanguageUtil.dll
pool: 0xffff9489601973a0 | file object: 0xffff948960197420 | offsetby: 0x80
\Windows\System32\SyncController.dll
pool: 0xffff948960197530 | file object: 0xffff9489601975b0 | offsetby: 0x80
\Windows\System32\Phoneutil.dll
pool: 0xffff9489601976c0 | file object: 0xffff948960197740 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960197850 | file object: 0xffff9489601978d0 | offsetby: 0x80
\Windows\System32\UserDataPlatformHelperUtil.dll
pool: 0xffff9489601979e0 | file object: 0xffff948960197a60 | offsetby: 0x80
\Windows\System32\cemapi.dll
pool: 0xffff948960197b70 | file object: 0xffff948960197bf0 | offsetby: 0x80
\Windows\System32\syncutil.dll
pool: 0xffff948960197d00 | file object: 0xffff948960197d80 | offsetby: 0x80
\Windows\System32\Pimstore.dll
pool: 0xffff948960198020 | file object: 0xffff9489601980a0 | offsetby: 0x80
\Windows\System32\APHostClient.dll
pool: 0xffff9489601981b0 | file object: 0xffff948960198230 | offsetby: 0x80
\Windows\System32\APHostService.dll
pool: 0xffff948960198340 | file object: 0xffff9489601983c0 | offsetby: 0x80
\Windows\System32\MCCSPal.dll
pool: 0xffff9489601984d0 | file object: 0xffff948960198550 | offsetby: 0x80
\Windows\System32\accountaccessor.dll
pool: 0xffff948960198660 | file object: 0xffff9489601986e0 | offsetby: 0x80
\Windows\System32\UserDataPlatformHelperUtil.dll
pool: 0xffff9489601987f0 | file object: 0xffff948960198870 | offsetby: 0x80
\Windows\System32\networkhelper.dll
pool: 0xffff948960198980 | file object: 0xffff948960198a00 | offsetby: 0x80
\Windows\System32\syncutil.dll
pool: 0xffff948960198b10 | file object: 0xffff948960198b90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960198ca0 | file object: 0xffff948960198d20 | offsetby: 0x80
\Windows\System32\MCCSEngineShared.dll
pool: 0xffff948960198e30 | file object: 0xffff948960198eb0 | offsetby: 0x80
\Windows\System32
pool: 0xffff948960199150 | file object: 0xffff9489601991d0 | offsetby: 0x80
\Windows\System32\Pimstore.dll
pool: 0xffff9489601992e0 | file object: 0xffff948960199360 | offsetby: 0x80
\Windows\System32\InprocLogger.dll
pool: 0xffff948960199470 | file object: 0xffff9489601994f0 | offsetby: 0x80
\Windows\System32\APHostClient.dll
pool: 0xffff948960199600 | file object: 0xffff948960199680 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960199790 | file object: 0xffff948960199810 | offsetby: 0x80
\Windows\System32\accountaccessor.dll
pool: 0xffff948960199920 | file object: 0xffff9489601999a0 | offsetby: 0x80
\Windows\System32\MCCSEngineShared.dll
pool: 0xffff948960199ab0 | file object: 0xffff948960199b30 | offsetby: 0x80
\Windows\System32\cemapi.dll
pool: 0xffff948960199c40 | file object: 0xffff948960199cc0 | offsetby: 0x80
\Windows\System32\UserDataLanguageUtil.dll
pool: 0xffff948960199dd0 | file object: 0xffff948960199e50 | offsetby: 0x80
\Windows\System32\MCCSPal.dll
pool: 0xffff94896019a0f0 | file object: 0xffff94896019a170 | offsetby: 0x80
\Windows\System32\PhoneutilRes.dll
pool: 0xffff94896019a280 | file object: 0xffff94896019a300 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896019a410 | file object: 0xffff94896019a490 | offsetby: 0x80
\Windows\System32\SecurityCenterBrokerPS.dll
pool: 0xffff94896019a5a0 | file object: 0xffff94896019a620 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\LocalCache\perUserCache_0\9e93a50a-9213-4b09-ba86-218d05cdec33
pool: 0xffff94896019a730 | file object: 0xffff94896019a7b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\LocalCache\perUserCache_0\3f59dfe2-853b-4136-b864-496f8b307a79
pool: 0xffff94896019a8c0 | file object: 0xffff94896019a940 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896019aa50 | file object: 0xffff94896019aad0 | offsetby: 0x80
Ő䀐埍钉￿̄郸褷舎￿忀愢钉￿ﴠ悢钉￿䀐埍钉￿倀x`€襰褷舎￿..襰褷舎￿\Device\HarddiskVolume2\Windows\Fonts\timesi.ttf421a8e[2].png
pool: 0xffff94896019abe0 | file object: 0xffff94896019ac60 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.WindowsStore_8wekyb3d8bbwe\LocalCache\perUserCache_0\60fcad11-a230-46e8-8be7-784fb28c19a5
pool: 0xffff94896019ad70 | file object: 0xffff94896019adf0 | offsetby: 0x80
\Windows\System32\en-US\Windows.Web.dll.mui
pool: 0xffff94896019b090 | file object: 0xffff94896019b110 | offsetby: 0x80
\Windows\Fonts\seguisb.ttf
pool: 0xffff94896019b220 | file object: 0xffff94896019b2a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896019b3b0 | file object: 0xffff94896019b430 | offsetby: 0x80
\Windows\Fonts\seguisym.ttf
pool: 0xffff94896019b540 | file object: 0xffff94896019b5c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896019b6d0 | file object: 0xffff94896019b750 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896019b860 | file object: 0xffff94896019b8e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896019b9f0 | file object: 0xffff94896019ba70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896019bb80 | file object: 0xffff94896019bc00 | offsetby: 0x80
\Windows\Fonts
pool: 0xffff94896019bd10 | file object: 0xffff94896019bd90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896019c030 | file object: 0xffff94896019c0b0 | offsetby: 0x80
\Windows\System32\dsclient.dll
pool: 0xffff94896019c1c0 | file object: 0xffff94896019c240 | offsetby: 0x80
\Windows\System32\SyncRes.dll
pool: 0xffff94896019c350 | file object: 0xffff94896019c3d0 | offsetby: 0x80
\Registry\Machine\System\CurrentControlSet\Control\StateSeparation\RedirectionMap\Keys34-73a32824fd2c}\Prop
pool: 0xffff94896019c4e0 | file object: 0xffff94896019c560 | offsetby: 0x80
Ő̄蜸迨舎￿Ꮨ褷舎￿ꖠ岰钉￿ﭐ忱钉￿倀x|€ﺐ褶舎￿..ﺐ褶舎￿\Device\HarddiskVolume2\Windows\System32\en-US\mswsock.dll.m
pool: 0xffff94896019c670 | file object: 0xffff94896019c6f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896019c800 | file object: 0xffff94896019c880 | offsetby: 0x80
ᔠ褷舎￿ᔠ褷舎￿Ȁ(ჴ耀
pool: 0xffff94896019c990 | file object: 0xffff94896019ca10 | offsetby: 0x80
Ő䀐埍钉￿̄﷘褶舎￿ꖠ岰钉￿ﭐ忱钉￿䀐埍钉￿倀x|€ᒐ褷舎￿..ᒐ褷舎￿\Device\HarddiskVolume2\Windows\System32\en-US\mswsock.dll.m
pool: 0xffff94896019cb20 | file object: 0xffff94896019cba0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896019ccb0 | file object: 0xffff94896019cd30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896019ce40 | file object: 0xffff94896019cec0 | offsetby: 0x80
\Windows\System32\Phoneutil.dll
pool: 0xffff94896019d160 | file object: 0xffff94896019d1e0 | offsetby: 0x80
\Windows\System32\en-US\wscapi.dll.mui
pool: 0xffff94896019d2f0 | file object: 0xffff94896019d370 | offsetby: 0x80
Ő̼䚸赳舎￿஘褷舎￿扠徉钉￿緀惺钉￿退xh€А褷舎￿..А褷舎￿\Device\HarddiskVolume2\Windows\System32\conhost.exeves.dll
pool: 0xffff94896019d480 | file object: 0xffff94896019d500 | offsetby: 0x80
؀褷舎￿؀褷舎￿ȀⲀ滄Ɉ䮐觥舎￿ರ峪钉￿낀峩钉￿0̀耀퇆真
pool: 0xffff94896019d610 | file object: 0xffff94896019d690 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff94896019d7a0 | file object: 0xffff94896019d820 | offsetby: 0x80
Ő䀐埍钉￿̼͘褷舎￿扠徉钉￿緀惺钉￿䀐埍钉￿退xh€౐褷舎￿..౐褷舎￿\Device\HarddiskVolume2\Windows\System32\conhost.exere.dll
pool: 0xffff94896019d930 | file object: 0xffff94896019d9b0 | offsetby: 0x80
琀褷舎￿琀褷舎￿Ȁ(ᇜ耀pg
pool: 0xffff94896019dac0 | file object: 0xffff94896019db40 | offsetby: 0x80
Ő̄墘褷舎￿姸褷舎￿㯠徊钉￿ॠ忲钉￿退x`€奐褷舎￿..奐褷舎￿\Device\HarddiskVolume2\Windows\System32\atl.dllada4b[1].jpg
pool: 0xffff94896019dc50 | file object: 0xffff94896019dcd0 | offsetby: 0x80
\Windows\System32\en-US\propsys.dll.mui
pool: 0xffff94896019dde0 | file object: 0xffff94896019de60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896019e100 | file object: 0xffff94896019e180 | offsetby: 0x80
Ő̄ᵸ褷舎￿ﱸ褶舎￿맀嫨钉￿ᑐ忲钉￿倀xj€Ḱ褷舎￿..Ḱ褷舎￿\Device\HarddiskVolume2\Windows\SysWOW64\oleaut32.dllore.dll
pool: 0xffff94896019e290 | file object: 0xffff94896019e310 | offsetby: 0x80
゠褷舎￿゠褷舎￿Ȁ(l耀
pool: 0xffff94896019e420 | file object: 0xffff94896019e4a0 | offsetby: 0x80
Ő䀐埍钉￿̄堸迩舎￿̀惚钉￿僀悠钉￿䀐埍钉￿倀xb€脰褷舎￿..脰褷舎￿膌褷舎￿腼褷舎￿腞褷舎￿\Device\HarddiskVolume2\Windows\Fonts\cambria.ttcll0.coded
pool: 0xffff94896019e5b0 | file object: 0xffff94896019e630 | offsetby: 0x80
Ő䀐埍钉￿̄帘褷舎￿囀愢钉￿郀悫钉￿䀐埍钉￿倀xb€嵰褷舎￿..嵰褷舎￿\Device\HarddiskVolume2\Windows\Fonts\timesbd.ttfl87[1].jpg
pool: 0xffff94896019e740 | file object: 0xffff94896019e7c0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.Windows.ContentDeliveryManager_10.0.18362.449_neutral_neutral_cw5n1h2txyewy\ActivationStore.dat
pool: 0xffff94896019e8d0 | file object: 0xffff94896019e950 | offsetby: 0x80
䶀褷舎￿䶀褷舎￿Ȁર埇钉￿ર埇钉￿涰ᴈƽ䁀触舎￿ਠ埇钉￿₀当钉￿0ᆸ耀
pool: 0xffff94896019ea60 | file object: 0xffff94896019eae0 | offsetby: 0x80
Ő̼Ҹ褷舎￿놠峕钉￿걠惹钉￿ကxz€հ褷舎￿..հ褷舎￿\Device\HarddiskVolume2\Windows\System32\drivers\storport.sys
pool: 0xffff94896019ebf0 | file object: 0xffff94896019ec70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896019ed80 | file object: 0xffff94896019ee00 | offsetby: 0x80
Ő䀐埍钉￿̄鉘褷舎￿嶠徊钉￿惐钉￿䀐埍钉￿退xd€芐褷舎￿..芐褷舎￿\Device\HarddiskVolume2\Windows\System32\duser.dll337839d1b57
pool: 0xffff94896019f0a0 | file object: 0xffff94896019f120 | offsetby: 0x80
遣舎￿ÜÞ謨謮舎￿ᲂ랒郲秺뷙얻픂밠槠ヨ\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A}\MpKslDrv.sysv
pool: 0xffff94896019f230 | file object: 0xffff94896019f2b0 | offsetby: 0x80
ࣀ褷舎￿ࣀ褷舎￿Ȁ(ิ耀pg
pool: 0xffff94896019f3c0 | file object: 0xffff94896019f440 | offsetby: 0x80
圠褷舎￿圠褷舎￿Ȁ骰察钉￿骰察钉￿䘐딍ǐ預觥舎￿騠察钉￿炀忽钉￿0Θ耀
pool: 0xffff94896019f550 | file object: 0xffff94896019f5d0 | offsetby: 0x80
ff褶舎￿ff褶舎￿Ȁ쥀炄Ʃ린註舎￿ﷰ寗钉￿₀寝钉￿0র耀퇆真
pool: 0xffff94896019f6e0 | file object: 0xffff94896019f760 | offsetby: 0x80
Ő̄计舎￿岸褷舎￿囀愢钉￿郀悫钉￿倀xb€廐褷舎￿..廐褷舎￿\Device\HarddiskVolume2\Windows\Fonts\timesbd.ttflb[1].jpg
pool: 0xffff94896019f870 | file object: 0xffff94896019f8f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896019fa00 | file object: 0xffff94896019fa80 | offsetby: 0x80
Ő䀐埍钉￿̄墘褷舎￿㯠徊钉￿ॠ忲钉￿䀐埍钉￿退x`€媰褷舎￿..媰褷舎￿\Device\HarddiskVolume2\Windows\System32\atl.dll74e625[1].jpg
pool: 0xffff94896019fb90 | file object: 0xffff94896019fc10 | offsetby: 0x80
\Windows\System32\ProximityRtapiPal.dll
pool: 0xffff94896019fd20 | file object: 0xffff94896019fda0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601a0040 | file object: 0xffff9489601a00c0 | offsetby: 0x80
\Windows\System32\wscisvif.dll
pool: 0xffff9489601a01d0 | file object: 0xffff9489601a0250 | offsetby: 0x80
\Windows\System32\wscproxystub.dll
pool: 0xffff9489601a0360 | file object: 0xffff9489601a03e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601a04f0 | file object: 0xffff9489601a0570 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\microsoft.windowscommunicationsapps_16005.12827.20200.0_x64__8wekyb3d8bbwe\S-1-5-21-3234566417-3121902272-2793192418-1001.pckgdep
pool: 0xffff9489601a0680 | file object: 0xffff9489601a0700 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601a0810 | file object: 0xffff9489601a0890 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601a09a0 | file object: 0xffff9489601a0a20 | offsetby: 0x80
\Windows\System32\Windows.Devices.SmartCards.Phone.dll
pool: 0xffff9489601a0b30 | file object: 0xffff9489601a0bb0 | offsetby: 0x80
\Windows\System32\Windows.Perception.Stub.dll
pool: 0xffff9489601a0cc0 | file object: 0xffff9489601a0d40 | offsetby: 0x80
\Windows\System32\en-US\InstallService.dll.mui
pool: 0xffff9489601a0e50 | file object: 0xffff9489601a0ed0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601a1170 | file object: 0xffff9489601a11f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601a1300 | file object: 0xffff9489601a1380 | offsetby: 0x80
Ő̄鎸褷舎￿쥘褷舎￿㦀岢钉￿㌐悠钉￿倀x`€鑰褷舎￿..鑰褷舎￿\Device\HarddiskVolume2\Windows\Fonts\simsun.ttcppcore.dllod
pool: 0xffff9489601a1490 | file object: 0xffff9489601a1510 | offsetby: 0x80
\Windows\System32\EAMProgressHandler.dll
pool: 0xffff9489601a1620 | file object: 0xffff9489601a16a0 | offsetby: 0x80
\Windows\System32
pool: 0xffff9489601a17b0 | file object: 0xffff9489601a1830 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601a1940 | file object: 0xffff9489601a19c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601a1ad0 | file object: 0xffff9489601a1b50 | offsetby: 0x80
Ő̄藸褷舎￿씸褷舎￿䗀徊钉￿ᯐ怼钉￿倀xj€蚰褷舎￿..蚰褷舎￿\Device\HarddiskVolume2\Windows\System32\UIRibbon.dlls.dll.mu
pool: 0xffff9489601a1c60 | file object: 0xffff9489601a1ce0 | offsetby: 0x80
Ő䀐埍钉￿̄ꐸ褷舎￿檀婷钉￿䞠惑钉￿䀐埍钉￿倀x~€蕐褷舎￿..蕐褷舎￿藈褷舎￿薰褷舎￿22蕾褷舎￿\Device\HarddiskVolume2\Windows\SystemResources\shell32.dll.m
pool: 0xffff9489601a1df0 | file object: 0xffff9489601a1e70 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff9489601a2110 | file object: 0xffff9489601a2190 | offsetby: 0x80
Ő䀐埍钉￿̄ᥘ褷舎￿㰀徊钉￿ॠ忲钉￿䀐埍钉￿倀x`€潐褷舎￿..潐褷舎￿澪褷舎￿澢褷舎￿$$潾褷舎￿\Device\HarddiskVolume2\Windows\System32\atl.dllres.dll.mui
pool: 0xffff9489601a22a0 | file object: 0xffff9489601a2320 | offsetby: 0x80
销褷舎￿销褷舎￿Ȁ骰察钉￿骰察钉￿ 羠딍ǐꂀ觥舎￿騠察钉￿炀忽钉￿0᎔耀
pool: 0xffff9489601a2430 | file object: 0xffff9489601a24b0 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-E45D8788.pf
pool: 0xffff9489601a25c0 | file object: 0xffff9489601a2640 | offsetby: 0x80
\Windows\System32\wuapihost.exe
pool: 0xffff9489601a2750 | file object: 0xffff9489601a27d0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff9489601a28e0 | file object: 0xffff9489601a2960 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601a2a70 | file object: 0xffff9489601a2af0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe
pool: 0xffff9489601a2c00 | file object: 0xffff9489601a2c80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601a2d90 | file object: 0xffff9489601a2e10 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.Graphics.winmd
pool: 0xffff9489601a30b0 | file object: 0xffff9489601a3130 | offsetby: 0x80
Ő̄鉘褷舎￿臘褷舎￿嶠徊钉￿惐钉￿退xd€錐褷舎￿..錐褷舎￿\Device\HarddiskVolume2\Windows\System32\duser.dllc529091.jso
pool: 0xffff9489601a3240 | file object: 0xffff9489601a32c0 | offsetby: 0x80
\Windows\System32\InstallService.dll
pool: 0xffff9489601a33d0 | file object: 0xffff9489601a3450 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601a3560 | file object: 0xffff9489601a35e0 | offsetby: 0x80
\Windows\System32
pool: 0xffff9489601a36f0 | file object: 0xffff9489601a3770 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601a3880 | file object: 0xffff9489601a3900 | offsetby: 0x80
\Windows\System32\werconcpl.dll
pool: 0xffff9489601a3a10 | file object: 0xffff9489601a3a90 | offsetby: 0x80
\Windows\Fonts\consola.ttf
pool: 0xffff9489601a3ba0 | file object: 0xffff9489601a3c20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601a3d30 | file object: 0xffff9489601a3db0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff9489601a4050 | file object: 0xffff9489601a40d0 | offsetby: 0x80
\Windows\System32\en-US\wscui.cpl.mui
pool: 0xffff9489601a41e0 | file object: 0xffff9489601a4260 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601a4370 | file object: 0xffff9489601a43f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601a4500 | file object: 0xffff9489601a4580 | offsetby: 0x80
\Windows\System32\drivers\hdaudbus.sys
pool: 0xffff9489601a4690 | file object: 0xffff9489601a4710 | offsetby: 0x80
\Windows\System32\hcproviders.dll
pool: 0xffff9489601a4820 | file object: 0xffff9489601a48a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601a4b40 | file object: 0xffff9489601a4bc0 | offsetby: 0x80
\$Directory
pool: 0xffff9489601a4cd0 | file object: 0xffff9489601a4d50 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff9489601a4e60 | file object: 0xffff9489601a4ee0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\WER\ERC
pool: 0xffff9489601a5180 | file object: 0xffff9489601a5200 | offsetby: 0x80
\$ConvertToNonresident
pool: 0xffff9489601a5310 | file object: 0xffff9489601a5390 | offsetby: 0x80
\ProgramData\Microsoft\Windows\WER\ReportArchive
pool: 0xffff9489601a54a0 | file object: 0xffff9489601a5520 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-2D56ECA4.pf
pool: 0xffff9489601a5630 | file object: 0xffff9489601a56b0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-WindowsBackup%4ActionCenter.evtx
pool: 0xffff9489601a57c0 | file object: 0xffff9489601a5840 | offsetby: 0x80
\Windows\System32\en-US\ActionCenter.dll.mui
pool: 0xffff9489601a5950 | file object: 0xffff9489601a59d0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff9489601a5ae0 | file object: 0xffff9489601a5b60 | offsetby: 0x80
\Windows\System32\en-US\LicenseManagerSvc.dll.mui
pool: 0xffff9489601a5c70 | file object: 0xffff9489601a5cf0 | offsetby: 0x80
\Windows\System32\LicenseManagerSvc.dll
pool: 0xffff9489601a5e00 | file object: 0xffff9489601a5e80 | offsetby: 0x80
\Windows\System32\wscui.cpl
pool: 0xffff9489601a6120 | file object: 0xffff9489601a61a0 | offsetby: 0x80
\Windows\System32\wscui.cpl
pool: 0xffff9489601a62b0 | file object: 0xffff9489601a6330 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\microsoft.windowscommunicationsapps_16005.12827.20200.0_x64__8wekyb3d8bbwe\ActivationStore.dat
pool: 0xffff9489601a6440 | file object: 0xffff9489601a64c0 | offsetby: 0x80
\Windows\System32\wsqmcons.exe
pool: 0xffff9489601a65d0 | file object: 0xffff9489601a6650 | offsetby: 0x80
\Windows\System32\LicenseManagerSvc.dll
pool: 0xffff9489601a6760 | file object: 0xffff9489601a67e0 | offsetby: 0x80
\Windows\System32\sc.exe
pool: 0xffff9489601a68f0 | file object: 0xffff9489601a6970 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-StorageSpaces-ManagementAgent%4WHC.evtx
pool: 0xffff9489601a6a80 | file object: 0xffff9489601a6b00 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData
pool: 0xffff9489601a6c10 | file object: 0xffff9489601a6c90 | offsetby: 0x80
\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12827.20200.0_x64__8wekyb3d8bbwe\HxComm.dll
pool: 0xffff9489601a6da0 | file object: 0xffff9489601a6e20 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-FileHistory-Core%4WHC.evtx
pool: 0xffff9489601a70c0 | file object: 0xffff9489601a7140 | offsetby: 0x80
\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12827.20200.0_x64__8wekyb3d8bbwe\HxOutlookBackground.dll
pool: 0xffff9489601a7250 | file object: 0xffff9489601a72d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601a73e0 | file object: 0xffff9489601a7460 | offsetby: 0x80
\Windows\System32\perfc009.dat
pool: 0xffff9489601a7570 | file object: 0xffff9489601a75f0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Diagnosis-Scheduled%4Operational.evtx
pool: 0xffff9489601a7700 | file object: 0xffff9489601a7780 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_88614FFAD35D353421B8A7E1FE18FCE4
pool: 0xffff9489601a7890 | file object: 0xffff9489601a7910 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601a7a20 | file object: 0xffff9489601a7aa0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_C9FB72B5AE80778A08024D8B0FDECC6F
pool: 0xffff9489601a7bb0 | file object: 0xffff9489601a7c30 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff9489601a7d40 | file object: 0xffff9489601a7dc0 | offsetby: 0x80
\Windows\System32\en-US\Windows.Web.dll.mui
pool: 0xffff9489601a8060 | file object: 0xffff9489601a80e0 | offsetby: 0x80
\Windows\System32\wcmapi.dll
pool: 0xffff9489601a81f0 | file object: 0xffff9489601a8270 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff9489601a8380 | file object: 0xffff9489601a8400 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.OneConnect_5.2002.431.0_x64__8wekyb3d8bbwe\resources.pri
pool: 0xffff9489601a8510 | file object: 0xffff9489601a8590 | offsetby: 0x80
\Windows\System32\drivers\portcls.sys
pool: 0xffff9489601a86a0 | file object: 0xffff9489601a8720 | offsetby: 0x80
\$Directory
pool: 0xffff9489601a8830 | file object: 0xffff9489601a88b0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-UserPnp%4ActionCenter.evtx
pool: 0xffff9489601a89c0 | file object: 0xffff9489601a8a40 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-WorkFolders%4WHC.evtx
pool: 0xffff9489601a8b50 | file object: 0xffff9489601a8bd0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_BEB37ABADF39714871232B4792417E04
pool: 0xffff9489601a8ce0 | file object: 0xffff9489601a8d60 | offsetby: 0x80
\Windows\System32\ssdpsrv.dll
pool: 0xffff9489601a8e70 | file object: 0xffff9489601a8ef0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Shell-ConnectedAccountState%4ActionCenter.evtx
pool: 0xffff9489601a9000 | file object: 0xffff9489601a9080 | offsetby: 0x80
\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12827.20200.0_x64__8wekyb3d8bbwe\HxTsr.exe
pool: 0xffff9489601a9190 | file object: 0xffff9489601a9210 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_D975BBA8033175C8D112023D8A7A8AD6
pool: 0xffff9489601a9320 | file object: 0xffff9489601a93a0 | offsetby: 0x80
\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12827.20200.0_x64__8wekyb3d8bbwe\Microsoft.Applications.Telemetry.Windows.dll
pool: 0xffff9489601a94b0 | file object: 0xffff9489601a9530 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-TaskScheduler%4Maintenance.evtx
pool: 0xffff9489601a9640 | file object: 0xffff9489601a96c0 | offsetby: 0x80
\Windows\System32\drivers\processr.sys
pool: 0xffff9489601a97d0 | file object: 0xffff9489601a9850 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Database\Microsoft.DiagnosticsHub.DatabaseTool.pkgdef
pool: 0xffff9489601a9960 | file object: 0xffff9489601a99e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601a9af0 | file object: 0xffff9489601a9b70 | offsetby: 0x80
\Windows\System32\en-US\ssdpsrv.dll.mui
pool: 0xffff9489601a9c80 | file object: 0xffff9489601a9d00 | offsetby: 0x80
\Users\User\AppData\Local\Comms\UnistoreDB\USS.jtx
pool: 0xffff9489601a9e10 | file object: 0xffff9489601a9e90 | offsetby: 0x80
\Windows\System32\wbem\WMIADAP.exe
pool: 0xffff9489601aa130 | file object: 0xffff9489601aa1b0 | offsetby: 0x80
\Windows\Prefetch\RUNTIMEBROKER.EXE-A749752B.pf
pool: 0xffff9489601aa2c0 | file object: 0xffff9489601aa340 | offsetby: 0x80
\$Directory
pool: 0xffff9489601aa450 | file object: 0xffff9489601aa4d0 | offsetby: 0x80
\Windows\System32\Wpc.dll
pool: 0xffff9489601aa5e0 | file object: 0xffff9489601aa660 | offsetby: 0x80
\Windows\System32\drivers\monitor.sys
pool: 0xffff9489601aa770 | file object: 0xffff9489601aa7f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601aa900 | file object: 0xffff9489601aa980 | offsetby: 0x80
\$Directory
pool: 0xffff9489601aaa90 | file object: 0xffff9489601aab10 | offsetby: 0x80
\$Directory
pool: 0xffff9489601aac20 | file object: 0xffff9489601aaca0 | offsetby: 0x80
\Registry\Machine\System\CurrentControlSet\Control\StateSeparation\RedirectionMap\Keyscf38c0400eddd2762e6da38d0
pool: 0xffff9489601aadb0 | file object: 0xffff9489601aae30 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.ContentDeliveryManager_cw5n1h2txyewy\Settings\settings.dat
pool: 0xffff9489601ab0d0 | file object: 0xffff9489601ab150 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.OneConnect_5.2002.431.0_x64__8wekyb3d8bbwe\OneConnect.dll
pool: 0xffff9489601ab260 | file object: 0xffff9489601ab2e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\Temp\~DF68F5780EDB616E2A.TMP
pool: 0xffff9489601ab3f0 | file object: 0xffff9489601ab470 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.System.winmd
pool: 0xffff9489601ab580 | file object: 0xffff9489601ab600 | offsetby: 0x80
\$ConvertToNonresident
pool: 0xffff9489601ab710 | file object: 0xffff9489601ab790 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601ab8a0 | file object: 0xffff9489601ab920 | offsetby: 0x80
\Windows\Prefetch\WMIADAP.EXE-F8DFDFA2.pf
pool: 0xffff9489601aba30 | file object: 0xffff9489601abab0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601abbc0 | file object: 0xffff9489601abc40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601abd50 | file object: 0xffff9489601abdd0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Settings\settings.dat
pool: 0xffff9489601ac070 | file object: 0xffff9489601ac0f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\MpOAV.dll
pool: 0xffff9489601ac200 | file object: 0xffff9489601ac280 | offsetby: 0x80
\$Directory
pool: 0xffff9489601ac390 | file object: 0xffff9489601ac410 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601ac520 | file object: 0xffff9489601ac5a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489601ac6b0 | file object: 0xffff9489601ac730 | offsetby: 0x80
\Windows\System32\MusNotification.exe
pool: 0xffff9489601ac840 | file object: 0xffff9489601ac8c0 | offsetby: 0x80
\Windows\System32\FamilySafetyExt.dll
pool: 0xffff9489601ac9d0 | file object: 0xffff9489601aca50 | offsetby: 0x80
\Windows\System32\UNP\UpdateNotificationMgr.exe
pool: 0xffff9489601acb60 | file object: 0xffff9489601acbe0 | offsetby: 0x80
\$Directory
pool: 0xffff9489601accf0 | file object: 0xffff9489601acd70 | offsetby: 0x80
\Windows\Fonts\times.ttf
pool: 0xffff9489601ad010 | file object: 0xffff9489601ad090 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601ad1a0 | file object: 0xffff9489601ad220 | offsetby: 0x80
\$Directory
pool: 0xffff9489601ad330 | file object: 0xffff9489601ad3b0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{FF262797-57E7-40F2-82DD-7A4FB952F04C}.catalogItem
pool: 0xffff9489601ad4c0 | file object: 0xffff9489601ad540 | offsetby: 0x80
\Windows\System32\WsmRes.dll
pool: 0xffff9489601ad650 | file object: 0xffff9489601ad6d0 | offsetby: 0x80
\Windows\Prefetch\RUNTIMEBROKER.EXE-CABDD2B8.pf
pool: 0xffff9489601ad7e0 | file object: 0xffff9489601ad860 | offsetby: 0x80
\Windows\System32\CompatTelRunner.exe
pool: 0xffff9489601ad970 | file object: 0xffff9489601ad9f0 | offsetby: 0x80
\Windows\System32\DeviceCensus.exe
pool: 0xffff9489601adb00 | file object: 0xffff9489601adb80 | offsetby: 0x80
\$Directory
pool: 0xffff9489601adc90 | file object: 0xffff9489601add10 | offsetby: 0x80
\Windows\System32\UsoClient.exe
pool: 0xffff9489601ade20 | file object: 0xffff9489601adea0 | offsetby: 0x80
\Program Files\WindowsApps\microsoft.windowscommunicationsapps_16005.12827.20200.0_x64__8wekyb3d8bbwe\office.odf
pool: 0xffff9489601ae140 | file object: 0xffff9489601ae1c0 | offsetby: 0x80
\Windows\System32\Windows.System.Profile.SystemId.dll
pool: 0xffff9489601ae2d0 | file object: 0xffff9489601ae350 | offsetby: 0x80
耔À̬āԀοāԀ‰āԀāԀοȁԀ ȠġȁԀ ȫ$οԁԀ鄑샋狀먔믢꙼ϩāԀā
pool: 0xffff9489601ae460 | file object: 0xffff9489601ae4e0 | offsetby: 0x80
\Windows\System32\spp\store\2.0\tokens.dat
pool: 0xffff9489601ae5f0 | file object: 0xffff9489601ae670 | offsetby: 0x80
\Windows\System32\Windows.System.Diagnostics.Telemetry.PlatformTelemetryClient.dll
pool: 0xffff9489601ae780 | file object: 0xffff9489601ae800 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff9489601ae910 | file object: 0xffff9489601ae990 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601aeaa0 | file object: 0xffff9489601aeb20 | offsetby: 0x80
\$Directory
pool: 0xffff9489601aec30 | file object: 0xffff9489601aecb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601aedc0 | file object: 0xffff9489601aee40 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData
pool: 0xffff9489601af0e0 | file object: 0xffff9489601af160 | offsetby: 0x80
\$Directory
pool: 0xffff9489601af270 | file object: 0xffff9489601af2f0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\TiWorker.exe
pool: 0xffff9489601af400 | file object: 0xffff9489601af480 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
pool: 0xffff9489601af590 | file object: 0xffff9489601af610 | offsetby: 0x80
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Package_1_for_KB4552152~31bf3856ad364e35~amd64~~18362.772.1.0.cat
pool: 0xffff9489601af720 | file object: 0xffff9489601af7a0 | offsetby: 0x80
\Windows\System32\InstallServiceTasks.dll
pool: 0xffff9489601af8b0 | file object: 0xffff9489601af930 | offsetby: 0x80
\Windows\System32\FamilySafetyExt.dll
pool: 0xffff9489601afa40 | file object: 0xffff9489601afac0 | offsetby: 0x80
\$Directory
pool: 0xffff9489601afbd0 | file object: 0xffff9489601afc50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601afd60 | file object: 0xffff9489601afde0 | offsetby: 0x80
\Windows\System32\MicrosoftEdgeCP.exe
pool: 0xffff9489601b0080 | file object: 0xffff9489601b0100 | offsetby: 0x80
\Windows\Prefetch\CODE.EXE-BFFF9072.pf
pool: 0xffff9489601b0210 | file object: 0xffff9489601b0290 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\FB0D848F74F70BB2EAA93746D24D9749
pool: 0xffff9489601b03a0 | file object: 0xffff9489601b0420 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Print.MopriaCloudService~~1.0.mum
pool: 0xffff9489601b0530 | file object: 0xffff9489601b05b0 | offsetby: 0x80
\Windows\Globalization\ELS\SpellDictionaries\MsSp7en-US.acl
pool: 0xffff9489601b06c0 | file object: 0xffff9489601b0740 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff9489601b0850 | file object: 0xffff9489601b08d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489601b09e0 | file object: 0xffff9489601b0a60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601b0b70 | file object: 0xffff9489601b0bf0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\input\en-US\userdict_v1.0409.dat
pool: 0xffff9489601b0d00 | file object: 0xffff9489601b0d80 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AppData\User\Default\CacheStorage\CacheStorage.edb
pool: 0xffff9489601b1020 | file object: 0xffff9489601b10a0 | offsetby: 0x80
\Windows\System32\loadperf.dll
pool: 0xffff9489601b11b0 | file object: 0xffff9489601b1230 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601b1340 | file object: 0xffff9489601b13c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489601b14d0 | file object: 0xffff9489601b1550 | offsetby: 0x80
\Windows\System32\CryptoWinRT.dll
pool: 0xffff9489601b1660 | file object: 0xffff9489601b16e0 | offsetby: 0x80
\ProgramData\Microsoft\User Account Pictures\user.png
pool: 0xffff9489601b17f0 | file object: 0xffff9489601b1870 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601b1980 | file object: 0xffff9489601b1a00 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\DataStore\Data\nouser1\120712-0049\DBStore\LogFiles\edbtmp.log
pool: 0xffff9489601b1b10 | file object: 0xffff9489601b1b90 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.OneConnect_8wekyb3d8bbwe\LocalState\DiagOutputDir\OneConnect.DiscoveryNotificationTask06_03_23_23_51_3979.txt.~tmp
pool: 0xffff9489601b1ca0 | file object: 0xffff9489601b1d20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601b1e30 | file object: 0xffff9489601b1eb0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
pool: 0xffff9489601b2150 | file object: 0xffff9489601b21d0 | offsetby: 0x80
\Windows\System32\UserDataAccountApis.dll
pool: 0xffff9489601b22e0 | file object: 0xffff9489601b2360 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff9489601b2470 | file object: 0xffff9489601b24f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601b2600 | file object: 0xffff9489601b2680 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CYCH44DZ\a4-37ff02-68ddb2ab[3].js
pool: 0xffff9489601b2790 | file object: 0xffff9489601b2810 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601b2920 | file object: 0xffff9489601b29a0 | offsetby: 0x80
fxp㗽璝㩀ǖᬸ鋗瓤㩀ǖ￿
pool: 0xffff9489601b2ab0 | file object: 0xffff9489601b2b30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601b2c40 | file object: 0xffff9489601b2cc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601b2dd0 | file object: 0xffff9489601b2e50 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CYCH44DZ\BBz3ebk[1].png
pool: 0xffff9489601b30f0 | file object: 0xffff9489601b3170 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601b3280 | file object: 0xffff9489601b3300 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601b3410 | file object: 0xffff9489601b3490 | offsetby: 0x80
\$Directory
pool: 0xffff9489601b35a0 | file object: 0xffff9489601b3620 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601b3730 | file object: 0xffff9489601b37b0 | offsetby: 0x80
\Windows\SystemResources\Windows.UI.Cred\pris\Windows.UI.Cre
pool: 0xffff9489601b38c0 | file object: 0xffff9489601b3940 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601b3a50 | file object: 0xffff9489601b3ad0 | offsetby: 0x80
\Users\User\AppData\Local\Comms\UnistoreDB\store.vol
pool: 0xffff9489601b3be0 | file object: 0xffff9489601b3c60 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\RasCMAK.Client~~1.0.mum
pool: 0xffff9489601b3d70 | file object: 0xffff9489601b3df0 | offsetby: 0x80
\Windows\System32\AppointmentApis.dll
pool: 0xffff9489601b4090 | file object: 0xffff9489601b4110 | offsetby: 0x80
\Windows\System32\EmailApis.dll
pool: 0xffff9489601b4220 | file object: 0xffff9489601b42a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601b43b0 | file object: 0xffff9489601b4430 | offsetby: 0x80
\Windows\System32\UserDataService.dll
pool: 0xffff9489601b4540 | file object: 0xffff9489601b45c0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.MinShell.x86,version=16.6.30128.74\_package.json
pool: 0xffff9489601b46d0 | file object: 0xffff9489601b4750 | offsetby: 0x80
\Windows\System32\MessagingDataModel2.dll
pool: 0xffff9489601b4860 | file object: 0xffff9489601b48e0 | offsetby: 0x80
\Windows\System32\PimIndexMaintenanceClient.dll
pool: 0xffff9489601b49f0 | file object: 0xffff9489601b4a70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601b4b80 | file object: 0xffff9489601b4c00 | offsetby: 0x80
\Windows\System32\en-US\ESENT.dll.mui
pool: 0xffff9489601b4d10 | file object: 0xffff9489601b4d90 | offsetby: 0x80
\Users\User\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\37D958F0157C4E87D39A5E7FAB3AECCC_F75245C92D4347837A9D0F08945B0110
pool: 0xffff9489601b5030 | file object: 0xffff9489601b50b0 | offsetby: 0x80
\Windows\System32\ContactActivation.dll
pool: 0xffff9489601b51c0 | file object: 0xffff9489601b5240 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\RIP.Listener~~1.0.mum
pool: 0xffff9489601b5350 | file object: 0xffff9489601b53d0 | offsetby: 0x80
\Windows\System32\ContactApis.dll
pool: 0xffff9489601b54e0 | file object: 0xffff9489601b5560 | offsetby: 0x80
\Windows\System32\UserDataAccessRes.dll
pool: 0xffff9489601b5670 | file object: 0xffff9489601b56f0 | offsetby: 0x80
\$Directory
pool: 0xffff9489601b5800 | file object: 0xffff9489601b5880 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601b5990 | file object: 0xffff9489601b5a10 | offsetby: 0x80
\Windows\System32\en-US\winnlsres.dll.mui
pool: 0xffff9489601b5b20 | file object: 0xffff9489601b5ba0 | offsetby: 0x80
\Windows\System32\Unistore.dll
pool: 0xffff9489601b5cb0 | file object: 0xffff9489601b5d30 | offsetby: 0x80
\Users\User\AppData\Local\Comms\UnistoreDB\store.jfm
pool: 0xffff9489601b5e40 | file object: 0xffff9489601b5ec0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\LocalState\HxStore.hxd
pool: 0xffff9489601b6160 | file object: 0xffff9489601b61e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.BitLocker.Recovery.Tools~~1.0.mum
pool: 0xffff9489601b62f0 | file object: 0xffff9489601b6370 | offsetby: 0x80
\Windows\System32\WinSync.dll
pool: 0xffff9489601b6480 | file object: 0xffff9489601b6500 | offsetby: 0x80
\Windows\System32\en-US\dnsapi.dll.mui
pool: 0xffff9489601b6610 | file object: 0xffff9489601b6690 | offsetby: 0x80
\Windows\Prefetch\RUNTIMEBROKER.EXE-E560E5BD.pf
pool: 0xffff9489601b67a0 | file object: 0xffff9489601b6820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601b6930 | file object: 0xffff9489601b69b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601b6ac0 | file object: 0xffff9489601b6b40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601b6c50 | file object: 0xffff9489601b6cd0 | offsetby: 0x80
\Users\User\AppData\Local\Comms\UnistoreDB\tmp.edb
pool: 0xffff9489601b6de0 | file object: 0xffff9489601b6e60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601b7100 | file object: 0xffff9489601b7180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601b7290 | file object: 0xffff9489601b7310 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601b7420 | file object: 0xffff9489601b74a0 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff9489601b75b0 | file object: 0xffff9489601b7630 | offsetby: 0x80
\$Directory
pool: 0xffff9489601b7740 | file object: 0xffff9489601b77c0 | offsetby: 0x80
\Windows\System32\PimIndexMaintenance.dll
pool: 0xffff9489601b78d0 | file object: 0xffff9489601b7950 | offsetby: 0x80
\$Directory
pool: 0xffff9489601b7a60 | file object: 0xffff9489601b7ae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601b7bf0 | file object: 0xffff9489601b7c70 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
pool: 0xffff9489601b7d80 | file object: 0xffff9489601b7e00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601b80a0 | file object: 0xffff9489601b8120 | offsetby: 0x80
\Windows\Prefetch\WMIPRVSE.EXE-1628051C.pf
pool: 0xffff9489601b8230 | file object: 0xffff9489601b82b0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.ActiveDirectory.DS-LDS.Tools~~1.0.mum
pool: 0xffff9489601b83c0 | file object: 0xffff9489601b8440 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
pool: 0xffff9489601b8550 | file object: 0xffff9489601b85d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\main.js
pool: 0xffff9489601b86e0 | file object: 0xffff9489601b8760 | offsetby: 0x80
糎醯댰榰ĔⰂܒ扏捓∀蛊舎￿漴釻稢ꝂÄ蠔Œ¨0āက \$ǿԁԀ鄑샋狀먔믢꙼ϩǿāԀ́ԀԁԀ鄑샋狀먔믢꙼ϩԁԀ鄑샋狀먔믢꙼ȁԀ`́Ԁ`0
pool: 0xffff9489601b8870 | file object: 0xffff9489601b88f0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_C9FB72B5AE80778A08024D8B0FDECC6F
pool: 0xffff9489601b8a00 | file object: 0xffff9489601b8a80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601b8b90 | file object: 0xffff9489601b8c10 | offsetby: 0x80
\Users\User\AppData\Local\Comms\Unistore\data\AggregateCache.uca
pool: 0xffff9489601b8d20 | file object: 0xffff9489601b8da0 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff9489601b9040 | file object: 0xffff9489601b90c0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_C9FB72B5AE80778A08024D8B0FDECC6F
pool: 0xffff9489601b91d0 | file object: 0xffff9489601b9250 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.YourPhone_8wekyb3d8bbwe\AC\Microsoft\CryptnetUrlCache\MetaData
pool: 0xffff9489601b9360 | file object: 0xffff9489601b93e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.GroupPolicy.Management.Tools~~1.0.mum
pool: 0xffff9489601b94f0 | file object: 0xffff9489601b9570 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff9489601b9680 | file object: 0xffff9489601b9700 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601b9810 | file object: 0xffff9489601b9890 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.IPAM.Client.Tools~~1.0.mum
pool: 0xffff9489601b99a0 | file object: 0xffff9489601b9a20 | offsetby: 0x80
\$Directory
pool: 0xffff9489601b9b30 | file object: 0xffff9489601b9bb0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_BEB37ABADF39714871232B4792417E04
pool: 0xffff9489601b9cc0 | file object: 0xffff9489601b9d40 | offsetby: 0x80
\Windows\INF\WmiApRpl\WmiApRpl.ini
pool: 0xffff9489601b9e50 | file object: 0xffff9489601b9ed0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.LLDP.Tools~~1.0.mum
pool: 0xffff9489601ba170 | file object: 0xffff9489601ba1f0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.NetworkController.Tools~~1.0.mum
pool: 0xffff9489601ba300 | file object: 0xffff9489601ba380 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.NetworkLoadBalancing.Tools~~1.0.mum
pool: 0xffff9489601ba490 | file object: 0xffff9489601ba510 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\C46E7B0F942663A1EDC8D9D6D7869173_6043FC604A395E1485AF7AC16D16B7CE
pool: 0xffff9489601ba620 | file object: 0xffff9489601ba6a0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.DHCP.Tools~~1.0.mum
pool: 0xffff9489601ba7b0 | file object: 0xffff9489601ba830 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\CA4458E7366E94A3C3A9C1FE548B6D21_B987CE411E5D0C51DB67F65D3191F84F
pool: 0xffff9489601ba940 | file object: 0xffff9489601ba9c0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\EA618097E393409AFA316F0F87E2C202_CA1288E2AE7152E3E6E76A8D7F0634F7
pool: 0xffff9489601baad0 | file object: 0xffff9489601bab50 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\EE44ECA143B76F2B9F2A5AA75B5D1EC6_847118BE2683F0C241D1D702F3A3F5F9
pool: 0xffff9489601bac60 | file object: 0xffff9489601bace0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.FailoverCluster.Management.Tools~~1.0.mum
pool: 0xffff9489601badf0 | file object: 0xffff9489601bae70 | offsetby: 0x80
틐讲舎￿用轅舎￿틠讲舎￿畀轅舎￿¹
pool: 0xffff9489601bb110 | file object: 0xffff9489601bb190 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601bb2a0 | file object: 0xffff9489601bb320 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601bb430 | file object: 0xffff9489601bb4b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601bb5c0 | file object: 0xffff9489601bb640 | offsetby: 0x80
蛍舎￿蛍舎￿惺钉￿
pool: 0xffff9489601bb750 | file object: 0xffff9489601bb7d0 | offsetby: 0x80
\Windows\System32\perfh009.dat
pool: 0xffff9489601bb8e0 | file object: 0xffff9489601bb960 | offsetby: 0x80
\Windows\INF\WmiApRpl\WmiApRpl.h
pool: 0xffff9489601bba70 | file object: 0xffff9489601bbaf0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.CertificateServices.Tools~~1.0.mum
pool: 0xffff9489601bbc00 | file object: 0xffff9489601bbc80 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.Dns.Tools~~1.0.mum
pool: 0xffff9489601bbd90 | file object: 0xffff9489601bbe10 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.FileServices.Tools~~1.0.mum
pool: 0xffff9489601bc0b0 | file object: 0xffff9489601bc130 | offsetby: 0x80
\$Directory
pool: 0xffff9489601bc240 | file object: 0xffff9489601bc2c0 | offsetby: 0x80
⭐讒舎￿漐违舎￿㾐邮舎￿㖠貍舎
pool: 0xffff9489601bc3d0 | file object: 0xffff9489601bc450 | offsetby: 0x80
\Windows\System32\wbem\wmiprov.dll
pool: 0xffff9489601bc560 | file object: 0xffff9489601bc5e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Visual Studio Setup\Cache\index
pool: 0xffff9489601bc6f0 | file object: 0xffff9489601bc770 | offsetby: 0x80
\Windows\System32\wbem\WmiPerfInst.dll
pool: 0xffff9489601bc880 | file object: 0xffff9489601bc900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601bca10 | file object: 0xffff9489601bca90 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.ServerManager.Tools~~1.0.mum
pool: 0xffff9489601bcba0 | file object: 0xffff9489601bcc20 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.MinShell.Interop,version=16.6.30013.169\_package.json
pool: 0xffff9489601bcd30 | file object: 0xffff9489601bcdb0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.StorageMigrationService.Management.Tools~~1.0.mum
pool: 0xffff9489601bd050 | file object: 0xffff9489601bd0d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\node.dll
pool: 0xffff9489601bd1e0 | file object: 0xffff9489601bd260 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VsDevCmd.Core.WinSdk,version=16.0.28315.86\_package.json
pool: 0xffff9489601bd370 | file object: 0xffff9489601bd3f0 | offsetby: 0x80
\Windows\System32\drivers\ndis.sys
pool: 0xffff9489601bd500 | file object: 0xffff9489601bd580 | offsetby: 0x80
\$Directory
pool: 0xffff9489601bd690 | file object: 0xffff9489601bd710 | offsetby: 0x80
\$Directory
pool: 0xffff9489601bd820 | file object: 0xffff9489601bd8a0 | offsetby: 0x80
縐誾舎￿經誾舎￿僀怌钉￿蔨譭舎￿캈蠬舎￿픠宮
pool: 0xffff9489601bd9b0 | file object: 0xffff9489601bda30 | offsetby: 0x80
\Windows\System32\sppcext.dll
pool: 0xffff9489601bdb40 | file object: 0xffff9489601bdbc0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\MpCommu.dll
pool: 0xffff9489601bdcd0 | file object: 0xffff9489601bdd50 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.RemoteDesktop.Services.Tools~~1.0.mum
pool: 0xffff9489601bde60 | file object: 0xffff9489601bdee0 | offsetby: 0x80
\Program Files\Windows Defender\MpOAV.dll
pool: 0xffff9489601be180 | file object: 0xffff9489601be200 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601be310 | file object: 0xffff9489601be390 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.StorageReplica.Tools~~1.0.mum
pool: 0xffff9489601be4a0 | file object: 0xffff9489601be520 | offsetby: 0x80
\$Directory
pool: 0xffff9489601be630 | file object: 0xffff9489601be6b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\vcruntime140.dll
pool: 0xffff9489601be7c0 | file object: 0xffff9489601be840 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.LanguageServer,version=16.6.47.52031\_package.json
pool: 0xffff9489601be950 | file object: 0xffff9489601be9d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489601beae0 | file object: 0xffff9489601beb60 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.SystemInsights.Management.Tools~~1.0.mum
pool: 0xffff9489601bec70 | file object: 0xffff9489601becf0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.RemoteAccess.Management.Tools~~1.0.mum
pool: 0xffff9489601bee00 | file object: 0xffff9489601bee80 | offsetby: 0x80
\Windows\SysWOW64\mscoree.dll
pool: 0xffff9489601bf120 | file object: 0xffff9489601bf1a0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-fibers-l1-1-0.dll
pool: 0xffff9489601bf2b0 | file object: 0xffff9489601bf330 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.Shielded.VM.Tools~~1.0.mum
pool: 0xffff9489601bf440 | file object: 0xffff9489601bf4c0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-memory-l1-1-1.dll
pool: 0xffff9489601bf5d0 | file object: 0xffff9489601bf650 | offsetby: 0x80
\Users\User\MicrosoftEdgeBackups\backups\MicrosoftEdgeBackup20200604\MicrosoftEdgeSettingsBackup.txt
pool: 0xffff9489601bf760 | file object: 0xffff9489601bf7e0 | offsetby: 0x80
ԁԀ鄑샋狀먔믢꙼ϩāကကԁԀ鄑샋狀먔믢꙼ȁԁԀ鄑샋狀먔믢꙼ϩԁԀ鄑샋狀먔믢꙼ȁŒ$ကԁԀ鄑샋狀먔믢꙼ϩကāԀꀀ́Ԁ0ကࠁ両滺Კ攊셗깾꾳♎爝ᎊ絯
pool: 0xffff9489601bf8f0 | file object: 0xffff9489601bf970 | offsetby: 0x80
üüꉐ趸舎￿\REGISTRY\USER\S-1-5-21-3234566417-3121902272-2793192418-1001_Classes\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}\DefaultIconon
pool: 0xffff9489601bfa80 | file object: 0xffff9489601bfb00 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.MinShell.Interop.Msi,version=16.2.28917.136\_package.json
pool: 0xffff9489601bfc10 | file object: 0xffff9489601bfc90 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{617300AC-81E9-44C7-A32B-80213F8814B1}.catalogItem
pool: 0xffff9489601bfda0 | file object: 0xffff9489601bfe20 | offsetby: 0x80
\$Directory
pool: 0xffff9489601c00c0 | file object: 0xffff9489601c0140 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\ServerCore.AppCompatibility~~1.0.mum
pool: 0xffff9489601c0250 | file object: 0xffff9489601c02d0 | offsetby: 0x80
\Windows\SoftwareDistribution\Download\a75e1456b7eea7fc8bbfe9d9b17072e2\Metadata\UpdateAgent.dll
pool: 0xffff9489601c03e0 | file object: 0xffff9489601c0460 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\vs_installershell.exe
pool: 0xffff9489601c0570 | file object: 0xffff9489601c05f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Text.Data.dll
pool: 0xffff9489601c0700 | file object: 0xffff9489601c0780 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Publish\Microsoft.Publish.Framework.pkgdef
pool: 0xffff9489601c0890 | file object: 0xffff9489601c0910 | offsetby: 0x80
\$Directory
pool: 0xffff9489601c0a20 | file object: 0xffff9489601c0aa0 | offsetby: 0x80
\Windows\System32\en-US\FlightSettings.dll.mui
pool: 0xffff9489601c0bb0 | file object: 0xffff9489601c0c30 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-crt-utility-l1-1-0.dll
pool: 0xffff9489601c0d40 | file object: 0xffff9489601c0dc0 | offsetby: 0x80
\Windows\System32\usosvc.dll
pool: 0xffff9489601c1060 | file object: 0xffff9489601c10e0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-memory-l1-1-0.dll
pool: 0xffff9489601c11f0 | file object: 0xffff9489601c1270 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-2F0E0AF4.pf
pool: 0xffff9489601c1380 | file object: 0xffff9489601c1400 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601c1510 | file object: 0xffff9489601c1590 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-memory-l1-1-2.dll
pool: 0xffff9489601c16a0 | file object: 0xffff9489601c1720 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.VolumeActivation.Tools~~1.0.mum
pool: 0xffff9489601c1830 | file object: 0xffff9489601c18b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489601c19c0 | file object: 0xffff9489601c1a40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489601c1b50 | file object: 0xffff9489601c1bd0 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-033BBABB.pf
pool: 0xffff9489601c1ce0 | file object: 0xffff9489601c1d60 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\Powershell\MSFT_MpWDOScan.cdxml
pool: 0xffff9489601c1e70 | file object: 0xffff9489601c1ef0 | offsetby: 0x80
\Windows\SoftwareDistribution\Download\a75e1456b7eea7fc8bbfe9d9b17072e2\Metadata\dpx.dll
pool: 0xffff9489601c2000 | file object: 0xffff9489601c2080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489601c2190 | file object: 0xffff9489601c2210 | offsetby: 0x80
\ProgramData\Microsoft\Windows\OneSettings\UsoSettings.json
pool: 0xffff9489601c2320 | file object: 0xffff9489601c23a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489601c24b0 | file object: 0xffff9489601c2530 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Rsat.WSUS.Tools~~1.0.mum
pool: 0xffff9489601c2640 | file object: 0xffff9489601c26c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489601c27d0 | file object: 0xffff9489601c2850 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\SNMP.Client~~1.0.mum
pool: 0xffff9489601c2960 | file object: 0xffff9489601c29e0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Community.Msi,version=16.6.30014.187\_package.json
pool: 0xffff9489601c2af0 | file object: 0xffff9489601c2b70 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Tools.DTrace.Platform~~1.0.mum
pool: 0xffff9489601c2c80 | file object: 0xffff9489601c2d00 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Tools.Graphics.DirectX~~1.0.mum
pool: 0xffff9489601c2e10 | file object: 0xffff9489601c2e90 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\WMI-SNMP-Provider.Client~~1.0.mum
pool: 0xffff9489601c3130 | file object: 0xffff9489601c31b0 | offsetby: 0x80
\Registry\Machine\SYSTEM\CurrentControlSet\Control\MediaCategories\{185fede4-9905-11d1-95a9-00c04fb925d3}1c1539ffcaffbe559bccc
pool: 0xffff9489601c32c0 | file object: 0xffff9489601c3340 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{A5D6A1F5-F316-40AA-B80C-826668AA2314}.catalogItem
pool: 0xffff9489601c3450 | file object: 0xffff9489601c34d0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{9DD3442E-EEAC-48C7-BEE3-1A6A11835B36}.catalogItem
pool: 0xffff9489601c35e0 | file object: 0xffff9489601c3660 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{81EA784F-9E79-4E02-AD26-4F108346B041}.catalogItem
pool: 0xffff9489601c3770 | file object: 0xffff9489601c37f0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Tools.DeveloperMode.Core~~1.0.mum
pool: 0xffff9489601c3900 | file object: 0xffff9489601c3980 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{1A1ED11B-655D-4B0A-87AD-6D907DCD4CD2}.catalogItem
pool: 0xffff9489601c3a90 | file object: 0xffff9489601c3b10 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{6E644AD7-FAF2-4F34-ACB3-F192AFDC4B82}.catalogItem
pool: 0xffff9489601c3c20 | file object: 0xffff9489601c3ca0 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{BDBA45CF-078B-4A4F-8390-5C4EE7ED257E}.catalogItem
pool: 0xffff9489601c3db0 | file object: 0xffff9489601c3e30 | offsetby: 0x80
\Windows\System32\config\systemprofile\AppData\Local\Microsoft\InstallService\{D0CF2F92-4F11-432C-81EC-0EFA57123CBD}.catalogItem
pool: 0xffff948960302160 | file object: 0xffff9489603021e0 | offsetby: 0x80
\Windows\System32\MitigationClient.dll
pool: 0xffff9489603022f0 | file object: 0xffff948960302370 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-core-string-l2-1-0.dll
pool: 0xffff948960302480 | file object: 0xffff948960302500 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.CppWinrt.dll
pool: 0xffff948960302610 | file object: 0xffff948960302690 | offsetby: 0x80
\Windows\System32\en-US\MitigationClient.dll.mui
pool: 0xffff9489603027a0 | file object: 0xffff948960302820 | offsetby: 0x80
\Windows\System32\sppwmi.dll
pool: 0xffff948960302930 | file object: 0xffff9489603029b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960302ac0 | file object: 0xffff948960302b40 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-crt-process-l1-1-0.dll
pool: 0xffff948960302c50 | file object: 0xffff948960302cd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960302de0 | file object: 0xffff948960302e60 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-crt-private-l1-1-0.dll
pool: 0xffff948960303100 | file object: 0xffff948960303180 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-processtopology-obsolete-l1-1-0.dll
pool: 0xffff948960303290 | file object: 0xffff948960303310 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960303420 | file object: 0xffff9489603034a0 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-871F52B2.pf
pool: 0xffff9489603035b0 | file object: 0xffff948960303630 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcpackages\1033\reseditui.dll
pool: 0xffff948960303740 | file object: 0xffff9489603037c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603038d0 | file object: 0xffff948960303950 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpenginedb.db
pool: 0xffff948960303a60 | file object: 0xffff948960303ae0 | offsetby: 0x80
\Windows\System32\PushToInstall.dll
pool: 0xffff948960303bf0 | file object: 0xffff948960303c70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960303d80 | file object: 0xffff948960303e00 | offsetby: 0x80
\Windows\System32\en-US\sc.exe.mui
pool: 0xffff9489603040a0 | file object: 0xffff948960304120 | offsetby: 0x80
\Windows\System32\WorkFoldersShell.dll
pool: 0xffff948960304230 | file object: 0xffff9489603042b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603043c0 | file object: 0xffff948960304440 | offsetby: 0x80
\Windows\System32\PushToInstall.dll
pool: 0xffff948960304550 | file object: 0xffff9489603045d0 | offsetby: 0x80
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Desktop-Required-Package0419~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff9489603046e0 | file object: 0xffff948960304760 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960304870 | file object: 0xffff9489603048f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960304a00 | file object: 0xffff948960304a80 | offsetby: 0x80
\ProgramData\Microsoft\Windows\OneSettings\ASAP_CloudPolicy.json
pool: 0xffff948960304b90 | file object: 0xffff948960304c10 | offsetby: 0x80
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Desktop-Required-Package04111~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff948960304d20 | file object: 0xffff948960304da0 | offsetby: 0x80
\$Directory
pool: 0xffff948960305040 | file object: 0xffff9489603050c0 | offsetby: 0x80
\Windows\System32\en-US\PushToInstall.dll.mui
pool: 0xffff9489603051d0 | file object: 0xffff948960305250 | offsetby: 0x80
\Windows\System32\AppxPackaging.dll
pool: 0xffff948960305360 | file object: 0xffff9489603053e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489603054f0 | file object: 0xffff948960305570 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960305680 | file object: 0xffff948960305700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960305810 | file object: 0xffff948960305890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603059a0 | file object: 0xffff948960305a20 | offsetby: 0x80
\$Directory
pool: 0xffff948960305b30 | file object: 0xffff948960305bb0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960305cc0 | file object: 0xffff948960305d40 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\logs\Common\StandaloneUpdater-2020-06-04.0625.5652.1.odll
pool: 0xffff948960305e50 | file object: 0xffff948960305ed0 | offsetby: 0x80
\$Directory
pool: 0xffff948960306170 | file object: 0xffff9489603061f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960306300 | file object: 0xffff948960306380 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960306490 | file object: 0xffff948960306510 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960306620 | file object: 0xffff9489603066a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603067b0 | file object: 0xffff948960306830 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\mscoreei.dll
pool: 0xffff948960306940 | file object: 0xffff9489603069c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960306ad0 | file object: 0xffff948960306b50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960306c60 | file object: 0xffff948960306ce0 | offsetby: 0x80
\$Directory
pool: 0xffff948960306df0 | file object: 0xffff948960306e70 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-C49E779A.pf
pool: 0xffff948960307110 | file object: 0xffff948960307190 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.VC.dll
pool: 0xffff9489603072a0 | file object: 0xffff948960307320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960307430 | file object: 0xffff9489603074b0 | offsetby: 0x80
\Windows\System32\MTFFuzzyDS.dll
pool: 0xffff9489603075c0 | file object: 0xffff948960307640 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960307750 | file object: 0xffff9489603077d0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe
pool: 0xffff9489603078e0 | file object: 0xffff948960307960 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960307a70 | file object: 0xffff948960307af0 | offsetby: 0x80
\Windows\System32\fcon.dll
pool: 0xffff948960307c00 | file object: 0xffff948960307c80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960307d90 | file object: 0xffff948960307e10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603080b0 | file object: 0xffff948960308130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960308240 | file object: 0xffff9489603082c0 | offsetby: 0x80
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Desktop-Required-Package04110~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff9489603083d0 | file object: 0xffff948960308450 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960308560 | file object: 0xffff9489603085e0 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-CABA5DBC.pf
pool: 0xffff9489603086f0 | file object: 0xffff948960308770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960308880 | file object: 0xffff948960308900 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-96A7E1CF.pf
pool: 0xffff948960308a10 | file object: 0xffff948960308a90 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\46c6217a2d77a20d9fff301af2e1d67e\mscorlib.ni.dll
pool: 0xffff948960308ba0 | file object: 0xffff948960308c20 | offsetby: 0x80
\$Directory
pool: 0xffff948960308d30 | file object: 0xffff948960308db0 | offsetby: 0x80
\$Directory
pool: 0xffff948960309050 | file object: 0xffff9489603090d0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\Microsoft.CloudExperienceHost.dll
pool: 0xffff9489603091e0 | file object: 0xffff948960309260 | offsetby: 0x80
\Windows\System32\upnp.dll
pool: 0xffff948960309370 | file object: 0xffff9489603093f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960309500 | file object: 0xffff948960309580 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\php\package.nls.json.nls.json
pool: 0xffff948960309690 | file object: 0xffff948960309710 | offsetby: 0x80
\ProgramData\Microsoft\Windows\OneSettings\FeatureConfig.bak.json
pool: 0xffff948960309820 | file object: 0xffff9489603098a0 | offsetby: 0x80
\Windows\System32\en-US\WsmRes.dll.mui
pool: 0xffff9489603099b0 | file object: 0xffff948960309a30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960309b40 | file object: 0xffff948960309bc0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\typescript-language-feature
pool: 0xffff948960309cd0 | file object: 0xffff948960309d50 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\Config\machine.config
pool: 0xffff948960309e60 | file object: 0xffff948960309ee0 | offsetby: 0x80
\Windows\System32\bitsigd.dll
pool: 0xffff94896030a180 | file object: 0xffff94896030a200 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94896030a310 | file object: 0xffff94896030a390 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\setup\logs\StandaloneUpdate_2020-06-04_062545_5652-5728.log
pool: 0xffff94896030a4a0 | file object: 0xffff94896030a520 | offsetby: 0x80
\Windows\System32\storewuauth.dll
pool: 0xffff94896030a630 | file object: 0xffff94896030a6b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896030a7c0 | file object: 0xffff94896030a840 | offsetby: 0x80
䪀謑舎￿j隆遜됡铛x蠄@\,$ԁԀ鄑샋狀먔믢꙼ϩԁԀ鄑샋狀먔믢꙼ϩԁԀ鄑샋狀먔믢꙼ȁVolume2\Windows\System32\duser.
pool: 0xffff94896030a950 | file object: 0xffff94896030a9d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896030aae0 | file object: 0xffff94896030ab60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896030ac70 | file object: 0xffff94896030acf0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\OneSettings\CortanaUWP.json
pool: 0xffff94896030ae00 | file object: 0xffff94896030ae80 | offsetby: 0x80
\Windows\System32\bitsperf.dll
pool: 0xffff94896030b120 | file object: 0xffff94896030b1a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896030b2b0 | file object: 0xffff94896030b330 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896030b440 | file object: 0xffff94896030b4c0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned3}.2.ver0x0000000000000001.db00000001.db
pool: 0xffff94896030b5d0 | file object: 0xffff94896030b650 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896030b760 | file object: 0xffff94896030b7e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.IdentityService.Clients.ActiveDirectory.dll
pool: 0xffff94896030b8f0 | file object: 0xffff94896030b970 | offsetby: 0x80
\Windows\SysWOW64\ucrtbase_clr0400.dll
pool: 0xffff94896030ba80 | file object: 0xffff94896030bb00 | offsetby: 0x80
\Windows\System32\wbem\WmiPerfClass.dll
pool: 0xffff94896030bc10 | file object: 0xffff94896030bc90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLCommon\140\Microsoft.VisualStudio.Data.Tools.SqlCommonPackage.pkgdef
pool: 0xffff94896030bda0 | file object: 0xffff94896030be20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896030c0c0 | file object: 0xffff94896030c140 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\f364e4396f858010442117cd31789bd4\System.Core.ni.dll
pool: 0xffff94896030c250 | file object: 0xffff94896030c2d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896030c3e0 | file object: 0xffff94896030c460 | offsetby: 0x80
\ProgramData\Microsoft\Network\Downloader\qmgr.db
pool: 0xffff94896030c570 | file object: 0xffff94896030c5f0 | offsetby: 0x80
棎韯댰榰ice\㸂ܒ扏捓disk砀膃舎￿漼퇻穢ꜙÄ蠔Œ¨0āက\$ǿԁԀ鄑샋狀먔믢꙼ϩǿāԀ©́ԀԁԀ鄑샋狀먔믢꙼ϩԁԀ鄑샋狀먔믢꙼ȁ\CodeHelper.exeon
pool: 0xffff94896030c700 | file object: 0xffff94896030c780 | offsetby: 0x80
\$Directory
pool: 0xffff94896030c890 | file object: 0xffff94896030c910 | offsetby: 0x80
\ProgramData\Microsoft\Windows\OneSettings\FeatureConfig.json
pool: 0xffff94896030ca20 | file object: 0xffff94896030caa0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896030cbb0 | file object: 0xffff94896030cc30 | offsetby: 0x80
\ProgramData\Microsoft\Windows\OneSettings\DirectXDbVersion.json
pool: 0xffff94896030cd40 | file object: 0xffff94896030cdc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\Hosts\ServiceHub.Host.CLR.x86\Microsoft.ServiceHub.HostStub.dll
pool: 0xffff94896030d060 | file object: 0xffff94896030d0e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896030d1f0 | file object: 0xffff94896030d270 | offsetby: 0x80
\Windows\System32\Windows.Devices.Sensors.dll
pool: 0xffff94896030d380 | file object: 0xffff94896030d400 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896030d510 | file object: 0xffff94896030d590 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896030d6a0 | file object: 0xffff94896030d720 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896030d830 | file object: 0xffff94896030d8b0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\Powershell\Defender.psd1
pool: 0xffff94896030d9c0 | file object: 0xffff94896030da40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896030db50 | file object: 0xffff94896030dbd0 | offsetby: 0x80
\Windows\SysWOW64\vcruntime140_clr0400.dll
pool: 0xffff94896030dce0 | file object: 0xffff94896030dd60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896030de70 | file object: 0xffff94896030def0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896030e000 | file object: 0xffff94896030e080 | offsetby: 0x80
\Windows\System32\ssdpsrv.dll
pool: 0xffff94896030e190 | file object: 0xffff94896030e210 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896030e320 | file object: 0xffff94896030e3a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896030e4b0 | file object: 0xffff94896030e530 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896030e640 | file object: 0xffff94896030e6c0 | offsetby: 0x80
\Windows\System32\upnp.dll
pool: 0xffff94896030e7d0 | file object: 0xffff94896030e850 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\Powershell\MSFT_MpSignature.cdxml
pool: 0xffff94896030e960 | file object: 0xffff94896030e9e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896030eaf0 | file object: 0xffff94896030eb70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896030ec80 | file object: 0xffff94896030ed00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896030ee10 | file object: 0xffff94896030ee90 | offsetby: 0x80
\$Directory
pool: 0xffff94896030f130 | file object: 0xffff94896030f1b0 | offsetby: 0x80
\Windows\System32\Recovery\ReAgent.xml
pool: 0xffff94896030f2c0 | file object: 0xffff94896030f340 | offsetby: 0x80
\Windows\System32\ReInfo.dll
pool: 0xffff94896030f450 | file object: 0xffff94896030f4d0 | offsetby: 0x80
\Windows\System32\TpmCoreProvisioning.dll
pool: 0xffff94896030f5e0 | file object: 0xffff94896030f660 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896030f770 | file object: 0xffff94896030f7f0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-WinRM%4Operational.evtx
pool: 0xffff94896030f900 | file object: 0xffff94896030f980 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\workbench.desktop.main.nls-5be50a12ee43e6c8a1b40d9dee5467e3.cod
pool: 0xffff94896030fa90 | file object: 0xffff94896030fb10 | offsetby: 0x80
\Windows\System32\DDORes.dll
pool: 0xffff94896030fc20 | file object: 0xffff94896030fca0 | offsetby: 0x80
\Registry\Machine\System\CurrentControlSet\Control\ComputerName\ActiveComputerName-9ed6-806e6f6e6963}ryptprimitives.dllr
pool: 0xffff94896030fdb0 | file object: 0xffff94896030fe30 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\46c6217a2d77a20d9fff301af2e1d67e\mscorlib.ni.dll.aux
pool: 0xffff9489603100d0 | file object: 0xffff948960310150 | offsetby: 0x80
\$Directory
pool: 0xffff948960310260 | file object: 0xffff9489603102e0 | offsetby: 0x80
\Windows\System32\enrollmentapi.dll
pool: 0xffff9489603103f0 | file object: 0xffff948960310470 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960310580 | file object: 0xffff948960310600 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Bits-Client%4Operational.evtx
pool: 0xffff948960310710 | file object: 0xffff948960310790 | offsetby: 0x80
\$Directory
pool: 0xffff9489603108a0 | file object: 0xffff948960310920 | offsetby: 0x80
\Windows\System32\DefaultDeviceManager.dll
pool: 0xffff948960310a30 | file object: 0xffff948960310ab0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960310bc0 | file object: 0xffff948960310c40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960310d50 | file object: 0xffff948960310dd0 | offsetby: 0x80
\Windows\System32\wbem\Win32_Tpm.dll
pool: 0xffff948960311070 | file object: 0xffff9489603110f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960311200 | file object: 0xffff948960311280 | offsetby: 0x80
\ProgramData\Microsoft\Network\Downloader\edb.log
pool: 0xffff948960311390 | file object: 0xffff948960311410 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\2fd365eef9c2999c233994057e037e6b\mscorlib.ni.dll.aux
pool: 0xffff948960311520 | file object: 0xffff9489603115a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603116b0 | file object: 0xffff948960311730 | offsetby: 0x80
\$Directory
pool: 0xffff948960311840 | file object: 0xffff9489603118c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\icudtl.dat
pool: 0xffff9489603119d0 | file object: 0xffff948960311a50 | offsetby: 0x80
\$Directory
pool: 0xffff948960311b60 | file object: 0xffff948960311be0 | offsetby: 0x80
\Windows\Prefetch\TIWORKER.EXE-A6B5D9ED.pf
pool: 0xffff948960311cf0 | file object: 0xffff948960311d70 | offsetby: 0x80
\Windows\System32\wosc.dll
pool: 0xffff948960312010 | file object: 0xffff948960312090 | offsetby: 0x80
㧀岣钉￿dǦ쇦se禰謻舎￿禰謻舎￿DataObjectAttributes
pool: 0xffff9489603121a0 | file object: 0xffff948960312220 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\WindowsFormsIntegration\v4.0_4.0.0.0__31bf3856ad364e35\WindowsFormsIntegration.dll
pool: 0xffff948960312330 | file object: 0xffff9489603123b0 | offsetby: 0x80
\Windows\System32\WsmSvc.dll
pool: 0xffff9489603124c0 | file object: 0xffff948960312540 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960312650 | file object: 0xffff9489603126d0 | offsetby: 0x80
\Windows\System32\en-US\wosc.dll.mui
pool: 0xffff9489603127e0 | file object: 0xffff948960312860 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-handle-l1-1-0.dll
pool: 0xffff948960312970 | file object: 0xffff9489603129f0 | offsetby: 0x80
\Windows\System32\mitigationscanner.exe
pool: 0xffff948960312b00 | file object: 0xffff948960312b80 | offsetby: 0x80
\Windows\System32\en-US\wsqmcons.exe.mui
pool: 0xffff948960312c90 | file object: 0xffff948960312d10 | offsetby: 0x80
뛠彾钉￿咐腗舎￿琸謻舎￿琸謻舎￿蹈舎￿蹈舎￿
pool: 0xffff948960312e20 | file object: 0xffff948960312ea0 | offsetby: 0x80
\Windows\System32\WsmAuto.dll
pool: 0xffff948960313140 | file object: 0xffff9489603131c0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\OneSettings\TroubleshootingSvc.json
pool: 0xffff9489603132d0 | file object: 0xffff948960313350 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\clrjit.dll
pool: 0xffff948960313460 | file object: 0xffff9489603134e0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-fibers-l1-1-1.dll
pool: 0xffff9489603135f0 | file object: 0xffff948960313670 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960313780 | file object: 0xffff948960313800 | offsetby: 0x80
\Windows\System32\WsmRes.dll
pool: 0xffff948960313910 | file object: 0xffff948960313990 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960313aa0 | file object: 0xffff948960313b20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960313c30 | file object: 0xffff948960313cb0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Models\ModelPayload.json
pool: 0xffff948960313dc0 | file object: 0xffff948960313e40 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Management.Infrastructure\v4.0_1.0.0.0__31bf3856ad364e35\Microsoft.Management.Infrastructure.dlln
pool: 0xffff9489603140e0 | file object: 0xffff948960314160 | offsetby: 0x80
\$Directory
pool: 0xffff948960314270 | file object: 0xffff9489603142f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\OneSettings\StorageGroveler.json
pool: 0xffff948960314400 | file object: 0xffff948960314480 | offsetby: 0x80
\Windows\System32\pcwum.dll
pool: 0xffff948960314590 | file object: 0xffff948960314610 | offsetby: 0x80
\Windows\System32\sppcext.dll
pool: 0xffff948960314720 | file object: 0xffff9489603147a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603148b0 | file object: 0xffff948960314930 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960314a40 | file object: 0xffff948960314ac0 | offsetby: 0x80
\$Directory
pool: 0xffff948960314bd0 | file object: 0xffff948960314c50 | offsetby: 0x80
\Windows\SysWOW64\oleaut32.dll
pool: 0xffff948960314d60 | file object: 0xffff948960314de0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V0980bc02#\da1f4a7f2c163d38ccdb1edc51f8be25\Microsoft.VisualStudio.ExtensionEngine.ni.dll.aux
pool: 0xffff948960315080 | file object: 0xffff948960315100 | offsetby: 0x80
\Windows\SysWOW64\WofUtil.dll
pool: 0xffff948960315210 | file object: 0xffff948960315290 | offsetby: 0x80
\Windows\Logs\CBS\CBS.log
pool: 0xffff9489603153a0 | file object: 0xffff948960315420 | offsetby: 0x80
\Windows\servicing\CbsApi.dll
pool: 0xffff948960315530 | file object: 0xffff9489603155b0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\vscode-account\dist\extension
pool: 0xffff9489603156c0 | file object: 0xffff948960315740 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960315850 | file object: 0xffff9489603158d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\xml\package.nls.jsons\php\package
pool: 0xffff9489603159e0 | file object: 0xffff948960315a60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960315b70 | file object: 0xffff948960315bf0 | offsetby: 0x80
\$Directory
pool: 0xffff948960315d00 | file object: 0xffff948960315d80 | offsetby: 0x80
\$Directory
pool: 0xffff948960316020 | file object: 0xffff9489603160a0 | offsetby: 0x80
\Windows\SysWOW64\OneDriveSetup.exe
pool: 0xffff9489603161b0 | file object: 0xffff948960316230 | offsetby: 0x80
\$Directory
pool: 0xffff948960316340 | file object: 0xffff9489603163c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Microsoft.VisualStudio.ExtensionEngine.dll
pool: 0xffff9489603164d0 | file object: 0xffff948960316550 | offsetby: 0x80
\$Directory
pool: 0xffff948960316660 | file object: 0xffff9489603166e0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.NetCore.SharedFramework.2.1.2.1.18,version=16.6.30107.105,chip=x64\_package.json
pool: 0xffff9489603167f0 | file object: 0xffff948960316870 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.NetCore.Templates.2.1.3.1.300-servicing-015161,version=16.6.30107.105,chip=x64\_package.json
pool: 0xffff948960316980 | file object: 0xffff948960316a00 | offsetby: 0x80
\$Directory
pool: 0xffff948960316b10 | file object: 0xffff948960316b90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960316ca0 | file object: 0xffff948960316d20 | offsetby: 0x80
\$Directory
pool: 0xffff948960316e30 | file object: 0xffff948960316eb0 | offsetby: 0x80
pool: 0xffff948960317150 | file object: 0xffff9489603171d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489603172e0 | file object: 0xffff948960317360 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\wdscore.dll
pool: 0xffff948960317470 | file object: 0xffff9489603174f0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\CbsCore.dll
pool: 0xffff948960317600 | file object: 0xffff948960317680 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Microsoft.VisualStudio.Threading.dll
pool: 0xffff948960317790 | file object: 0xffff948960317810 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\A86Z8RFM\BB9mld4[1].png
pool: 0xffff948960317920 | file object: 0xffff9489603179a0 | offsetby: 0x80
\Windows\Prefetch\TRUSTEDINSTALLER.EXE-3CC531E5.pf
pool: 0xffff948960317ab0 | file object: 0xffff948960317b30 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\wdscore.dll
pool: 0xffff948960317c40 | file object: 0xffff948960317cc0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe\PreSignInSettingsConfig.json
pool: 0xffff948960317dd0 | file object: 0xffff948960317e50 | offsetby: 0x80
\$Directory
pool: 0xffff9489603180f0 | file object: 0xffff948960318170 | offsetby: 0x80
\Windows\System32\srclient.dll
pool: 0xffff948960318280 | file object: 0xffff948960318300 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960318410 | file object: 0xffff948960318490 | offsetby: 0x80
\Windows\servicing\CbsApi.dll
pool: 0xffff9489603185a0 | file object: 0xffff948960318620 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\wcp.dll
pool: 0xffff948960318730 | file object: 0xffff9489603187b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603188c0 | file object: 0xffff948960318940 | offsetby: 0x80
\Windows\System32\dxilconv.dll
pool: 0xffff948960318a50 | file object: 0xffff948960318ad0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vf87aed9a#\199990435bc032175e09a7d8b1245277\Microsoft.VisualStudio.Telemetry.ni.dll.aux
pool: 0xffff948960318be0 | file object: 0xffff948960318c60 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vbeb7089b#\48b49df053d0a613956774d2497fca4a\Microsoft.VisualStudio.Threading.ni.dll.aux
pool: 0xffff948960318d70 | file object: 0xffff948960318df0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960319090 | file object: 0xffff948960319110 | offsetby: 0x80
\Windows\servicing\CbsMsg.dll
pool: 0xffff948960319220 | file object: 0xffff9489603192a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\debug-auto-launch\dist\nls.metadata.jsonlSe
pool: 0xffff9489603193b0 | file object: 0xffff948960319430 | offsetby: 0x80
\Windows\System32\spp.dll
pool: 0xffff948960319540 | file object: 0xffff9489603195c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489603196d0 | file object: 0xffff948960319750 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\drupdate.dll
pool: 0xffff948960319860 | file object: 0xffff9489603198e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603199f0 | file object: 0xffff948960319a70 | offsetby: 0x80
\Windows\System32\Windows.WARP.JITService.exe
pool: 0xffff948960319b80 | file object: 0xffff948960319c00 | offsetby: 0x80
\Windows\System32\D3DSCache.dll
pool: 0xffff948960319d10 | file object: 0xffff948960319d90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896031a030 | file object: 0xffff94896031a0b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896031a1c0 | file object: 0xffff94896031a240 | offsetby: 0x80
\$Directory
pool: 0xffff94896031a350 | file object: 0xffff94896031a3d0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.710_none_5f52d84058d0677f\wdscore.dll
pool: 0xffff94896031a4e0 | file object: 0xffff94896031a560 | offsetby: 0x80
\$Directory
pool: 0xffff94896031a670 | file object: 0xffff94896031a6f0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vf87aed9a#\b604648d647118bcf308bf80ba7f19dd\Microsoft.VisualStudio.Telemetry.ni.dll.aux
pool: 0xffff94896031a800 | file object: 0xffff94896031a880 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\dpx.dll
pool: 0xffff94896031a990 | file object: 0xffff94896031aa10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896031ab20 | file object: 0xffff94896031aba0 | offsetby: 0x80
\$Directory
pool: 0xffff94896031acb0 | file object: 0xffff94896031ad30 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\CbsCore.dll
pool: 0xffff94896031ae40 | file object: 0xffff94896031aec0 | offsetby: 0x80
\$Directory
pool: 0xffff94896031b160 | file object: 0xffff94896031b1e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Browser.InternetExplorer~~11.0.mum
pool: 0xffff94896031b2f0 | file object: 0xffff94896031b370 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\App.Support.QuickAssist~~1.0.mum
pool: 0xffff94896031b480 | file object: 0xffff94896031b500 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Hello.Face.18330~~1.0.mum
pool: 0xffff94896031b610 | file object: 0xffff94896031b690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896031b7a0 | file object: 0xffff94896031b820 | offsetby: 0x80

r\pਐƍ᜼õ dData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\utf16-f7fb7a5600e048b65cd1220e1e31aaf5.co
pool: 0xffff94896031b930 | file object: 0xffff94896031b9b0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Hello.Face.Migration.18330~~1.0.mum
pool: 0xffff94896031bac0 | file object: 0xffff94896031bb40 | offsetby: 0x80
\$Directory
pool: 0xffff94896031bc50 | file object: 0xffff94896031bcd0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\84705775928cda4b16362bb96b8bc12c\System.Core.ni.dll.aux
pool: 0xffff94896031bde0 | file object: 0xffff94896031be60 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Kernel.Soft.Reboot~~1.0.mum
pool: 0xffff94896031c100 | file object: 0xffff94896031c180 | offsetby: 0x80
\Windows\System32\srclient.dll
pool: 0xffff94896031c290 | file object: 0xffff94896031c310 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Analog.Holographic.Desktop~~1.0.mum
pool: 0xffff94896031c420 | file object: 0xffff94896031c4a0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System\3b82ac2a7aa1eb0957c2ba3eb9eaaa93\System.ni.dll.aux
pool: 0xffff94896031c5b0 | file object: 0xffff94896031c630 | offsetby: 0x80
遀讲舎￿轅舎￿遐讲舎￿轅舎￿º
pool: 0xffff94896031c740 | file object: 0xffff94896031c7c0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~af-za~1.0.mum
pool: 0xffff94896031c8d0 | file object: 0xffff94896031c950 | offsetby: 0x80
\$Directory
pool: 0xffff94896031ca60 | file object: 0xffff94896031cae0 | offsetby: 0x80
\$Directory
pool: 0xffff94896031cbf0 | file object: 0xffff94896031cc70 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\drupdate.dll
pool: 0xffff94896031cd80 | file object: 0xffff94896031ce00 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System\f3efcabd0ee45af4d0d9146029f0f860\System.ni.dll.aux
pool: 0xffff94896031d0a0 | file object: 0xffff94896031d120 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\wcp.dll
pool: 0xffff94896031d230 | file object: 0xffff94896031d2b0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\dpx.dll
pool: 0xffff94896031d3c0 | file object: 0xffff94896031d440 | offsetby: 0x80
槅¢dows\System32\cscapi.dll@
pool: 0xffff94896031d550 | file object: 0xffff94896031d5d0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System\f3efcabd0ee45af4d0d9146029f0f860\System.ni.dll
pool: 0xffff94896031d6e0 | file object: 0xffff94896031d760 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\1394cc86c689922cc9f80982f30c7bda\PresentationFramework.ni.dll.aux
pool: 0xffff94896031d870 | file object: 0xffff94896031d8f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896031da00 | file object: 0xffff94896031da80 | offsetby: 0x80
\Windows\System32\spp.dll
pool: 0xffff94896031db90 | file object: 0xffff94896031dc10 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\ActionList.xml
pool: 0xffff94896031dd20 | file object: 0xffff94896031dda0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Accessibility.Braille~~1.0.mum
pool: 0xffff94896031e040 | file object: 0xffff94896031e0c0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Core\f364e4396f858010442117cd31789bd4\System.Core.ni.dll.aux
pool: 0xffff94896031e1d0 | file object: 0xffff94896031e250 | offsetby: 0x80
\$Directory
pool: 0xffff94896031e360 | file object: 0xffff94896031e3e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~fi-fi~1.0.mum
pool: 0xffff94896031e4f0 | file object: 0xffff94896031e570 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~en-us~1.0.mum
pool: 0xffff94896031e680 | file object: 0xffff94896031e700 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~bs-latn-ba~1.0.mum
pool: 0xffff94896031e810 | file object: 0xffff94896031e890 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ba-ru~1.0.mum
pool: 0xffff94896031e9a0 | file object: 0xffff94896031ea20 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~fa-ir~1.0.mum
pool: 0xffff94896031eb30 | file object: 0xffff94896031ebb0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~fil-ph~1.0.mum
pool: 0xffff94896031ecc0 | file object: 0xffff94896031ed40 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~as-in~1.0.mum
pool: 0xffff94896031ee50 | file object: 0xffff94896031eed0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~bn-in~1.0.mum
pool: 0xffff94896031f170 | file object: 0xffff94896031f1f0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~de-de~1.0.mum
pool: 0xffff94896031f300 | file object: 0xffff94896031f380 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~es-mx~1.0.mum
pool: 0xffff94896031f490 | file object: 0xffff94896031f510 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~be-by~1.0.mum
pool: 0xffff94896031f620 | file object: 0xffff94896031f6a0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~es-us~1.0.mum
pool: 0xffff94896031f7b0 | file object: 0xffff94896031f830 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~az-latn-az~1.0.mum
pool: 0xffff94896031f940 | file object: 0xffff94896031f9c0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~cs-cz~1.0.mum
pool: 0xffff94896031fad0 | file object: 0xffff94896031fb50 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~de-ch~1.0.mum
pool: 0xffff94896031fc60 | file object: 0xffff94896031fce0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ar-sa~1.0.mum
pool: 0xffff94896031fdf0 | file object: 0xffff94896031fe70 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~da-dk~1.0.mum
pool: 0xffff948960320110 | file object: 0xffff948960320190 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~bn-bd~1.0.mum
pool: 0xffff9489603202a0 | file object: 0xffff948960320320 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ca-es~1.0.mum
pool: 0xffff948960320430 | file object: 0xffff9489603204b0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~cy-gb~1.0.mum
pool: 0xffff9489603205c0 | file object: 0xffff948960320640 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~en-au~1.0.mum
pool: 0xffff948960320750 | file object: 0xffff9489603207d0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~en-ca~1.0.mum
pool: 0xffff9489603208e0 | file object: 0xffff948960320960 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~en-gb~1.0.mum
pool: 0xffff948960320a70 | file object: 0xffff948960320af0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~en-in~1.0.mum
pool: 0xffff948960320c00 | file object: 0xffff948960320c80 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~es-es~1.0.mum
pool: 0xffff948960320d90 | file object: 0xffff948960320e10 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~bg-bg~1.0.mum
pool: 0xffff9489603210b0 | file object: 0xffff948960321130 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~el-gr~1.0.mum
pool: 0xffff948960321240 | file object: 0xffff9489603212c0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~et-ee~1.0.mum
pool: 0xffff9489603213d0 | file object: 0xffff948960321450 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~eu-es~1.0.mum
pool: 0xffff948960321560 | file object: 0xffff9489603215e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~fr-be~1.0.mum
pool: 0xffff9489603216f0 | file object: 0xffff948960321770 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~gd-gb~1.0.mum
pool: 0xffff948960321880 | file object: 0xffff948960321900 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~hi-in~1.0.mum
pool: 0xffff948960321a10 | file object: 0xffff948960321a90 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~gl-es~1.0.mum
pool: 0xffff948960321ba0 | file object: 0xffff948960321c20 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ky-kg~1.0.mum
pool: 0xffff948960321d30 | file object: 0xffff948960321db0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~lb-lu~1.0.mum
pool: 0xffff948960322050 | file object: 0xffff9489603220d0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~he-il~1.0.mum
pool: 0xffff9489603221e0 | file object: 0xffff948960322260 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~is-is~1.0.mum
pool: 0xffff948960322370 | file object: 0xffff9489603223f0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~kok-deva-in~1.0.mum
pool: 0xffff948960322500 | file object: 0xffff948960322580 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~lt-lt~1.0.mum
pool: 0xffff948960322690 | file object: 0xffff948960322710 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~gu-in~1.0.mum
pool: 0xffff948960322820 | file object: 0xffff9489603228a0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~fr-ca~1.0.mum
pool: 0xffff9489603229b0 | file object: 0xffff948960322a30 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~fr-fr~1.0.mum
pool: 0xffff948960322b40 | file object: 0xffff948960322bc0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ga-ie~1.0.mum
pool: 0xffff948960322cd0 | file object: 0xffff948960322d50 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~hu-hu~1.0.mum
pool: 0xffff948960322e60 | file object: 0xffff948960322ee0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~id-id~1.0.mum
pool: 0xffff948960323180 | file object: 0xffff948960323200 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~fr-ch~1.0.mum
pool: 0xffff948960323310 | file object: 0xffff948960323390 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~haw-us~1.0.mum
pool: 0xffff9489603234a0 | file object: 0xffff948960323520 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~hr-hr~1.0.mum
pool: 0xffff948960323630 | file object: 0xffff9489603236b0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~hy-am~1.0.mum
pool: 0xffff9489603237c0 | file object: 0xffff948960323840 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ig-ng~1.0.mum
pool: 0xffff948960323950 | file object: 0xffff9489603239d0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ja-jp~1.0.mum
pool: 0xffff948960323ae0 | file object: 0xffff948960323b60 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ka-ge~1.0.mum
pool: 0xffff948960323c70 | file object: 0xffff948960323cf0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~kk-kz~1.0.mum
pool: 0xffff948960323e00 | file object: 0xffff948960323e80 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~kl-gl~1.0.mum
pool: 0xffff948960324120 | file object: 0xffff9489603241a0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ha-latn-ng~1.0.mum
pool: 0xffff9489603242b0 | file object: 0xffff948960324330 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~it-it~1.0.mum
pool: 0xffff948960324440 | file object: 0xffff9489603244c0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~kn-in~1.0.mum
pool: 0xffff9489603245d0 | file object: 0xffff948960324650 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ko-kr~1.0.mum
pool: 0xffff948960324760 | file object: 0xffff9489603247e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~mr-in~1.0.mum
pool: 0xffff9489603248f0 | file object: 0xffff948960324970 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~mn-mn~1.0.mum
pool: 0xffff948960324a80 | file object: 0xffff948960324b00 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~sr-cyrl-rs~1.0.mum
pool: 0xffff948960324c10 | file object: 0xffff948960324c90 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ps-af~1.0.mum
pool: 0xffff948960324da0 | file object: 0xffff948960324e20 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~nn-no~1.0.mum
pool: 0xffff9489603250c0 | file object: 0xffff948960325140 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~pa-in~1.0.mum
pool: 0xffff948960325250 | file object: 0xffff9489603252d0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~mk-mk~1.0.mum
pool: 0xffff9489603253e0 | file object: 0xffff948960325460 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~nb-no~1.0.mum
pool: 0xffff948960325570 | file object: 0xffff9489603255f0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~rw-rw~1.0.mum
pool: 0xffff948960325700 | file object: 0xffff948960325780 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~sah-ru~1.0.mum
pool: 0xffff948960325890 | file object: 0xffff948960325910 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~pt-pt~1.0.mum
pool: 0xffff948960325a20 | file object: 0xffff948960325aa0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ro-ro~1.0.mum
pool: 0xffff948960325bb0 | file object: 0xffff948960325c30 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ru-ru~1.0.mum
pool: 0xffff948960325d40 | file object: 0xffff948960325dc0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~nl-nl~1.0.mum
pool: 0xffff948960326060 | file object: 0xffff9489603260e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~sk-sk~1.0.mum
pool: 0xffff9489603261f0 | file object: 0xffff948960326270 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~sq-al~1.0.mum
pool: 0xffff948960326380 | file object: 0xffff948960326400 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~lv-lv~1.0.mum
pool: 0xffff948960326510 | file object: 0xffff948960326590 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ms-bn~1.0.mum
pool: 0xffff9489603266a0 | file object: 0xffff948960326720 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ne-np~1.0.mum
pool: 0xffff948960326830 | file object: 0xffff9489603268b0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~mt-mt~1.0.mum
pool: 0xffff9489603269c0 | file object: 0xffff948960326a40 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~mi-nz~1.0.mum
pool: 0xffff948960326b50 | file object: 0xffff948960326bd0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ml-in~1.0.mum
pool: 0xffff948960326ce0 | file object: 0xffff948960326d60 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~or-in~1.0.mum
pool: 0xffff948960326e70 | file object: 0xffff948960326ef0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~pt-br~1.0.mum
pool: 0xffff948960327000 | file object: 0xffff948960327080 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~pl-pl~1.0.mum
pool: 0xffff948960327190 | file object: 0xffff948960327210 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ms-my~1.0.mum
pool: 0xffff948960327320 | file object: 0xffff9489603273a0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~nso-za~1.0.mum
pool: 0xffff9489603274b0 | file object: 0xffff948960327530 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~si-lk~1.0.mum
pool: 0xffff948960327640 | file object: 0xffff9489603276c0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~rm-ch~1.0.mum
pool: 0xffff9489603277d0 | file object: 0xffff948960327850 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~sl-si~1.0.mum
pool: 0xffff948960327960 | file object: 0xffff9489603279e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~zu-za~1.0.mum
pool: 0xffff948960327af0 | file object: 0xffff948960327b70 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Beng~und-Beng~1.0.mum
pool: 0xffff948960327c80 | file object: 0xffff948960327d00 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~uz-latn-uz~1.0.mum
pool: 0xffff948960327e10 | file object: 0xffff948960327e90 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ur-pk~1.0.mum
pool: 0xffff948960328130 | file object: 0xffff9489603281b0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~tk-tm~1.0.mum
pool: 0xffff9489603282c0 | file object: 0xffff948960328340 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~yo-ng~1.0.mum
pool: 0xffff948960328450 | file object: 0xffff9489603284d0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~te-in~1.0.mum
pool: 0xffff9489603285e0 | file object: 0xffff948960328660 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Arab~und-Arab~1.0.mum
pool: 0xffff948960328770 | file object: 0xffff9489603287f0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~sw-ke~1.0.mum
pool: 0xffff948960328900 | file object: 0xffff948960328980 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Cans~und-Cans~1.0.mum
pool: 0xffff948960328a90 | file object: 0xffff948960328b10 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Deva~und-Deva~1.0.mum
pool: 0xffff948960328c20 | file object: 0xffff948960328ca0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~sr-latn-rs~1.0.mum
pool: 0xffff948960328db0 | file object: 0xffff948960328e30 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~sv-se~1.0.mum
pool: 0xffff9489603290d0 | file object: 0xffff948960329150 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~th-th~1.0.mum
pool: 0xffff948960329260 | file object: 0xffff9489603292e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Cher~und-Cher~1.0.mum
pool: 0xffff9489603293f0 | file object: 0xffff948960329470 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Ethi~und-Ethi~1.0.mum
pool: 0xffff948960329580 | file object: 0xffff948960329600 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~tr-tr~1.0.mum
pool: 0xffff948960329710 | file object: 0xffff948960329790 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~tt-ru~1.0.mum
pool: 0xffff9489603298a0 | file object: 0xffff948960329920 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~tg-cyrl-tj~1.0.mum
pool: 0xffff948960329a30 | file object: 0xffff948960329ab0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ta-in~1.0.mum
pool: 0xffff948960329bc0 | file object: 0xffff948960329c40 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~vi-vn~1.0.mum
pool: 0xffff948960329d50 | file object: 0xffff948960329dd0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~uk-ua~1.0.mum
pool: 0xffff94896032a070 | file object: 0xffff94896032a0f0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~ug-cn~1.0.mum
pool: 0xffff94896032a200 | file object: 0xffff94896032a280 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~wo-sn~1.0.mum
pool: 0xffff94896032a390 | file object: 0xffff94896032a410 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~xh-za~1.0.mum
pool: 0xffff94896032a520 | file object: 0xffff94896032a5a0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~tn-za~1.0.mum
pool: 0xffff94896032a6b0 | file object: 0xffff94896032a730 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~zh-cn~1.0.mum
pool: 0xffff94896032a840 | file object: 0xffff94896032a8c0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~zh-tw~1.0.mum
pool: 0xffff94896032a9d0 | file object: 0xffff94896032aa50 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Basic~zh-hk~1.0.mum
pool: 0xffff94896032ab60 | file object: 0xffff94896032abe0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Jpan~und-Jpan~1.0.mum
pool: 0xffff94896032acf0 | file object: 0xffff94896032ad70 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~cs-cz~1.0.mum
pool: 0xffff94896032b010 | file object: 0xffff94896032b090 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~da-dk~1.0.mum
pool: 0xffff94896032b1a0 | file object: 0xffff94896032b220 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~bs-latn-ba~1.0.mum
pool: 0xffff94896032b330 | file object: 0xffff94896032b3b0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~cy-gb~1.0.mum
pool: 0xffff94896032b4c0 | file object: 0xffff94896032b540 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Hebr~und-Hebr~1.0.mum
pool: 0xffff94896032b650 | file object: 0xffff94896032b6d0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.UISupplement.Jpan~und-Jpan~1.0.mum
pool: 0xffff94896032b7e0 | file object: 0xffff94896032b860 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~de-de~1.0.mum
pool: 0xffff94896032b970 | file object: 0xffff94896032b9f0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.UISupplement.Hans~und-Hans~1.0.mum
pool: 0xffff94896032bb00 | file object: 0xffff94896032bb80 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Orya~und-Orya~1.0.mum
pool: 0xffff94896032bc90 | file object: 0xffff94896032bd10 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Mlym~und-Mlym~1.0.mum
pool: 0xffff94896032be20 | file object: 0xffff94896032bea0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.PanEuropeanSupplementalFonts~~1.0.mum
pool: 0xffff94896032c140 | file object: 0xffff94896032c1c0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Syrc~und-Syrc~1.0.mum
pool: 0xffff94896032c2d0 | file object: 0xffff94896032c350 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Telu~und-Telu~1.0.mum
pool: 0xffff94896032c460 | file object: 0xffff94896032c4e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Khmr~und-Khmr~1.0.mum
pool: 0xffff94896032c5f0 | file object: 0xffff94896032c670 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Thai~und-Thai~1.0.mum
pool: 0xffff94896032c780 | file object: 0xffff94896032c800 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~af-za~1.0.mum
pool: 0xffff94896032c910 | file object: 0xffff94896032c990 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Guru~und-Guru~1.0.mum
pool: 0xffff94896032caa0 | file object: 0xffff94896032cb20 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Hant~und-Hant~1.0.mum
pool: 0xffff94896032cc30 | file object: 0xffff94896032ccb0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Knda~und-Knda~1.0.mum
pool: 0xffff94896032cdc0 | file object: 0xffff94896032ce40 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Kore~und-Kore~1.0.mum
pool: 0xffff94896032d0e0 | file object: 0xffff94896032d160 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Sinh~und-Sinh~1.0.mum
pool: 0xffff94896032d270 | file object: 0xffff94896032d2f0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.UISupplement.Hant~und-Hant~1.0.mum
pool: 0xffff94896032d400 | file object: 0xffff94896032d480 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Gujr~und-Gujr~1.0.mum
pool: 0xffff94896032d590 | file object: 0xffff94896032d610 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Laoo~und-Laoo~1.0.mum
pool: 0xffff94896032d720 | file object: 0xffff94896032d7a0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.UISupplement.Kore~und-Kore~1.0.mum
pool: 0xffff94896032d8b0 | file object: 0xffff94896032d930 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~ca-es~1.0.mum
pool: 0xffff94896032da40 | file object: 0xffff94896032dac0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Taml~und-Taml~1.0.mum
pool: 0xffff94896032dbd0 | file object: 0xffff94896032dc50 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Fonts.Hans~und-Hans~1.0.mum
pool: 0xffff94896032dd60 | file object: 0xffff94896032dde0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~nso-za~1.0.mum
pool: 0xffff94896032e080 | file object: 0xffff94896032e100 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~eu-es~1.0.mum
pool: 0xffff94896032e210 | file object: 0xffff94896032e290 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~gl-es~1.0.mum
pool: 0xffff94896032e3a0 | file object: 0xffff94896032e420 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~en-gb~1.0.mum
pool: 0xffff94896032e530 | file object: 0xffff94896032e5b0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~hr-hr~1.0.mum
pool: 0xffff94896032e6c0 | file object: 0xffff94896032e740 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~pt-br~1.0.mum
pool: 0xffff94896032e850 | file object: 0xffff94896032e8d0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~pl-pl~1.0.mum
pool: 0xffff94896032e9e0 | file object: 0xffff94896032ea60 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~pt-pt~1.0.mum
pool: 0xffff94896032eb70 | file object: 0xffff94896032ebf0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~es-es~1.0.mum
pool: 0xffff94896032ed00 | file object: 0xffff94896032ed80 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~rm-ch~1.0.mum
pool: 0xffff94896032f020 | file object: 0xffff94896032f0a0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~fi-fi~1.0.mum
pool: 0xffff94896032f1b0 | file object: 0xffff94896032f230 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~id-id~1.0.mum
pool: 0xffff94896032f340 | file object: 0xffff94896032f3c0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~ga-ie~1.0.mum
pool: 0xffff94896032f4d0 | file object: 0xffff94896032f550 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~en-us~1.0.mum
pool: 0xffff94896032f660 | file object: 0xffff94896032f6e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~el-gr~1.0.mum
pool: 0xffff94896032f7f0 | file object: 0xffff94896032f870 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~fr-fr~1.0.mum
pool: 0xffff94896032f980 | file object: 0xffff94896032fa00 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~gd-gb~1.0.mum
pool: 0xffff94896032fb10 | file object: 0xffff94896032fb90 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~it-it~1.0.mum
pool: 0xffff94896032fca0 | file object: 0xffff94896032fd20 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~ko-kr~1.0.mum
pool: 0xffff94896032fe30 | file object: 0xffff94896032feb0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~lb-lu~1.0.mum
pool: 0xffff948960330150 | file object: 0xffff9489603301d0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~es-mx~1.0.mum
pool: 0xffff9489603302e0 | file object: 0xffff948960330360 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~mi-nz~1.0.mum
pool: 0xffff948960330470 | file object: 0xffff9489603304f0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~ms-bn~1.0.mum
pool: 0xffff948960330600 | file object: 0xffff948960330680 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~nb-no~1.0.mum
pool: 0xffff948960330790 | file object: 0xffff948960330810 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~nl-nl~1.0.mum
pool: 0xffff948960330920 | file object: 0xffff9489603309a0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~hi-in~1.0.mum
pool: 0xffff948960330ab0 | file object: 0xffff948960330b30 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~ja-jp~1.0.mum
pool: 0xffff948960330c40 | file object: 0xffff948960330cc0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~ms-my~1.0.mum
pool: 0xffff948960330dd0 | file object: 0xffff948960330e50 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~nn-no~1.0.mum
pool: 0xffff9489603310f0 | file object: 0xffff948960331170 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~sr-cyrl-rs~1.0.mum
pool: 0xffff948960331280 | file object: 0xffff948960331300 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~sv-se~1.0.mum
pool: 0xffff948960331410 | file object: 0xffff948960331490 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~sl-si~1.0.mum
pool: 0xffff9489603315a0 | file object: 0xffff948960331620 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~tr-tr~1.0.mum
pool: 0xffff948960331730 | file object: 0xffff9489603317b0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~zh-hk~1.0.mum
pool: 0xffff9489603318c0 | file object: 0xffff948960331940 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~en-gb~1.0.mum
pool: 0xffff948960331a50 | file object: 0xffff948960331ad0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~en-us~1.0.mum
pool: 0xffff948960331be0 | file object: 0xffff948960331c60 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~es-es~1.0.mum
pool: 0xffff948960331d70 | file object: 0xffff948960331df0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~xh-za~1.0.mum
pool: 0xffff948960332090 | file object: 0xffff948960332110 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~sr-latn-rs~1.0.mum
pool: 0xffff948960332220 | file object: 0xffff9489603322a0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~zh-tw~1.0.mum
pool: 0xffff9489603323b0 | file object: 0xffff948960332430 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~ro-ro~1.0.mum
pool: 0xffff948960332540 | file object: 0xffff9489603325c0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~ar-sa~1.0.mum
pool: 0xffff9489603326d0 | file object: 0xffff948960332750 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~ru-ru~1.0.mum
pool: 0xffff948960332860 | file object: 0xffff9489603328e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~rw-rw~1.0.mum
pool: 0xffff9489603329f0 | file object: 0xffff948960332a70 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~sk-sk~1.0.mum
pool: 0xffff948960332b80 | file object: 0xffff948960332c00 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~tn-za~1.0.mum
pool: 0xffff948960332d10 | file object: 0xffff948960332d90 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~wo-sn~1.0.mum
pool: 0xffff948960333030 | file object: 0xffff9489603330b0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~zu-za~1.0.mum
pool: 0xffff9489603331c0 | file object: 0xffff948960333240 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~zh-cn~1.0.mum
pool: 0xffff948960333350 | file object: 0xffff9489603333d0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~bg-bg~1.0.mum
pool: 0xffff9489603334e0 | file object: 0xffff948960333560 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~bs-latn-ba~1.0.mum
pool: 0xffff948960333670 | file object: 0xffff9489603336f0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~cs-cz~1.0.mum
pool: 0xffff948960333800 | file object: 0xffff948960333880 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~da-dk~1.0.mum
pool: 0xffff948960333990 | file object: 0xffff948960333a10 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~de-de~1.0.mum
pool: 0xffff948960333b20 | file object: 0xffff948960333ba0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~sq-al~1.0.mum
pool: 0xffff948960333cb0 | file object: 0xffff948960333d30 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Handwriting~sw-ke~1.0.mum
pool: 0xffff948960333e40 | file object: 0xffff948960333ec0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~el-gr~1.0.mum
pool: 0xffff948960334160 | file object: 0xffff9489603341e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~da-dk~1.0.mum
pool: 0xffff9489603342f0 | file object: 0xffff948960334370 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~fi-fi~1.0.mum
pool: 0xffff948960334480 | file object: 0xffff948960334500 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~ko-kr~1.0.mum
pool: 0xffff948960334610 | file object: 0xffff948960334690 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~fr-ca~1.0.mum
pool: 0xffff9489603347a0 | file object: 0xffff948960334820 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~nb-no~1.0.mum
pool: 0xffff948960334930 | file object: 0xffff9489603349b0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~en-au~1.0.mum
pool: 0xffff948960334ac0 | file object: 0xffff948960334b40 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~sv-se~1.0.mum
pool: 0xffff948960334c50 | file object: 0xffff948960334cd0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~it-it~1.0.mum
pool: 0xffff948960334de0 | file object: 0xffff948960334e60 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~pt-pt~1.0.mum
pool: 0xffff948960335100 | file object: 0xffff948960335180 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~en-ca~1.0.mum
pool: 0xffff948960335290 | file object: 0xffff948960335310 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~fr-fr~1.0.mum
pool: 0xffff948960335420 | file object: 0xffff9489603354a0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~nl-nl~1.0.mum
pool: 0xffff9489603355b0 | file object: 0xffff948960335630 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~ro-ro~1.0.mum
pool: 0xffff948960335740 | file object: 0xffff9489603357c0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~sk-sk~1.0.mum
pool: 0xffff9489603358d0 | file object: 0xffff948960335950 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~sr-latn-rs~1.0.mum
pool: 0xffff948960335a60 | file object: 0xffff948960335ae0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~es-mx~1.0.mum
pool: 0xffff948960335bf0 | file object: 0xffff948960335c70 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~ja-jp~1.0.mum
pool: 0xffff948960335d80 | file object: 0xffff948960335e00 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~sr-cyrl-rs~1.0.mum
pool: 0xffff9489603360a0 | file object: 0xffff948960336120 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~hu-hu~1.0.mum
pool: 0xffff948960336230 | file object: 0xffff9489603362b0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~pt-br~1.0.mum
pool: 0xffff9489603363c0 | file object: 0xffff948960336440 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~ru-ru~1.0.mum
pool: 0xffff948960336550 | file object: 0xffff9489603365d0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~sl-si~1.0.mum
pool: 0xffff9489603366e0 | file object: 0xffff948960336760 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~zh-cn~1.0.mum
pool: 0xffff948960336870 | file object: 0xffff9489603368f0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~zh-hk~1.0.mum
pool: 0xffff948960336a00 | file object: 0xffff948960336a80 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~de-de~1.0.mum
pool: 0xffff948960336b90 | file object: 0xffff948960336c10 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~hr-hr~1.0.mum
pool: 0xffff948960336d20 | file object: 0xffff948960336da0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~pl-pl~1.0.mum
pool: 0xffff948960337040 | file object: 0xffff9489603370c0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~tr-tr~1.0.mum
pool: 0xffff9489603371d0 | file object: 0xffff948960337250 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.OCR~zh-tw~1.0.mum
pool: 0xffff948960337360 | file object: 0xffff9489603373e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~ca-es~1.0.mum
pool: 0xffff9489603374f0 | file object: 0xffff948960337570 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~en-us~1.0.mum
pool: 0xffff948960337680 | file object: 0xffff948960337700 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~de-de~1.0.mum
pool: 0xffff948960337810 | file object: 0xffff948960337890 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~el-gr~1.0.mum
pool: 0xffff9489603379a0 | file object: 0xffff948960337a20 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~en-ca~1.0.mum
pool: 0xffff948960337b30 | file object: 0xffff948960337bb0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~en-us~1.0.mum
pool: 0xffff948960337cc0 | file object: 0xffff948960337d40 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~en-in~1.0.mum
pool: 0xffff948960337e50 | file object: 0xffff948960337ed0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~it-it~1.0.mum
pool: 0xffff948960338170 | file object: 0xffff9489603381f0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~en-au~1.0.mum
pool: 0xffff948960338300 | file object: 0xffff948960338380 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~es-es~1.0.mum
pool: 0xffff948960338490 | file object: 0xffff948960338510 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~zh-tw~1.0.mum
pool: 0xffff948960338620 | file object: 0xffff9489603386a0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~da-dk~1.0.mum
pool: 0xffff9489603387b0 | file object: 0xffff948960338830 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~zh-hk~1.0.mum
pool: 0xffff948960338940 | file object: 0xffff9489603389c0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~de-at~1.0.mum
pool: 0xffff948960338ad0 | file object: 0xffff948960338b50 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~fr-ca~1.0.mum
pool: 0xffff948960338c60 | file object: 0xffff948960338ce0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~en-ie~1.0.mum
pool: 0xffff948960338df0 | file object: 0xffff948960338e70 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~en-gb~1.0.mum
pool: 0xffff948960339110 | file object: 0xffff948960339190 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~es-mx~1.0.mum
pool: 0xffff9489603392a0 | file object: 0xffff948960339320 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~ar-sa~1.0.mum
pool: 0xffff948960339430 | file object: 0xffff9489603394b0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~bg-bg~1.0.mum
pool: 0xffff9489603395c0 | file object: 0xffff948960339640 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~cs-cz~1.0.mum
pool: 0xffff948960339750 | file object: 0xffff9489603397d0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~fr-fr~1.0.mum
pool: 0xffff9489603398e0 | file object: 0xffff948960339960 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~zh-cn~1.0.mum
pool: 0xffff948960339a70 | file object: 0xffff948960339af0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~en-gb~1.0.mum
pool: 0xffff948960339c00 | file object: 0xffff948960339c80 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~en-in~1.0.mum
pool: 0xffff948960339d90 | file object: 0xffff948960339e10 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~de-ch~1.0.mum
pool: 0xffff94896033a0b0 | file object: 0xffff94896033a130 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~ja-jp~1.0.mum
pool: 0xffff94896033a240 | file object: 0xffff94896033a2c0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~ar-eg~1.0.mum
pool: 0xffff94896033a3d0 | file object: 0xffff94896033a450 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.Speech~pt-br~1.0.mum
pool: 0xffff94896033a560 | file object: 0xffff94896033a5e0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~sk-sk~1.0.mum
pool: 0xffff94896033a6f0 | file object: 0xffff94896033a770 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~fr-fr~1.0.mum
pool: 0xffff94896033a880 | file object: 0xffff94896033a900 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~ro-ro~1.0.mum
pool: 0xffff94896033aa10 | file object: 0xffff94896033aa90 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~he-il~1.0.mum
pool: 0xffff94896033aba0 | file object: 0xffff94896033ac20 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~ms-my~1.0.mum
pool: 0xffff94896033ad30 | file object: 0xffff94896033adb0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~sl-si~1.0.mum
pool: 0xffff94896033b050 | file object: 0xffff94896033b0d0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~es-mx~1.0.mum
pool: 0xffff94896033b1e0 | file object: 0xffff94896033b260 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~id-id~1.0.mum
pool: 0xffff94896033b370 | file object: 0xffff94896033b3f0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~pt-br~1.0.mum
pool: 0xffff94896033b500 | file object: 0xffff94896033b580 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~pt-pt~1.0.mum
pool: 0xffff94896033b690 | file object: 0xffff94896033b710 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~hi-in~1.0.mum
pool: 0xffff94896033b820 | file object: 0xffff94896033b8a0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~nl-nl~1.0.mum
pool: 0xffff94896033b9b0 | file object: 0xffff94896033ba30 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~it-it~1.0.mum
pool: 0xffff94896033bb40 | file object: 0xffff94896033bbc0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~sv-se~1.0.mum
pool: 0xffff94896033bcd0 | file object: 0xffff94896033bd50 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~es-es~1.0.mum
pool: 0xffff94896033be60 | file object: 0xffff94896033bee0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~fr-ch~1.0.mum
pool: 0xffff94896033c180 | file object: 0xffff94896033c200 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~ko-kr~1.0.mum
pool: 0xffff94896033c310 | file object: 0xffff94896033c390 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~fr-ca~1.0.mum
pool: 0xffff94896033c4a0 | file object: 0xffff94896033c520 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~hu-hu~1.0.mum
pool: 0xffff94896033c630 | file object: 0xffff94896033c6b0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~ja-jp~1.0.mum
pool: 0xffff94896033c7c0 | file object: 0xffff94896033c840 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~ru-ru~1.0.mum
pool: 0xffff94896033c950 | file object: 0xffff94896033c9d0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~ta-in~1.0.mum
pool: 0xffff94896033cae0 | file object: 0xffff94896033cb60 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~th-th~1.0.mum
pool: 0xffff94896033cc70 | file object: 0xffff94896033ccf0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~nb-no~1.0.mum
pool: 0xffff94896033ce00 | file object: 0xffff94896033ce80 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~tr-tr~1.0.mum
pool: 0xffff94896033d120 | file object: 0xffff94896033d1a0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~fi-fi~1.0.mum
pool: 0xffff94896033d2b0 | file object: 0xffff94896033d330 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~hr-hr~1.0.mum
pool: 0xffff94896033d440 | file object: 0xffff94896033d4c0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~nl-be~1.0.mum
pool: 0xffff94896033d5d0 | file object: 0xffff94896033d650 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~pl-pl~1.0.mum
pool: 0xffff94896033d760 | file object: 0xffff94896033d7e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896033d8f0 | file object: 0xffff94896033d970 | offsetby: 0x80
\$Directory
pool: 0xffff94896033da80 | file object: 0xffff94896033db00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896033dc10 | file object: 0xffff94896033dc90 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~zh-tw~1.0.mum
pool: 0xffff94896033dda0 | file object: 0xffff94896033de20 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~zh-cn~1.0.mum
pool: 0xffff94896033e0c0 | file object: 0xffff94896033e140 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896033e250 | file object: 0xffff94896033e2d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896033e3e0 | file object: 0xffff94896033e460 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896033e570 | file object: 0xffff94896033e5f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Templates.UWP.Project..vstman
pool: 0xffff94896033e700 | file object: 0xffff94896033e780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896033e890 | file object: 0xffff94896033e910 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~zh-hk~1.0.mum
pool: 0xffff94896033ea20 | file object: 0xffff94896033eaa0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Media.MediaFeaturePack~~1.0.mum
pool: 0xffff94896033ebb0 | file object: 0xffff94896033ec30 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Microsoft.AdminTools~~1.0.mum
pool: 0xffff94896033ed40 | file object: 0xffff94896033edc0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\41d27070cf1ed70ea393a0cb04c46b58\WindowsBase.ni.dll.aux
pool: 0xffff94896033f060 | file object: 0xffff94896033f0e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896033f1f0 | file object: 0xffff94896033f270 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896033f380 | file object: 0xffff94896033f400 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Language.TextToSpeech~vi-vn~1.0.mum
pool: 0xffff94896033f510 | file object: 0xffff94896033f590 | offsetby: 0x80
\Windows\Prefetch\DLLHOST.EXE-570206E5.pf
pool: 0xffff94896033f6a0 | file object: 0xffff94896033f720 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896033f830 | file object: 0xffff94896033f8b0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\MathRecognizer~~1.0.mum
pool: 0xffff94896033f9c0 | file object: 0xffff94896033fa40 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node
pool: 0xffff94896033fb50 | file object: 0xffff94896033fbd0 | offsetby: 0x80
\$Directory
pool: 0xffff94896033fce0 | file object: 0xffff94896033fd60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896033fe70 | file object: 0xffff94896033fef0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960340000 | file object: 0xffff948960340080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960340190 | file object: 0xffff948960340210 | offsetby: 0x80
\Windows\System32\Win32_DeviceGuard.dll
pool: 0xffff948960340320 | file object: 0xffff9489603403a0 | offsetby: 0x80
\Windows\System32\wmitomi.dll
pool: 0xffff9489603404b0 | file object: 0xffff948960340530 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960340640 | file object: 0xffff9489603406c0 | offsetby: 0x80
\Windows\servicing\InboxFodMetadataCache\metadata\Media.WindowsMediaPlayer~~12.0.mum
pool: 0xffff9489603407d0 | file object: 0xffff948960340850 | offsetby: 0x80
\$Directory
pool: 0xffff948960340960 | file object: 0xffff9489603409e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960340af0 | file object: 0xffff948960340b70 | offsetby: 0x80
\$Directory
pool: 0xffff948960340c80 | file object: 0xffff948960340d00 | offsetby: 0x80
\Windows\System32\mfcsubs.dll
pool: 0xffff948960340e10 | file object: 0xffff948960340e90 | offsetby: 0x80
\Windows\System32\wimgapi.dll
pool: 0xffff948960341130 | file object: 0xffff9489603411b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603412c0 | file object: 0xffff948960341340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960341450 | file object: 0xffff9489603414d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603415e0 | file object: 0xffff948960341660 | offsetby: 0x80
\Windows\SysWOW64\amsi.dll
pool: 0xffff948960341770 | file object: 0xffff9489603417f0 | offsetby: 0x80
\Windows\System32\printui.dll
pool: 0xffff948960341900 | file object: 0xffff948960341980 | offsetby: 0x80
\Windows\SysWOW64\pcacli.dll
pool: 0xffff948960341a90 | file object: 0xffff948960341b10 | offsetby: 0x80
\Windows\System32\FXSRESM.dll
pool: 0xffff948960341c20 | file object: 0xffff948960341ca0 | offsetby: 0x80
㻽쳹峈迮舎￿&䙻㤸㥅㕅ⴸ䑂䘲㐭〰ⴸ䄹㉃〭㡆
pool: 0xffff948960341db0 | file object: 0xffff948960341e30 | offsetby: 0x80
\Windows\Fonts\YuGothR.ttc
pool: 0xffff948960384160 | file object: 0xffff9489603841e0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\wpfgfx_v0400.dll
pool: 0xffff9489603842f0 | file object: 0xffff948960384370 | offsetby: 0x80
\Windows\SysWOW64\msvcp140_clr0400.dll
pool: 0xffff948960384480 | file object: 0xffff948960384500 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PresentationNative_v0400.dll
pool: 0xffff948960384610 | file object: 0xffff948960384690 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.InteropServices.WindowsRuntime\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.InteropServices.WindowsRuntime.dll
pool: 0xffff9489603847a0 | file object: 0xffff948960384820 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Management\e40e5dfbda2461704b289f4dd7c99033\System.Management.ni.dll
pool: 0xffff948960384930 | file object: 0xffff9489603849b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960384ac0 | file object: 0xffff948960384b40 | offsetby: 0x80
\Windows\SysWOW64\winnlsres.dll
pool: 0xffff948960384c50 | file object: 0xffff948960384cd0 | offsetby: 0x80
\Windows\SoftwareDistribution\DataStore\Logs\edb00048.l
pool: 0xffff948960384de0 | file object: 0xffff948960384e60 | offsetby: 0x80
\Windows\System32\ProductEnumerator.dll
pool: 0xffff948960385100 | file object: 0xffff948960385180 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-AppxPackaging%4Operational.evtx
pool: 0xffff948960385290 | file object: 0xffff948960385310 | offsetby: 0x80
\$Directory
pool: 0xffff948960385420 | file object: 0xffff9489603854a0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-PowerShell%4Admin.evtx
pool: 0xffff9489603855b0 | file object: 0xffff948960385630 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Presentatio5ae0f00f#\1394cc86c689922cc9f80982f30c7bda\PresentationFramework.ni.dll
pool: 0xffff948960385740 | file object: 0xffff9489603857c0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-71cf38c0400eddd2762e6da38d0180a1.code
pool: 0xffff9489603858d0 | file object: 0xffff948960385950 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Constants-1d3f172eaf0fd0f95b801148312f6c11.code
pool: 0xffff948960385a60 | file object: 0xffff948960385ae0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_48.db
pool: 0xffff948960385bf0 | file object: 0xffff948960385c70 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\44484F63B38672F0A62CA1B7AD97BBD3
pool: 0xffff948960385d80 | file object: 0xffff948960385e00 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\37f0ebe291a71c4e67858a44ab445295\PresentationCore.ni.dll
pool: 0xffff9489603860a0 | file object: 0xffff948960386120 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.dll
pool: 0xffff948960386230 | file object: 0xffff9489603862b0 | offsetby: 0x80
\Windows\System32\chartv.dll
pool: 0xffff9489603863c0 | file object: 0xffff948960386440 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960386550 | file object: 0xffff9489603865d0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\WindowsBase\41d27070cf1ed70ea393a0cb04c46b58\WindowsBase.ni.dll
pool: 0xffff9489603866e0 | file object: 0xffff948960386760 | offsetby: 0x80
\$Directory
pool: 0xffff948960386870 | file object: 0xffff9489603868f0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Management.Infrastructure\v4.0_1.0.0.0__31bf3856ad364e35\Microsoft.Management.Infrastructure.dll
pool: 0xffff948960386a00 | file object: 0xffff948960386a80 | offsetby: 0x80
\Windows\SysWOW64\tzres.dll
pool: 0xffff948960386b90 | file object: 0xffff948960386c10 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\promise-030daf43ab3c467a829ef9a14df6816b.code
pool: 0xffff948960386d20 | file object: 0xffff948960386da0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-0a944d5d929c14947b96c8c88d779089.code
pool: 0xffff948960387040 | file object: 0xffff9489603870c0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\PresentationCore\37f0ebe291a71c4e67858a44ab445295\PresentationCore.ni.dll.aux
pool: 0xffff9489603871d0 | file object: 0xffff948960387250 | offsetby: 0x80
\Windows\System32\en-US\domgmt.dll.mui
pool: 0xffff948960387360 | file object: 0xffff9489603873e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Base-31d3ae193ff5dee9638d2be25f45bec4.code
pool: 0xffff9489603874f0 | file object: 0xffff948960387570 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Cache\data_0
pool: 0xffff948960387680 | file object: 0xffff948960387700 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Cache\data_0
pool: 0xffff948960387810 | file object: 0xffff948960387890 | offsetby: 0x80
\Windows\SysWOW64\dusmapi.dll
pool: 0xffff9489603879a0 | file object: 0xffff948960387a20 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\ContextTagKeys-f8bc121811aa319ca943138e66a7dd05.code
pool: 0xffff948960387b30 | file object: 0xffff948960387bb0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Data-b75241b2561965d43c0d15f70d83da6e.code
pool: 0xffff948960387cc0 | file object: 0xffff948960387d40 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Cache\data_2
pool: 0xffff948960387e50 | file object: 0xffff948960387ed0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960388170 | file object: 0xffff9489603881f0 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.Networking.winmd
pool: 0xffff948960388300 | file object: 0xffff948960388380 | offsetby: 0x80
\Windows\System32\AppxProvisioning.xml
pool: 0xffff948960388490 | file object: 0xffff948960388510 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\OneDrive\logs\Personal\StandaloneUpdater-2020-06-04.0625.5652.1.odlgz
pool: 0xffff948960388620 | file object: 0xffff9489603886a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603887b0 | file object: 0xffff948960388830 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960388940 | file object: 0xffff9489603889c0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Cache\index
pool: 0xffff948960388ad0 | file object: 0xffff948960388b50 | offsetby: 0x80
\Windows\System32\en-US\msxml6r.dll.mui
pool: 0xffff948960388c60 | file object: 0xffff948960388ce0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Cache\data_1
pool: 0xffff948960388df0 | file object: 0xffff948960388e70 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Domain-e192d21d21dfd5004080f632237d428d.code
pool: 0xffff948960389110 | file object: 0xffff948960389190 | offsetby: 0x80
\Windows\SysWOW64\Windows.ApplicationModel.dll
pool: 0xffff9489603892a0 | file object: 0xffff948960389320 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-c44507c16320a9af3deee059b092dc36.code
pool: 0xffff948960389430 | file object: 0xffff9489603894b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\debug-a914092360cd4b100d79f1a250555beb.code
pool: 0xffff9489603895c0 | file object: 0xffff948960389640 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\AvailabilityData-b61c2131e16b2d57015d0e4f6aa2908f.code
pool: 0xffff948960389750 | file object: 0xffff9489603897d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603898e0 | file object: 0xffff948960389960 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Cache\index
pool: 0xffff948960389a70 | file object: 0xffff948960389af0 | offsetby: 0x80
\Windows\System32\AppXApplicabilityBlob.dll
pool: 0xffff948960389c00 | file object: 0xffff948960389c80 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\node-a0d0deac9c61ce684a85a6e4e381729f.code
pool: 0xffff948960389d90 | file object: 0xffff948960389e10 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Cache\data_1
pool: 0xffff94896038a0b0 | file object: 0xffff94896038a130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896038a240 | file object: 0xffff94896038a2c0 | offsetby: 0x80
\Windows\System32\AppxApplicabilityEngine.dll
pool: 0xffff94896038a3d0 | file object: 0xffff94896038a450 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-8d250dca4d36508ca73e9c43bef2875e.code
pool: 0xffff94896038a560 | file object: 0xffff94896038a5e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\EventData-41658fa007b4d2c092534a9cf6f333b6.code
pool: 0xffff94896038a6f0 | file object: 0xffff94896038a770 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896038a880 | file object: 0xffff94896038a900 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896038aa10 | file object: 0xffff94896038aa90 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\common-9c8c64cd191484be6977fd1f07fccae1.code
pool: 0xffff94896038aba0 | file object: 0xffff94896038ac20 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-4ffa9f19e671006a894f4f84851f55a9.code
pool: 0xffff94896038ad30 | file object: 0xffff94896038adb0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\ExceptionData-46c39a272b953201b0895dde9dece642.code
pool: 0xffff94896038b050 | file object: 0xffff94896038b0d0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Cache\data_2
pool: 0xffff94896038b1e0 | file object: 0xffff94896038b260 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\DataPointType-d996c3fa131dfab0d165d5b22372e148.code
pool: 0xffff94896038b370 | file object: 0xffff94896038b3f0 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-5AAAB524.pf
pool: 0xffff94896038b500 | file object: 0xffff94896038b580 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-33eac7e1f6ef790ede89c9157fd47a7a.code
pool: 0xffff94896038b690 | file object: 0xffff94896038b710 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-0020be2c5d3c1da831a5aeb43c0d8640.code
pool: 0xffff94896038b820 | file object: 0xffff94896038b8a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896038b9b0 | file object: 0xffff94896038ba30 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\ExceptionDetails-0ab8fa4d8d0d22a939d2d76806d2b534.code
pool: 0xffff94896038bb40 | file object: 0xffff94896038bbc0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\MessageData-3802a37bceb4718e3ee7b129f5824690.code
pool: 0xffff94896038bcd0 | file object: 0xffff94896038bd50 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-daebc12028dfd51be9ff2707ed1d12a6.code
pool: 0xffff94896038be60 | file object: 0xffff94896038bee0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\RemoteDependencyData-3a2396b997d558b9422c496664e0579f.code
pool: 0xffff94896038c180 | file object: 0xffff94896038c200 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\patch-core-a588867c34085bc102e7d8434d9ba488.code
pool: 0xffff94896038c310 | file object: 0xffff94896038c390 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\MetricData-9ef0275c51351e128d831c05ea022520.code
pool: 0xffff94896038c4a0 | file object: 0xffff94896038c520 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Cache\data_3
pool: 0xffff94896038c630 | file object: 0xffff94896038c6b0 | offsetby: 0x80
\Windows\SysWOW64\npmproxy.dll
pool: 0xffff94896038c7c0 | file object: 0xffff94896038c840 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Envelope-47509c3f73bf3a7dcadbd8ac79d57233.code
pool: 0xffff94896038c950 | file object: 0xffff94896038c9d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896038cae0 | file object: 0xffff94896038cb60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Vsix\Microsoft.VisualStudio.Data.Tools.SqlCLRIntellisenseHostingEngine.pkgdef
pool: 0xffff94896038cc70 | file object: 0xffff94896038ccf0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\DataPoint-2dca9d87c09bfb31ca382394bf1147f9.code
pool: 0xffff94896038ce00 | file object: 0xffff94896038ce80 | offsetby: 0x80
\$Directory
pool: 0xffff94896038d120 | file object: 0xffff94896038d1a0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-95871d36abc6cb7316ef593ccec81bb1.code
pool: 0xffff94896038d2b0 | file object: 0xffff94896038d330 | offsetby: 0x80
\$Directory
pool: 0xffff94896038d440 | file object: 0xffff94896038d4c0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Cache\data_3
pool: 0xffff94896038d5d0 | file object: 0xffff94896038d650 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\node-cc3d1f15684cdcadc44a59eed01b83c2.code
pool: 0xffff94896038d760 | file object: 0xffff94896038d7e0 | offsetby: 0x80
\Windows\System32\pcaevts.dll
pool: 0xffff94896038d8f0 | file object: 0xffff94896038d970 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\RequestData-0bdb37369a4dd3528c48b1d616876645.code
pool: 0xffff94896038da80 | file object: 0xffff94896038db00 | offsetby: 0x80
\Windows\System32\fsquirt.exe
pool: 0xffff94896038dc10 | file object: 0xffff94896038dc90 | offsetby: 0x80
\Windows\System32\sendmail.dll
pool: 0xffff94896038dda0 | file object: 0xffff94896038de20 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-5ACAA551.pf
pool: 0xffff94896038e0c0 | file object: 0xffff94896038e140 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896038e250 | file object: 0xffff94896038e2d0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-2837d939e3ec27c7b38fb7ca6dd108ad.code
pool: 0xffff94896038e3e0 | file object: 0xffff94896038e460 | offsetby: 0x80
\Windows\System32\WFSR.dll
pool: 0xffff94896038e570 | file object: 0xffff94896038e5f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896038e700 | file object: 0xffff94896038e780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896038e890 | file object: 0xffff94896038e910 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Vsix\Microsoft.VisualStudio.Data.Tools.SqlObjectExplorer.pkgdef
pool: 0xffff94896038ea20 | file object: 0xffff94896038eaa0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Vsix\Microsoft.VisualStudio.Data.Tools.SQLPDWExtensions.pkgdef
pool: 0xffff94896038ebb0 | file object: 0xffff94896038ec30 | offsetby: 0x80
\$Directory
pool: 0xffff94896038ed40 | file object: 0xffff94896038edc0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-Program-Compatibility-Assistant%4CompatAfterUpgrade.evtx
pool: 0xffff94896038f060 | file object: 0xffff94896038f0e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\SeverityLevel-0ca557913f5f851f35d5f69ac1c8b890.code
pool: 0xffff94896038f1f0 | file object: 0xffff94896038f270 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff94896038f380 | file object: 0xffff94896038f400 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLEditor\Vsix\Microsoft.VisualStudio.Data.Tools.SqlDebugger.pkgdef
pool: 0xffff94896038f510 | file object: 0xffff94896038f590 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-ca4ba0053a1d1cb911a498c9e38b6733.code
pool: 0xffff94896038f6a0 | file object: 0xffff94896038f720 | offsetby: 0x80
\Windows\System32\apisampling.dll
pool: 0xffff94896038f830 | file object: 0xffff94896038f8b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896038f9c0 | file object: 0xffff94896038fa40 | offsetby: 0x80
\Windows\System32\pcadm.dll
pool: 0xffff94896038fb50 | file object: 0xffff94896038fbd0 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff94896038fce0 | file object: 0xffff94896038fd60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896038fe70 | file object: 0xffff94896038fef0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960390000 | file object: 0xffff948960390080 | offsetby: 0x80
\Windows\System32\mydocs.dll
pool: 0xffff948960390190 | file object: 0xffff948960390210 | offsetby: 0x80
\Windows\System32\apisampling.dll
pool: 0xffff948960390320 | file object: 0xffff9489603903a0 | offsetby: 0x80
\Windows\System32\pcacli.dll
pool: 0xffff9489603904b0 | file object: 0xffff948960390530 | offsetby: 0x80
\Windows\SoftwareDistribution\DataStore\Logs\edb.loglog
pool: 0xffff948960390640 | file object: 0xffff9489603906c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489603907d0 | file object: 0xffff948960390850 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960390960 | file object: 0xffff9489603909e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\StackFrame-60d885482fd50c360a40785557ecdc5c.code
pool: 0xffff948960390af0 | file object: 0xffff948960390b70 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\EDC238BFF48A31D55A97E1E93892934B_C20E0DA2D0F89FE526E1490F4A2EE5AB
pool: 0xffff948960390c80 | file object: 0xffff948960390d00 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Newtonsoft.Json\79575eb34b7c2af676d17dabc88187ca\Newtonsoft.Json.ni.dll.aux
pool: 0xffff948960390e10 | file object: 0xffff948960390e90 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-913f4b285411d441ab9dce2f25b03c2a.code
pool: 0xffff948960391130 | file object: 0xffff9489603911b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489603912c0 | file object: 0xffff948960391340 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\TelemetryType-18df109b7fa685c95ce818fa03baa188.code
pool: 0xffff948960391450 | file object: 0xffff9489603914d0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.Security\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Security.dll
pool: 0xffff9489603915e0 | file object: 0xffff948960391660 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\socksclient-5a328ffa0ebe7171470b6bd8f341fdae.code
pool: 0xffff948960391770 | file object: 0xffff9489603917f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960391900 | file object: 0xffff948960391980 | offsetby: 0x80
\$Directory
pool: 0xffff948960391a90 | file object: 0xffff948960391b10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960391c20 | file object: 0xffff948960391ca0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960391db0 | file object: 0xffff948960391e30 | offsetby: 0x80
\$Directory
pool: 0xffff9489603920d0 | file object: 0xffff948960392150 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Machine.srd
pool: 0xffff948960392260 | file object: 0xffff9489603922e0 | offsetby: 0x80
\Windows\Fonts\seguiemj.ttf
pool: 0xffff9489603923f0 | file object: 0xffff948960392470 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Transactions\e73720f27017195d342aff407d9504ef\System.Transactions.ni.dll
pool: 0xffff948960392580 | file object: 0xffff948960392600 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Machine.srd-wal
pool: 0xffff948960392710 | file object: 0xffff948960392790 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\NodeClient-f2b6e6f39a60f76ad7de7be3c75f84ef.code
pool: 0xffff9489603928a0 | file object: 0xffff948960392920 | offsetby: 0x80
\$Directory
pool: 0xffff948960392a30 | file object: 0xffff948960392ab0 | offsetby: 0x80
\$Directory
pool: 0xffff948960392bc0 | file object: 0xffff948960392c40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960392d50 | file object: 0xffff948960392dd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960393070 | file object: 0xffff9489603930f0 | offsetby: 0x80
\Windows\System32\msctfui.dll
pool: 0xffff948960393200 | file object: 0xffff948960393280 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960393390 | file object: 0xffff948960393410 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\ip-b9b497e3bb6199646a2d99b2e0797837.code
pool: 0xffff948960393520 | file object: 0xffff9489603935a0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\608b1a4f3a44025433437f6d8c52edc2\System.Windows.Forms.ni.dll
pool: 0xffff9489603936b0 | file object: 0xffff948960393730 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960393840 | file object: 0xffff9489603938c0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\util-102a33c22221419457cc79d65420e246.code
pool: 0xffff9489603939d0 | file object: 0xffff948960393a50 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\TelemetryClient-e3be253c28781a71f5f7c878944de150.code
pool: 0xffff948960393b60 | file object: 0xffff948960393be0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960393cf0 | file object: 0xffff948960393d70 | offsetby: 0x80
\Windows\apppatch\pcamain.sdb
pool: 0xffff948960394010 | file object: 0xffff948960394090 | offsetby: 0x80
\Windows\System32\gamestreamingext.dll
pool: 0xffff9489603941a0 | file object: 0xffff948960394220 | offsetby: 0x80
\$Directory
pool: 0xffff948960394330 | file object: 0xffff9489603943b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\vs_installer.exe
pool: 0xffff9489603944c0 | file object: 0xffff948960394540 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_64\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
pool: 0xffff948960394650 | file object: 0xffff9489603946d0 | offsetby: 0x80
\Windows\System32\msvcp140_clr0400.dll
pool: 0xffff9489603947e0 | file object: 0xffff948960394860 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960394970 | file object: 0xffff9489603949f0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_64\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
pool: 0xffff948960394b00 | file object: 0xffff948960394b80 | offsetby: 0x80
\Windows\System32\IconCodecService.dll
pool: 0xffff948960394c90 | file object: 0xffff948960394d10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960394e20 | file object: 0xffff948960394ea0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MpClient.dll
pool: 0xffff948960395140 | file object: 0xffff9489603951c0 | offsetby: 0x80
\Users\User\Downloads
pool: 0xffff9489603952d0 | file object: 0xffff948960395350 | offsetby: 0x80
\Windows\System32\Windows.UI.AppDefaults.dll
pool: 0xffff948960395460 | file object: 0xffff9489603954e0 | offsetby: 0x80
\Users\User\Downloads
pool: 0xffff9489603955f0 | file object: 0xffff948960395670 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960395780 | file object: 0xffff948960395800 | offsetby: 0x80
\Users\User\OneDrive
pool: 0xffff948960395910 | file object: 0xffff948960395990 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960395aa0 | file object: 0xffff948960395b20 | offsetby: 0x80
\Windows\System32\msimg32.dll
pool: 0xffff948960395c30 | file object: 0xffff948960395cb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960395dc0 | file object: 0xffff948960395e40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603960e0 | file object: 0xffff948960396160 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\Packages\Microsoft.Windows.ShellExperienceHost_10.0.18362.449_neutral_neutral_cw5n1h2txyewy\S-1-5-21-3234566417-3121902272-2793192418-1001.pckgdep
pool: 0xffff948960396270 | file object: 0xffff9489603962f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960396400 | file object: 0xffff948960396480 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_2863B8DFBF96CBD14BC361AA15F6AAB6
pool: 0xffff948960396590 | file object: 0xffff948960396610 | offsetby: 0x80
\Windows\System32\PlayToDevice.dll
pool: 0xffff948960396720 | file object: 0xffff9489603967a0 | offsetby: 0x80
\Windows\System32\InkObjCore.dll
pool: 0xffff9489603968b0 | file object: 0xffff948960396930 | offsetby: 0x80
\Windows\System32\EhStorAPI.dll
pool: 0xffff948960396a40 | file object: 0xffff948960396ac0 | offsetby: 0x80
\Windows\System32\en-US\ole32.dll.mui
pool: 0xffff948960396bd0 | file object: 0xffff948960396c50 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.edb
pool: 0xffff948960396d60 | file object: 0xffff948960396de0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\CFE86DBBE02D859DC92F1E17E0574EE8_46766FC45507C0B9E264E4C18BC7288B
pool: 0xffff948960397080 | file object: 0xffff948960397100 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\edbtmp.jtx
pool: 0xffff948960397210 | file object: 0xffff948960397290 | offsetby: 0x80
\$Directory
pool: 0xffff9489603973a0 | file object: 0xffff948960397420 | offsetby: 0x80
\Windows\System32\MsSpellCheckingFacility.dll
pool: 0xffff948960397530 | file object: 0xffff9489603975b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603976c0 | file object: 0xffff948960397740 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\EDC238BFF48A31D55A97E1E93892934B_C20E0DA2D0F89FE526E1490F4A2EE5AB
pool: 0xffff948960397850 | file object: 0xffff9489603978d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_BEB37ABADF39714871232B4792417E04
pool: 0xffff9489603979e0 | file object: 0xffff948960397a60 | offsetby: 0x80
\Windows\Fonts\micross.ttf
pool: 0xffff948960397b70 | file object: 0xffff948960397bf0 | offsetby: 0x80
\$Directory
pool: 0xffff948960397d00 | file object: 0xffff948960397d80 | offsetby: 0x80
\$Directory
pool: 0xffff948960398020 | file object: 0xffff9489603980a0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Sender-2876931e7a159649f06d97cf32068ee2.code
pool: 0xffff9489603981b0 | file object: 0xffff948960398230 | offsetby: 0x80
\ProgramData\Microsoft Visual Studio\MachineStorage.dat
pool: 0xffff948960398340 | file object: 0xffff9489603983c0 | offsetby: 0x80
\Windows\Globalization\Time Zone\timezones.xml
pool: 0xffff9489603984d0 | file object: 0xffff948960398550 | offsetby: 0x80
\$Directory
pool: 0xffff948960398660 | file object: 0xffff9489603986e0 | offsetby: 0x80
\Windows\System32\Windows.AI.MachineLearning.dll
pool: 0xffff9489603987f0 | file object: 0xffff948960398870 | offsetby: 0x80
\Windows\System32\Windows.Internal.PredictionUnit.dll
pool: 0xffff948960398980 | file object: 0xffff948960398a00 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WinDbg_1.2001.2001.0_neutral__8wekyb3d8bbwe\amd64\dbgeng.dll
pool: 0xffff948960398b10 | file object: 0xffff948960398b90 | offsetby: 0x80
\Windows\System32\Windows.Storage.Compression.dll
pool: 0xffff948960398ca0 | file object: 0xffff948960398d20 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\receivebuffer-2e96f262f30bc9e948710e5e8dbf8111.code
pool: 0xffff948960398e30 | file object: 0xffff948960398eb0 | offsetby: 0x80
\Windows\Globalization\Time Zone\timezoneMapping.xml
pool: 0xffff948960399150 | file object: 0xffff9489603991d0 | offsetby: 0x80
\Users\User\Desktop\SysinternalsSuite\Dbgview.exe
pool: 0xffff9489603992e0 | file object: 0xffff948960399360 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\wpfgfx_v0400.dll
pool: 0xffff948960399470 | file object: 0xffff9489603994f0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203
pool: 0xffff948960399600 | file object: 0xffff948960399680 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_BEB37ABADF39714871232B4792417E04
pool: 0xffff948960399790 | file object: 0xffff948960399810 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\pug\package.nls.json
pool: 0xffff948960399920 | file object: 0xffff9489603999a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203
pool: 0xffff948960399ab0 | file object: 0xffff948960399b30 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_88614FFAD35D353421B8A7E1FE18FCE4
pool: 0xffff948960399c40 | file object: 0xffff948960399cc0 | offsetby: 0x80
\Windows\Fonts\tahomabd.ttf
pool: 0xffff948960399dd0 | file object: 0xffff948960399e50 | offsetby: 0x80
\Users\User\OneDrive
pool: 0xffff94896039a0f0 | file object: 0xffff94896039a170 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\53ae5f55bdb521c15d5cc4f789fb3950\System.Drawing.ni.dll
pool: 0xffff94896039a280 | file object: 0xffff94896039a300 | offsetby: 0x80
\$Directory
pool: 0xffff94896039a410 | file object: 0xffff94896039a490 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WinDbg_1.2001.2001.0_neutral__8wekyb3d8bbwe\amd64\srcsrv.dll
pool: 0xffff94896039a5a0 | file object: 0xffff94896039a620 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203
pool: 0xffff94896039a730 | file object: 0xffff94896039a7b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\SamplingTelemetryProcessor-112568beac58715eae8c7b6442bce72f.code
pool: 0xffff94896039a8c0 | file object: 0xffff94896039a940 | offsetby: 0x80
\Windows\hh.exe
pool: 0xffff94896039aa50 | file object: 0xffff94896039aad0 | offsetby: 0x80
\$Directory
pool: 0xffff94896039abe0 | file object: 0xffff94896039ac60 | offsetby: 0x80
\$Directory
pool: 0xffff94896039ad70 | file object: 0xffff94896039adf0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_88614FFAD35D353421B8A7E1FE18FCE4
pool: 0xffff94896039b090 | file object: 0xffff94896039b110 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-30d4f82ef8982f2fb415d3fdd5ee23a1.code
pool: 0xffff94896039b220 | file object: 0xffff94896039b2a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896039b3b0 | file object: 0xffff94896039b430 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Burn
pool: 0xffff94896039b540 | file object: 0xffff94896039b5c0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\Presentatio5ae0f00f#\4abe2047e7a3f0e33459880ba5b95e3a\PresentationFramework.ni.dll
pool: 0xffff94896039b6d0 | file object: 0xffff94896039b750 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\53ae5f55bdb521c15d5cc4f789fb3950\System.Drawing.ni.dll.aux
pool: 0xffff94896039b860 | file object: 0xffff94896039b8e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039b9f0 | file object: 0xffff94896039ba70 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WinDbg_1.2001.2001.0_neutral__8wekyb3d8bbwe\amd64\DbgModel.dll
pool: 0xffff94896039bb80 | file object: 0xffff94896039bc00 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_D9817BD5013875AD517DA73475345203
pool: 0xffff94896039bd10 | file object: 0xffff94896039bd90 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\PresentationCore\f80cf74f6d7c21b493fbce27230bd83b\PresentationCore.ni.dll
pool: 0xffff94896039c030 | file object: 0xffff94896039c0b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-3b6e4b324b51478866dead372bed9c52.code
pool: 0xffff94896039c1c0 | file object: 0xffff94896039c240 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
pool: 0xffff94896039c350 | file object: 0xffff94896039c3d0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WinDbg_1.2001.2001.0_neutral__8wekyb3d8bbwe\amd64\dbghelp.dll
pool: 0xffff94896039c4e0 | file object: 0xffff94896039c560 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\MSIMGSIZ.DAT
pool: 0xffff94896039c670 | file object: 0xffff94896039c6f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039c800 | file object: 0xffff94896039c880 | offsetby: 0x80
\Windows\Fonts\pala.ttf
pool: 0xffff94896039c990 | file object: 0xffff94896039ca10 | offsetby: 0x80
\Windows\System32\MpSigStub.exe
pool: 0xffff94896039cb20 | file object: 0xffff94896039cba0 | offsetby: 0x80
\Windows\System32\icm32.dll
pool: 0xffff94896039ccb0 | file object: 0xffff94896039cd30 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\WindowsBase\4b1919317b8017e84ec44122b5b51adf\WindowsBase.ni.dll
pool: 0xffff94896039ce40 | file object: 0xffff94896039cec0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039d160 | file object: 0xffff94896039d1e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039d2f0 | file object: 0xffff94896039d370 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\CFE86DBBE02D859DC92F1E17E0574EE8_46766FC45507C0B9E264E4C18BC7288B
pool: 0xffff94896039d480 | file object: 0xffff94896039d500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039d610 | file object: 0xffff94896039d690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039d7a0 | file object: 0xffff94896039d820 | offsetby: 0x80
\$Directory
pool: 0xffff94896039d930 | file object: 0xffff94896039d9b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039dac0 | file object: 0xffff94896039db40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039dc50 | file object: 0xffff94896039dcd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039dde0 | file object: 0xffff94896039de60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039e100 | file object: 0xffff94896039e180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039e290 | file object: 0xffff94896039e310 | offsetby: 0x80
\$Directory
pool: 0xffff94896039e420 | file object: 0xffff94896039e4a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896039e5b0 | file object: 0xffff94896039e630 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039e740 | file object: 0xffff94896039e7c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039e8d0 | file object: 0xffff94896039e950 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039ea60 | file object: 0xffff94896039eae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039ebf0 | file object: 0xffff94896039ec70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039ed80 | file object: 0xffff94896039ee00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039f0a0 | file object: 0xffff94896039f120 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039f230 | file object: 0xffff94896039f2b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896039f3c0 | file object: 0xffff94896039f440 | offsetby: 0x80
\$Directory
pool: 0xffff94896039f550 | file object: 0xffff94896039f5d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896039f6e0 | file object: 0xffff94896039f760 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039f870 | file object: 0xffff94896039f8f0 | offsetby: 0x80
\$Directory
pool: 0xffff94896039fa00 | file object: 0xffff94896039fa80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039fb90 | file object: 0xffff94896039fc10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896039fd20 | file object: 0xffff94896039fda0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a0040 | file object: 0xffff9489603a00c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a01d0 | file object: 0xffff9489603a0250 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a0360 | file object: 0xffff9489603a03e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a04f0 | file object: 0xffff9489603a0570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a0680 | file object: 0xffff9489603a0700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a0810 | file object: 0xffff9489603a0890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a09a0 | file object: 0xffff9489603a0a20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a0b30 | file object: 0xffff9489603a0bb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a0cc0 | file object: 0xffff9489603a0d40 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a0e50 | file object: 0xffff9489603a0ed0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a1170 | file object: 0xffff9489603a11f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a1300 | file object: 0xffff9489603a1380 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a1490 | file object: 0xffff9489603a1510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a1620 | file object: 0xffff9489603a16a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a17b0 | file object: 0xffff9489603a1830 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a1940 | file object: 0xffff9489603a19c0 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha\src\bin\file_object_scan.rs
pool: 0xffff9489603a1ad0 | file object: 0xffff9489603a1b50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a1c60 | file object: 0xffff9489603a1ce0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a1df0 | file object: 0xffff9489603a1e70 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a2110 | file object: 0xffff9489603a2190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a22a0 | file object: 0xffff9489603a2320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a2430 | file object: 0xffff9489603a24b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a25c0 | file object: 0xffff9489603a2640 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a2750 | file object: 0xffff9489603a27d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a28e0 | file object: 0xffff9489603a2960 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a2a70 | file object: 0xffff9489603a2af0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a2c00 | file object: 0xffff9489603a2c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a2d90 | file object: 0xffff9489603a2e10 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a30b0 | file object: 0xffff9489603a3130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a3240 | file object: 0xffff9489603a32c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a33d0 | file object: 0xffff9489603a3450 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a3560 | file object: 0xffff9489603a35e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a36f0 | file object: 0xffff9489603a3770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a3880 | file object: 0xffff9489603a3900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a3a10 | file object: 0xffff9489603a3a90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a3ba0 | file object: 0xffff9489603a3c20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a3d30 | file object: 0xffff9489603a3db0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a4050 | file object: 0xffff9489603a40d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a41e0 | file object: 0xffff9489603a4260 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-c85b06128a46b083c522410b74b79dcf.code
pool: 0xffff9489603a4370 | file object: 0xffff9489603a43f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a4500 | file object: 0xffff9489603a4580 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a4690 | file object: 0xffff9489603a4710 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a4820 | file object: 0xffff9489603a48a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a49b0 | file object: 0xffff9489603a4a30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a4b40 | file object: 0xffff9489603a4bc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a4cd0 | file object: 0xffff9489603a4d50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a4e60 | file object: 0xffff9489603a4ee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a5180 | file object: 0xffff9489603a5200 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a5310 | file object: 0xffff9489603a5390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a54a0 | file object: 0xffff9489603a5520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a5630 | file object: 0xffff9489603a56b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a57c0 | file object: 0xffff9489603a5840 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a5950 | file object: 0xffff9489603a59d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a5ae0 | file object: 0xffff9489603a5b60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a5c70 | file object: 0xffff9489603a5cf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a5e00 | file object: 0xffff9489603a5e80 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a6120 | file object: 0xffff9489603a61a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a62b0 | file object: 0xffff9489603a6330 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a6440 | file object: 0xffff9489603a64c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a65d0 | file object: 0xffff9489603a6650 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a6760 | file object: 0xffff9489603a67e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a68f0 | file object: 0xffff9489603a6970 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a6a80 | file object: 0xffff9489603a6b00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a6c10 | file object: 0xffff9489603a6c90 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a6da0 | file object: 0xffff9489603a6e20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a70c0 | file object: 0xffff9489603a7140 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a7250 | file object: 0xffff9489603a72d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a73e0 | file object: 0xffff9489603a7460 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a7570 | file object: 0xffff9489603a75f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a7700 | file object: 0xffff9489603a7780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a7890 | file object: 0xffff9489603a7910 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a7a20 | file object: 0xffff9489603a7aa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a7bb0 | file object: 0xffff9489603a7c30 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a7d40 | file object: 0xffff9489603a7dc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a8060 | file object: 0xffff9489603a80e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a81f0 | file object: 0xffff9489603a8270 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a8380 | file object: 0xffff9489603a8400 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a8510 | file object: 0xffff9489603a8590 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a86a0 | file object: 0xffff9489603a8720 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a8830 | file object: 0xffff9489603a88b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a89c0 | file object: 0xffff9489603a8a40 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a8b50 | file object: 0xffff9489603a8bd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a8ce0 | file object: 0xffff9489603a8d60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a8e70 | file object: 0xffff9489603a8ef0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a9000 | file object: 0xffff9489603a9080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a9190 | file object: 0xffff9489603a9210 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a9320 | file object: 0xffff9489603a93a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a94b0 | file object: 0xffff9489603a9530 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603a9640 | file object: 0xffff9489603a96c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a97d0 | file object: 0xffff9489603a9850 | offsetby: 0x80
\$Directory
pool: 0xffff9489603a9960 | file object: 0xffff9489603a99e0 | offsetby: 0x80
\Windows\SysWOW64\winspool.drv
pool: 0xffff9489603a9af0 | file object: 0xffff9489603a9b70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489603a9c80 | file object: 0xffff9489603a9d00 | offsetby: 0x80
\Windows\SysWOW64\winsta.dll
pool: 0xffff9489603a9e10 | file object: 0xffff9489603a9e90 | offsetby: 0x80
\Windows\SysWOW64\wshbth.dll
pool: 0xffff9489603aa130 | file object: 0xffff9489603aa1b0 | offsetby: 0x80
\Windows\System32\puiapi.dll
pool: 0xffff9489603aa2c0 | file object: 0xffff9489603aa340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603aa450 | file object: 0xffff9489603aa4d0 | offsetby: 0x80
\Windows\System32\msutb.dll
pool: 0xffff9489603aa5e0 | file object: 0xffff9489603aa660 | offsetby: 0x80
\Windows\System32\EsdSip.dll
pool: 0xffff9489603aa770 | file object: 0xffff9489603aa7f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603aa900 | file object: 0xffff9489603aa980 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\main-2d6c1cc6afa71fd530e607ed4d625d33.code
pool: 0xffff9489603aaa90 | file object: 0xffff9489603aab10 | offsetby: 0x80
\Windows\System32\icsvcext.dll
pool: 0xffff9489603aac20 | file object: 0xffff9489603aaca0 | offsetby: 0x80
\Windows\Fonts\msyh.ttc
pool: 0xffff9489603aadb0 | file object: 0xffff9489603aae30 | offsetby: 0x80
\Windows\System32\Windows.Networking.Vpn.dll
pool: 0xffff9489603ab0d0 | file object: 0xffff9489603ab150 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603ab260 | file object: 0xffff9489603ab2e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603ab3f0 | file object: 0xffff9489603ab470 | offsetby: 0x80
\Windows\System32\rdpudd.dll
pool: 0xffff9489603ab580 | file object: 0xffff9489603ab600 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\native-watchdog\build\Release\watchdog.node
pool: 0xffff9489603ab710 | file object: 0xffff9489603ab790 | offsetby: 0x80
\Windows\System32\PhoneProviders.dll
pool: 0xffff9489603ab8a0 | file object: 0xffff9489603ab920 | offsetby: 0x80
\Windows\SysWOW64\slc.dll
pool: 0xffff9489603aba30 | file object: 0xffff9489603abab0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489603abbc0 | file object: 0xffff9489603abc40 | offsetby: 0x80
\Windows\SysWOW64\winrnr.dll
pool: 0xffff9489603abd50 | file object: 0xffff9489603abdd0 | offsetby: 0x80
\Windows\SysWOW64\hid.dll
pool: 0xffff9489603ac070 | file object: 0xffff9489603ac0f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489603ac200 | file object: 0xffff9489603ac280 | offsetby: 0x80
\Windows\SysWOW64\sppc.dll
pool: 0xffff9489603ac390 | file object: 0xffff9489603ac410 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489603ac520 | file object: 0xffff9489603ac5a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603ac6b0 | file object: 0xffff9489603ac730 | offsetby: 0x80
\Windows\SysWOW64\oleaccrc.dll
pool: 0xffff9489603ac840 | file object: 0xffff9489603ac8c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489603ac9d0 | file object: 0xffff9489603aca50 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Runteb92aa12#\f97adcda88ac3704f93ae736f5e694ca\System.Runtime.Serialization.ni.dll
pool: 0xffff9489603acb60 | file object: 0xffff9489603acbe0 | offsetby: 0x80
\Windows\System32\en-US\UIRibbon.dll.mui
pool: 0xffff9489603accf0 | file object: 0xffff9489603acd70 | offsetby: 0x80
\Windows\SysWOW64\AppResolver.dll
pool: 0xffff9489603ad010 | file object: 0xffff9489603ad090 | offsetby: 0x80
\Windows\System32\FluencyDS.dll
pool: 0xffff9489603ad1a0 | file object: 0xffff9489603ad220 | offsetby: 0x80
\Windows\SysWOW64\wbem\wbemprox.dll
pool: 0xffff9489603ad330 | file object: 0xffff9489603ad3b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\main-998835dffea5b8dd52abadeb300e4655.code
pool: 0xffff9489603ad4c0 | file object: 0xffff9489603ad540 | offsetby: 0x80
\Windows\System32\config\COMPONENTS
pool: 0xffff9489603ad650 | file object: 0xffff9489603ad6d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\npm\package.nls.json
pool: 0xffff9489603ad7e0 | file object: 0xffff9489603ad860 | offsetby: 0x80
\Windows\System32\vmrdvcore.dll
pool: 0xffff9489603ad970 | file object: 0xffff9489603ad9f0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\e4fe9ab197df147b5038d3b237fc4794\System.Xml.Linq.ni.dll
pool: 0xffff9489603adb00 | file object: 0xffff9489603adb80 | offsetby: 0x80
\Windows\SysWOW64\msi.dll
pool: 0xffff9489603adc90 | file object: 0xffff9489603add10 | offsetby: 0x80
\Windows\System32\en-US\msctfui.dll.mui
pool: 0xffff9489603ade20 | file object: 0xffff9489603adea0 | offsetby: 0x80
\Windows\SysWOW64\ExplorerFrame.dll
pool: 0xffff9489603ae140 | file object: 0xffff9489603ae1c0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Burn
pool: 0xffff9489603ae2d0 | file object: 0xffff9489603ae350 | offsetby: 0x80
\Windows\System32\rdpclip.exe
pool: 0xffff9489603ae460 | file object: 0xffff9489603ae4e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603ae5f0 | file object: 0xffff9489603ae670 | offsetby: 0x80
\Windows\System32\rdpendp.dll
pool: 0xffff9489603ae780 | file object: 0xffff9489603ae800 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-b7cd048f6e034ac336220f40ece9d0f8.code
pool: 0xffff9489603ae910 | file object: 0xffff9489603ae990 | offsetby: 0x80
\Windows\System32\PhoneOm.dll
pool: 0xffff9489603aeaa0 | file object: 0xffff9489603aeb20 | offsetby: 0x80
\Windows\System32\wbiosrvc.dll
pool: 0xffff9489603aec30 | file object: 0xffff9489603aecb0 | offsetby: 0x80
\Windows\System32\PhoneService.dll
pool: 0xffff9489603aedc0 | file object: 0xffff9489603aee40 | offsetby: 0x80
\Windows\System32\winbioext.dll
pool: 0xffff9489603af0e0 | file object: 0xffff9489603af160 | offsetby: 0x80
\$Directory
pool: 0xffff9489603af270 | file object: 0xffff9489603af2f0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
pool: 0xffff9489603af400 | file object: 0xffff9489603af480 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
pool: 0xffff9489603af590 | file object: 0xffff9489603af610 | offsetby: 0x80
\Windows\SysWOW64\pnrpnsp.dll
pool: 0xffff9489603af720 | file object: 0xffff9489603af7a0 | offsetby: 0x80
\Windows\SysWOW64\NapiNSP.dll
pool: 0xffff9489603af8b0 | file object: 0xffff9489603af930 | offsetby: 0x80
\Windows\System32\rdsdwmdr.dll
pool: 0xffff9489603afa40 | file object: 0xffff9489603afac0 | offsetby: 0x80
\Users\User\3D Objects\desktop.ini
pool: 0xffff9489603afbd0 | file object: 0xffff9489603afc50 | offsetby: 0x80
\$Directory
pool: 0xffff9489603afd60 | file object: 0xffff9489603afde0 | offsetby: 0x80
\Users\User\Desktop\SysinternalsSuite\Contig.exe
pool: 0xffff9489603b0080 | file object: 0xffff9489603b0100 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu
pool: 0xffff9489603b0210 | file object: 0xffff9489603b0290 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
pool: 0xffff9489603b03a0 | file object: 0xffff9489603b0420 | offsetby: 0x80
\Users\User\Desktop\SysinternalsSuite\diskext.exe
pool: 0xffff9489603b0530 | file object: 0xffff9489603b05b0 | offsetby: 0x80
\Windows\Globalization\ICU\windowsZones.res
pool: 0xffff9489603b06c0 | file object: 0xffff9489603b0740 | offsetby: 0x80
\Windows\Globalization\ICU\zoneinfo64.res
pool: 0xffff9489603b0850 | file object: 0xffff9489603b08d0 | offsetby: 0x80
\Users\User\Desktop\SysinternalsSuite\Desktops.exe
pool: 0xffff9489603b09e0 | file object: 0xffff9489603b0a60 | offsetby: 0x80
\Users\User\Desktop\SysinternalsSuite\disk2vhd.exe
pool: 0xffff9489603b0b70 | file object: 0xffff9489603b0bf0 | offsetby: 0x80
\Users\User\Desktop\SysinternalsSuite\CPUSTRES.EXE
pool: 0xffff9489603b0d00 | file object: 0xffff9489603b0d80 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml.Linq\e4fe9ab197df147b5038d3b237fc4794\System.Xml.Linq.ni.dll.aux
pool: 0xffff9489603b1020 | file object: 0xffff9489603b10a0 | offsetby: 0x80
\Windows\SysWOW64\WindowsCodecsExt.dll
pool: 0xffff9489603b11b0 | file object: 0xffff9489603b1230 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b1340 | file object: 0xffff9489603b13c0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-a41d76166e19255c03a08ca20a17be26.code
pool: 0xffff9489603b14d0 | file object: 0xffff9489603b1550 | offsetby: 0x80
\Windows\System32\PhonePlatformAbstraction.dll
pool: 0xffff9489603b1660 | file object: 0xffff9489603b16e0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\razor\package.nls.json
pool: 0xffff9489603b17f0 | file object: 0xffff9489603b1870 | offsetby: 0x80
\Windows\Prefetch\RUNTIMEBROKER.EXE-5C6333DA.pf
pool: 0xffff9489603b1980 | file object: 0xffff9489603b1a00 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_32\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
pool: 0xffff9489603b1b10 | file object: 0xffff9489603b1b90 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\shellscript\package.json
pool: 0xffff9489603b1ca0 | file object: 0xffff9489603b1d20 | offsetby: 0x80
\Windows\Media\Windows Notify System Generic.wav
pool: 0xffff9489603b1e30 | file object: 0xffff9489603b1eb0 | offsetby: 0x80
\Users\User\Desktop\SysinternalsSuite\Diskmon.exe
pool: 0xffff9489603b2150 | file object: 0xffff9489603b21d0 | offsetby: 0x80
\Users\User\Desktop\SysinternalsSuite\Coreinfo.exe
pool: 0xffff9489603b22e0 | file object: 0xffff9489603b2360 | offsetby: 0x80
\Users\User\Desktop\SysinternalsSuite\DiskView.exe
pool: 0xffff9489603b2470 | file object: 0xffff9489603b24f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu\Programs
pool: 0xffff9489603b2600 | file object: 0xffff9489603b2680 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu\Programs
pool: 0xffff9489603b2790 | file object: 0xffff9489603b2810 | offsetby: 0x80
\Users\User\Desktop\SysinternalsSuite\Contig64.exe
pool: 0xffff9489603b2920 | file object: 0xffff9489603b29a0 | offsetby: 0x80
\Registry\Machine\SYSTEM\CurrentControlSet\Control\MediaCategories\{
pool: 0xffff9489603b2ab0 | file object: 0xffff9489603b2b30 | offsetby: 0x80
\ProgramData\Microsoft\Windows\Start Menu
pool: 0xffff9489603b2c40 | file object: 0xffff9489603b2cc0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\bindings-28942ce1f8507da065b0f36e070ba0de.code
pool: 0xffff9489603b2dd0 | file object: 0xffff9489603b2e50 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\diasymreader.dll
pool: 0xffff9489603b30f0 | file object: 0xffff9489603b3170 | offsetby: 0x80
\Windows\System32\WinBioPlugIns\NUIVoiceWBSAdapters.dll
pool: 0xffff9489603b3280 | file object: 0xffff9489603b3300 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b3410 | file object: 0xffff9489603b3490 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\keytar-25437c377ca8a514b524bf9a93a3ca2e.code
pool: 0xffff9489603b35a0 | file object: 0xffff9489603b3620 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603b3730 | file object: 0xffff9489603b37b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b38c0 | file object: 0xffff9489603b3940 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b3a50 | file object: 0xffff9489603b3ad0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b3be0 | file object: 0xffff9489603b3c60 | offsetby: 0x80
\Windows\SysWOW64\RstrtMgr.dll
pool: 0xffff9489603b3d70 | file object: 0xffff9489603b3df0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
pool: 0xffff9489603b4090 | file object: 0xffff9489603b4110 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b4220 | file object: 0xffff9489603b42a0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu
pool: 0xffff9489603b43b0 | file object: 0xffff9489603b4430 | offsetby: 0x80
\Users\User\Desktop\SysinternalsSuite\diskext64.exe
pool: 0xffff9489603b4540 | file object: 0xffff9489603b45c0 | offsetby: 0x80
\Users\User\Desktop\SysinternalsSuite\CPUSTRES64.EXE
pool: 0xffff9489603b46d0 | file object: 0xffff9489603b4750 | offsetby: 0x80
\Windows\System32\Windows.UI.FileExplorer.dll
pool: 0xffff9489603b4860 | file object: 0xffff9489603b48e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b49f0 | file object: 0xffff9489603b4a70 | offsetby: 0x80
\Program Files (x86)\Internet Explorer\iexplore.exe
pool: 0xffff9489603b4b80 | file object: 0xffff9489603b4c00 | offsetby: 0x80
\Windows\System32\VmApplicationHealthMonitorProxy.dll
pool: 0xffff9489603b4d10 | file object: 0xffff9489603b4d90 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu
pool: 0xffff9489603b5030 | file object: 0xffff9489603b50b0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\5407bfb5d52030da64364c70b536739b\System.Xml.ni.dll.aux
pool: 0xffff9489603b51c0 | file object: 0xffff9489603b5240 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Security\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Security.dll
pool: 0xffff9489603b5350 | file object: 0xffff9489603b53d0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.772_none_5f13f94c58ff41d3\msdelta.dll
pool: 0xffff9489603b54e0 | file object: 0xffff9489603b5560 | offsetby: 0x80
\Windows\System32\WinBioPlugIns\winbiostorageadapter.dll
pool: 0xffff9489603b5670 | file object: 0xffff9489603b56f0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b5800 | file object: 0xffff9489603b5880 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-32d6a1b661c104e0c338ccaeae62ec76.code
pool: 0xffff9489603b5990 | file object: 0xffff9489603b5a10 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\keytar\build\Release\keytar.node
pool: 0xffff9489603b5b20 | file object: 0xffff9489603b5ba0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b5cb0 | file object: 0xffff9489603b5d30 | offsetby: 0x80
\Users\User\Desktop\SysinternalsSuite\Coreinfo64.exe
pool: 0xffff9489603b5e40 | file object: 0xffff9489603b5ec0 | offsetby: 0x80
\Users\User\Desktop\SysinternalsSuite\ctrl2cap.exe
pool: 0xffff9489603b6160 | file object: 0xffff9489603b61e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Network Shortcuts
pool: 0xffff9489603b62f0 | file object: 0xffff9489603b6370 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b6480 | file object: 0xffff9489603b6500 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\cpp\package.json
pool: 0xffff9489603b6610 | file object: 0xffff9489603b6690 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Serv759bfb78#\fe44d9e7a445cdbf5a99240dcdcf3a53\System.ServiceProcess.ni.dll
pool: 0xffff9489603b67a0 | file object: 0xffff9489603b6820 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Printer Shortcuts
pool: 0xffff9489603b6930 | file object: 0xffff9489603b69b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b6ac0 | file object: 0xffff9489603b6b40 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b6c50 | file object: 0xffff9489603b6cd0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Libraries\desktop.ini
pool: 0xffff9489603b6de0 | file object: 0xffff9489603b6e60 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_96.db
pool: 0xffff9489603b7100 | file object: 0xffff9489603b7180 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\github-authentication\src\common\config.json
pool: 0xffff9489603b7290 | file object: 0xffff9489603b7310 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b7420 | file object: 0xffff9489603b74a0 | offsetby: 0x80
\Windows\System32\MRT.exe
pool: 0xffff9489603b75b0 | file object: 0xffff9489603b7630 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\User\globalStorage\state.vscdb
pool: 0xffff9489603b7740 | file object: 0xffff9489603b77c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b78d0 | file object: 0xffff9489603b7950 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b7a60 | file object: 0xffff9489603b7ae0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\NisSrv.exe
pool: 0xffff9489603b7bf0 | file object: 0xffff9489603b7c70 | offsetby: 0x80
\Users\User\.rustup\toolchains\stable-x86_64-pc-windows-msvc\bin\rustc.exe
pool: 0xffff9489603b7d80 | file object: 0xffff9489603b7e00 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b80a0 | file object: 0xffff9489603b8120 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b8230 | file object: 0xffff9489603b82b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b83c0 | file object: 0xffff9489603b8440 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\iconcache_256.db
pool: 0xffff9489603b8550 | file object: 0xffff9489603b85d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b86e0 | file object: 0xffff9489603b8760 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b8870 | file object: 0xffff9489603b88f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLEditor\Vsix\Microsoft.VisualStudio.Data.Tools.SqlEditor.pkgdef
pool: 0xffff9489603b8a00 | file object: 0xffff9489603b8a80 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b8b90 | file object: 0xffff9489603b8c10 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Printer Shortcuts
pool: 0xffff9489603b8d20 | file object: 0xffff9489603b8da0 | offsetby: 0x80
\Windows\System32\WinBioPlugIns\FaceBootstrapAdapter.dll
pool: 0xffff9489603b9040 | file object: 0xffff9489603b90c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b91d0 | file object: 0xffff9489603b9250 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\WebCache\V01tmp.log
pool: 0xffff9489603b9360 | file object: 0xffff9489603b93e0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-crt-convert-l1-1-0.dll
pool: 0xffff9489603b94f0 | file object: 0xffff9489603b9570 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b9680 | file object: 0xffff9489603b9700 | offsetby: 0x80
\Windows\System32\NapiNSP.dll
pool: 0xffff9489603b9810 | file object: 0xffff9489603b9890 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\extension-6d4af9a1fe0f50ef31aef531cfd2a3ee.code
pool: 0xffff9489603b99a0 | file object: 0xffff9489603b9a20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603b9b30 | file object: 0xffff9489603b9bb0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603b9cc0 | file object: 0xffff9489603b9d40 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.710_none_5f52d84058d0677f\wcp.dll
pool: 0xffff9489603b9e50 | file object: 0xffff9489603b9ed0 | offsetby: 0x80
\ProgramData\Microsoft\Search\Data\Applications\Windows\Projects\SystemIndex\SecStore\CiST0000.002
pool: 0xffff9489603ba170 | file object: 0xffff9489603ba1f0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Threading\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Threading.dll
pool: 0xffff9489603ba300 | file object: 0xffff9489603ba380 | offsetby: 0x80
\Users\User\.rustup\toolchains\stable-x86_64-pc-windows-msvc\bin\test-bbaf2b175d34e570.dll
pool: 0xffff9489603ba490 | file object: 0xffff9489603ba510 | offsetby: 0x80
\Users\User\.rustup\toolchains\stable-x86_64-pc-windows-msvc\bin\std-bc2b04b7c9a44f97.dll
pool: 0xffff9489603ba620 | file object: 0xffff9489603ba6a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\Indexed DB\edb.log
pool: 0xffff9489603ba7b0 | file object: 0xffff9489603ba830 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WinDbg_1.2001.2001.0_neutral__8wekyb3d8bbwe\amd64\winext\ext.dll
pool: 0xffff9489603ba940 | file object: 0xffff9489603ba9c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603baad0 | file object: 0xffff9489603bab50 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WinDbg_1.2001.2001.0_neutral__8wekyb3d8bbwe\amd64\winxp\exts.dll
pool: 0xffff9489603bac60 | file object: 0xffff9489603bace0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603badf0 | file object: 0xffff9489603bae70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603bb110 | file object: 0xffff9489603bb190 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.VC.RecommendationProvider.dll
pool: 0xffff9489603bb2a0 | file object: 0xffff9489603bb320 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff9489603bb430 | file object: 0xffff9489603bb4b0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Linq\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Linq.dll
pool: 0xffff9489603bb5c0 | file object: 0xffff9489603bb640 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\Indexed DB\edb.chk
pool: 0xffff9489603bb750 | file object: 0xffff9489603bb7d0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WinDbg_1.2001.2001.0_neutral__8wekyb3d8bbwe\amd64\winxp\kdexts.dll
pool: 0xffff9489603bb8e0 | file object: 0xffff9489603bb960 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WinDbg_1.2001.2001.0_neutral__8wekyb3d8bbwe\amd64\symsrv.dll
pool: 0xffff9489603bba70 | file object: 0xffff9489603bbaf0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\Indexed DB\IndexedDB.jfm
pool: 0xffff9489603bbc00 | file object: 0xffff9489603bbc80 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WinDbg_1.2001.2001.0_neutral__8wekyb3d8bbwe\amd64\winext\kext.dll
pool: 0xffff9489603bbd90 | file object: 0xffff9489603bbe10 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Network Shortcuts
pool: 0xffff9489603bc0b0 | file object: 0xffff9489603bc130 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Reflection\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Reflection.dll
pool: 0xffff9489603bc240 | file object: 0xffff9489603bc2c0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Data\6ae9aebb477a06a1021b58a2b90efb57\System.Data.ni.dll.aux
pool: 0xffff9489603bc3d0 | file object: 0xffff9489603bc450 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Collections\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Collections.dll
pool: 0xffff9489603bc560 | file object: 0xffff9489603bc5e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\MicrosoftEdge\User\Default\DOMStore\OTUZLTUU\www.bing[1].xml
pool: 0xffff9489603bc6f0 | file object: 0xffff9489603bc770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603bc880 | file object: 0xffff9489603bc900 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\rust\package.nls.json
pool: 0xffff9489603bca10 | file object: 0xffff9489603bca90 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.710_none_5f52d84058d0677f\TiWorker.exe
pool: 0xffff9489603bcba0 | file object: 0xffff9489603bcc20 | offsetby: 0x80
\$Directory
pool: 0xffff9489603bcd30 | file object: 0xffff9489603bcdb0 | offsetby: 0x80
\Users\User\.vscode
pool: 0xffff9489603bd050 | file object: 0xffff9489603bd0d0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Text.Encoding\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Text.Encoding.dll
pool: 0xffff9489603bd1e0 | file object: 0xffff9489603bd260 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.Linq\978e065c730a31498893916850395641\System.Xml.Linq.ni.dll.aux
pool: 0xffff9489603bd370 | file object: 0xffff9489603bd3f0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603bd500 | file object: 0xffff9489603bd580 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Reflection.Extensions\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Reflection.Extensions.dll
pool: 0xffff9489603bd690 | file object: 0xffff9489603bd710 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.710_none_5f52d84058d0677f\CbsCore.dll
pool: 0xffff9489603bd820 | file object: 0xffff9489603bd8a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603bd9b0 | file object: 0xffff9489603bda30 | offsetby: 0x80
\$ConvertToNonresident
pool: 0xffff9489603bdb40 | file object: 0xffff9489603bdbc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489603bdcd0 | file object: 0xffff9489603bdd50 | offsetby: 0x80
\$Directory
pool: 0xffff9489603bde60 | file object: 0xffff9489603bdee0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603be180 | file object: 0xffff9489603be200 | offsetby: 0x80
\$Directory
pool: 0xffff9489603be310 | file object: 0xffff9489603be390 | offsetby: 0x80
\$Directory
pool: 0xffff9489603be4a0 | file object: 0xffff9489603be520 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\Newtonsoft.Json\3613662dee5931d527a53e1b49654500\Newtonsoft.Json.ni.dll.aux
pool: 0xffff9489603be630 | file object: 0xffff9489603be6b0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework-SystemXml\v4.0_4.0.0.0__b77a5c561934e089\PresentationFramework-SystemXml.dll
pool: 0xffff9489603be7c0 | file object: 0xffff9489603be840 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\DOMStore\MAP1LLNE\www.bing[1].xml
pool: 0xffff9489603be950 | file object: 0xffff9489603be9d0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Extensions\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Runtime.Extensions.dll
pool: 0xffff9489603beae0 | file object: 0xffff9489603beb60 | offsetby: 0x80
\$Directory
pool: 0xffff9489603bec70 | file object: 0xffff9489603becf0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\DOMStore\FK41XZVA\www.msn[1].xml
pool: 0xffff9489603bee00 | file object: 0xffff9489603bee80 | offsetby: 0x80
\$Directory
pool: 0xffff9489603bf120 | file object: 0xffff9489603bf1a0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.710_none_5f52d84058d0677f\msdelta.dll
pool: 0xffff9489603bf2b0 | file object: 0xffff9489603bf330 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-xstate-l1-1-0.dll
pool: 0xffff9489603bf440 | file object: 0xffff9489603bf4c0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Diagnostics.Tracing\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Diagnostics.Tracing.dll
pool: 0xffff9489603bf5d0 | file object: 0xffff9489603bf650 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\debug-auto-launch\dist\nls.metadata.json
pool: 0xffff9489603bf760 | file object: 0xffff9489603bf7e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603bf8f0 | file object: 0xffff9489603bf970 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BAD725C80F9E10846F35D039A996E4A8_88B6AE015495C1ECC395D19C1DD02894
pool: 0xffff9489603bfa80 | file object: 0xffff9489603bfb00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603bfc10 | file object: 0xffff9489603bfc90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603bfda0 | file object: 0xffff9489603bfe20 | offsetby: 0x80
\Users\Public\Desktop
pool: 0xffff9489603c00c0 | file object: 0xffff9489603c0140 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Xml\5407bfb5d52030da64364c70b536739b\System.Xml.ni.dll
pool: 0xffff9489603c0250 | file object: 0xffff9489603c02d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489603c03e0 | file object: 0xffff9489603c0460 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c0570 | file object: 0xffff9489603c05f0 | offsetby: 0x80
\Windows\System32\nlhtml.dll
pool: 0xffff9489603c0700 | file object: 0xffff9489603c0780 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\MpSvc.dll
pool: 0xffff9489603c0890 | file object: 0xffff9489603c0910 | offsetby: 0x80
\$Directory
pool: 0xffff9489603c0a20 | file object: 0xffff9489603c0aa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c0bb0 | file object: 0xffff9489603c0c30 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-core-xstate-l2-1-0.dll
pool: 0xffff9489603c0d40 | file object: 0xffff9489603c0dc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c1060 | file object: 0xffff9489603c10e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c11f0 | file object: 0xffff9489603c1270 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c1380 | file object: 0xffff9489603c1400 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c1510 | file object: 0xffff9489603c1590 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c16a0 | file object: 0xffff9489603c1720 | offsetby: 0x80
\$Directory
pool: 0xffff9489603c1830 | file object: 0xffff9489603c18b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\B66240B0F6C84BD4857ABA60CF5CE4A0_5043E0F5DF723415C9EECC201C838A62
pool: 0xffff9489603c19c0 | file object: 0xffff9489603c1a40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c1b50 | file object: 0xffff9489603c1bd0 | offsetby: 0x80
\Windows\System32\UIRibbon.dll
pool: 0xffff9489603c1ce0 | file object: 0xffff9489603c1d60 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\MpRtp.dll
pool: 0xffff9489603c1e70 | file object: 0xffff9489603c1ef0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c2000 | file object: 0xffff9489603c2080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c2190 | file object: 0xffff9489603c2210 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c2320 | file object: 0xffff9489603c23a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c24b0 | file object: 0xffff9489603c2530 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\75CA58072B9926F763A91F0CC2798706_93E4B2BA79A897B3100CCB27F2D3BF4F
pool: 0xffff9489603c2640 | file object: 0xffff9489603c26c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c27d0 | file object: 0xffff9489603c2850 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c2960 | file object: 0xffff9489603c29e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c2af0 | file object: 0xffff9489603c2b70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c2c80 | file object: 0xffff9489603c2d00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c2e10 | file object: 0xffff9489603c2e90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c3130 | file object: 0xffff9489603c31b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c32c0 | file object: 0xffff9489603c3340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c3450 | file object: 0xffff9489603c34d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c35e0 | file object: 0xffff9489603c3660 | offsetby: 0x80
\$Directory
pool: 0xffff9489603c3770 | file object: 0xffff9489603c37f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c3900 | file object: 0xffff9489603c3980 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c3a90 | file object: 0xffff9489603c3b10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c3c20 | file object: 0xffff9489603c3ca0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489603c3db0 | file object: 0xffff9489603c3e30 | offsetby: 0x80
\$Directory
pool: 0xffff948960702160 | file object: 0xffff9489607021e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VS_Root_Folder_Reg_Entries_1872.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489607022f0 | file object: 0xffff948960702370 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\e1xcjrpa.qg3\Microsoft.VisualStudio.Docker.DotNetFramework.pkgdef
pool: 0xffff948960702480 | file object: 0xffff948960702500 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\e1xcjrpa.qg3\Microsoft.VisualStudio.Docker.DotNetCore.pkgdef
pool: 0xffff948960702610 | file object: 0xffff948960702690 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VWD_WAP_UPGRADE_REG.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489607027a0 | file object: 0xffff948960702820 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\Wizard_Framework_Reg_VS_26706.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff948960702930 | file object: 0xffff9489607029b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\e1xcjrpa.qg3\Microsoft.VisualStudio.Docker.Vsix.pkgdef
pool: 0xffff948960702ac0 | file object: 0xffff948960702b40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLEditor\Vsix\Microsoft.VisualStudio.Data.Tools.SqlLanguageServices.pkgdef
pool: 0xffff948960702c50 | file object: 0xffff948960702cd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\em3ozjcu.15r\BoostTestPackage.pkgdef
pool: 0xffff948960702de0 | file object: 0xffff948960702e60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960703100 | file object: 0xffff948960703180 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VS_Yukon_SQL_Debugging_Reg_16703.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff948960703290 | file object: 0xffff948960703310 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VS_SCC_EMP_Reg_for_VS_8486.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff948960703420 | file object: 0xffff9489607034a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VWD_WAP_WEB_APPLICATION_REG.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489607035b0 | file object: 0xffff948960703630 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\Web_Dir_Prj_Reg_for_VS_27100.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff948960703740 | file object: 0xffff9489607037c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VS_IntelliTrace_Collection_Cab_Registry.pkgdef
pool: 0xffff9489607038d0 | file object: 0xffff948960703950 | offsetby: 0x80
\Windows\Fonts\segoeuib.ttf
pool: 0xffff948960703a60 | file object: 0xffff948960703ae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960703bf0 | file object: 0xffff948960703c70 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\index
pool: 0xffff948960703d80 | file object: 0xffff948960703e00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489607040a0 | file object: 0xffff948960704120 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\e1xcjrpa.qg3\Microsoft.VisualStudio.Docker.LanguageService.pkgdef
pool: 0xffff948960704230 | file object: 0xffff9489607042b0 | offsetby: 0x80
\Windows\System32\MusUpdateHandlers.dll
pool: 0xffff9489607043c0 | file object: 0xffff948960704440 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\XmlEditor_Shared_Reg.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff948960704550 | file object: 0xffff9489607045d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VS_ProjConv_DLL_Reg_VS__26716.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489607046e0 | file object: 0xffff948960704760 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TemplateEngine\Microsoft.VisualStudio.TemplateEngine.pkgdef
pool: 0xffff948960704870 | file object: 0xffff9489607048f0 | offsetby: 0x80
\Windows\System32\en-US\Windows.Web.dll.mui
pool: 0xffff948960704a00 | file object: 0xffff948960704a80 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\ServiceHub.d6c1bc22#\6f8f3bef388afe309acad03f32f0e2f7\ServiceHub.Host.CLR.x86.ni.exe
pool: 0xffff948960704b90 | file object: 0xffff948960704c10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VS_SCC_TeamCore_Reg_for_VS_4694.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff948960704d20 | file object: 0xffff948960704da0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\e1xcjrpa.qg3\DockerVsDbgIntegration.pkgdef
pool: 0xffff948960705040 | file object: 0xffff9489607050c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VS_SCC_Integration_Core_Registry_for_VS_3560.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489607051d0 | file object: 0xffff948960705250 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\e1xcjrpa.qg3\Microsoft.VisualStudio.Docker.Compose.pkgdef
pool: 0xffff948960705360 | file object: 0xffff9489607053e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Azure.DataLakeToolsForVS.pkgdef
pool: 0xffff9489607054f0 | file object: 0xffff948960705570 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.WindowsAzure.StreamAnalytics.LanguageService.pkgdef
pool: 0xffff948960705680 | file object: 0xffff948960705700 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe
pool: 0xffff948960705810 | file object: 0xffff948960705890 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ClientTools.Common.CommonServiceProvider.15.0.pkgdef
pool: 0xffff9489607059a0 | file object: 0xffff948960705a20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\CoreCLRDebugEngine.pkgdef
pool: 0xffff948960705b30 | file object: 0xffff948960705bb0 | offsetby: 0x80
\Windows\ImmersiveControlPanel\Telemetry.Common.dll
pool: 0xffff948960705cc0 | file object: 0xffff948960705d40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\Microsoft.VisualStudio.Azure.Fabric.ApplicationInsights.pkgdef
pool: 0xffff948960705e50 | file object: 0xffff948960705ed0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\msenvp.dll
pool: 0xffff948960706170 | file object: 0xffff9489607061f0 | offsetby: 0x80
\Windows\ImmersiveControlPanel\SystemSettings.dll
pool: 0xffff948960706300 | file object: 0xffff948960706380 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\mhdggq4k.qg3\Microsoft.VisualStudio.Containers.Tools.Package.pkgdef
pool: 0xffff948960706490 | file object: 0xffff948960706510 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\jkzdf0pw.lhk\VsIntegration.pkgdef
pool: 0xffff948960706620 | file object: 0xffff9489607066a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\Microsoft.VisualStudio.Azure.Fabric.Vsix.pkgdef
pool: 0xffff9489607067b0 | file object: 0xffff948960706830 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\.NetNative\.NetNative.pkgdef
pool: 0xffff948960706940 | file object: 0xffff9489607069c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ColorService.pkgdef
pool: 0xffff948960706ad0 | file object: 0xffff948960706b50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\mhdggq4k.qg3\ContainerVsDbgIntegration.pkgdef
pool: 0xffff948960706c60 | file object: 0xffff948960706ce0 | offsetby: 0x80
\Program Files (x86)\Common Files\Microsoft Shared\ink\tiptsf.dll
pool: 0xffff948960706df0 | file object: 0xffff948960706e70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\Microsoft.VisualStudio.Azure.Fabric.DiagnosticEvents.pkgdef
pool: 0xffff948960707110 | file object: 0xffff948960707190 | offsetby: 0x80
\$Directory
pool: 0xffff9489607072a0 | file object: 0xffff948960707320 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Modeling.Sdk.Shell.15.0.dll
pool: 0xffff948960707430 | file object: 0xffff9489607074b0 | offsetby: 0x80
\Windows\System32\SettingsHandlers_Flights.dll
pool: 0xffff9489607075c0 | file object: 0xffff948960707640 | offsetby: 0x80
\$Directory
pool: 0xffff948960707750 | file object: 0xffff9489607077d0 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff9489607078e0 | file object: 0xffff948960707960 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ClientTools.Common.ColorService.pkgdef
pool: 0xffff948960707a70 | file object: 0xffff948960707af0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960707c00 | file object: 0xffff948960707c80 | offsetby: 0x80
\Windows\ImmersiveControlPanel\SystemSettingsViewModel.Desktop.dll
pool: 0xffff948960707d90 | file object: 0xffff948960707e10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.WindowsAzure.HDIStudio.VsExtension.HQLLanguageService.pkgdef
pool: 0xffff9489607080b0 | file object: 0xffff948960708130 | offsetby: 0x80
\$Directory
pool: 0xffff948960708240 | file object: 0xffff9489607082c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\Microsoft.VisualStudio.Azure.Fabric.DockerPackage.pkgdef
pool: 0xffff9489607083d0 | file object: 0xffff948960708450 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\Microsoft.VisualStudio.Azure.Fabric.ApplicationProject.pkgdef
pool: 0xffff948960708560 | file object: 0xffff9489607085e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.WindowsAzure.StreamAnalyticsAzureNode.15.0.pkgdef
pool: 0xffff9489607086f0 | file object: 0xffff948960708770 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.WindowsAzure.HDIStudio.HDIAzureNode.15.0.pkgdef
pool: 0xffff948960708880 | file object: 0xffff948960708900 | offsetby: 0x80
\Windows\Prefetch\CODE.EXE-BFFF9073.pf
pool: 0xffff948960708a10 | file object: 0xffff948960708a90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ClientTools.Common.DataLakeServiceProvider.15.0.pkgdef
pool: 0xffff948960708ba0 | file object: 0xffff948960708c20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960708d30 | file object: 0xffff948960708db0 | offsetby: 0x80
\$Directory
pool: 0xffff948960709050 | file object: 0xffff9489607090d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489607091e0 | file object: 0xffff948960709260 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WinDbg_1.2001.2001.0_neutral__8wekyb3d8bbwe\TextEditor.dll
pool: 0xffff948960709370 | file object: 0xffff9489607093f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\CodeSense\Framework\CodeSenseColors.pkgdef
pool: 0xffff948960709500 | file object: 0xffff948960709580 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\ConnectedServices.imagemanifest
pool: 0xffff948960709690 | file object: 0xffff948960709710 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.WindowsAzure.StreamAnalytics.ServiceProvider.15.0.pkgdef
pool: 0xffff948960709820 | file object: 0xffff9489607098a0 | offsetby: 0x80
\$PrepareToShrinkFileSize
pool: 0xffff9489607099b0 | file object: 0xffff948960709a30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960709b40 | file object: 0xffff948960709bc0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V0adf9eae#\c2a72c43646b7b8a852459613edd3d6c\Microsoft.VisualStudio.CoreUtility.ni.dll
pool: 0xffff948960709cd0 | file object: 0xffff948960709d50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960709e60 | file object: 0xffff948960709ee0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\templateManifest11.1046.vstman
pool: 0xffff94896070a180 | file object: 0xffff94896070a200 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896070a310 | file object: 0xffff94896070a390 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Xaml\68c30330810670ae9f5e78854504aaae\System.Xaml.ni.dll.aux
pool: 0xffff94896070a4a0 | file object: 0xffff94896070a520 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ScopeStudio.SqlipAzureNode.15.0.pkgdef
pool: 0xffff94896070a630 | file object: 0xffff94896070a6b0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar
pool: 0xffff94896070a7c0 | file object: 0xffff94896070a840 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ScopeStudio.UtilityExtension.pkgdef
pool: 0xffff94896070a950 | file object: 0xffff94896070a9d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ScopeStudio.VsExtension.LanguageService.SqlIP.pkgdef
pool: 0xffff94896070aae0 | file object: 0xffff94896070ab60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ScopeStudio.VsExtension.ProjectSystem.pkgdef
pool: 0xffff94896070ac70 | file object: 0xffff94896070acf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ScopeStudio.VsExtension.ToolsOptions.SqlIP.pkgdef
pool: 0xffff94896070ae00 | file object: 0xffff94896070ae80 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V246d69f4#\73ebaad9130d947484de0867b156598c\Microsoft.VisualStudio.Editor.ni.dll
pool: 0xffff94896070b120 | file object: 0xffff94896070b1a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896070b2b0 | file object: 0xffff94896070b330 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896070b440 | file object: 0xffff94896070b4c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896070b5d0 | file object: 0xffff94896070b650 | offsetby: 0x80
\Windows\System32\mmcndmgr.dll
pool: 0xffff94896070b760 | file object: 0xffff94896070b7e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Graphics\Debugger\RegisteredDefaultEngines.pkgdef
pool: 0xffff94896070b8f0 | file object: 0xffff94896070b970 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Graphics\Debugger\Vsga_FileAssoc.pkgdef
pool: 0xffff94896070ba80 | file object: 0xffff94896070bb00 | offsetby: 0x80
\$Directory
pool: 0xffff94896070bc10 | file object: 0xffff94896070bc90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Graphics\Debugger\VsGraphicsDebuggerPkg.pkgdef
pool: 0xffff94896070bda0 | file object: 0xffff94896070be20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\CodeSense\Framework\CodeSenseFramework.pkgdef
pool: 0xffff94896070c0c0 | file object: 0xffff94896070c140 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Settings.15.0.dll
pool: 0xffff94896070c250 | file object: 0xffff94896070c2d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\AppInsights\Core\AIColors.pkgdef
pool: 0xffff94896070c3e0 | file object: 0xffff94896070c460 | offsetby: 0x80
\Windows\System32\dsuiext.dll
pool: 0xffff94896070c570 | file object: 0xffff94896070c5f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ScopeStudio.VsExtension.ToolWindowHostedEditor.pkgdef
pool: 0xffff94896070c700 | file object: 0xffff94896070c780 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896070c890 | file object: 0xffff94896070c910 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\Newtonsoft.Json\3613662dee5931d527a53e1b49654500\Newtonsoft.Json.ni.dll
pool: 0xffff94896070ca20 | file object: 0xffff94896070caa0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vd5001c35#\2abd1618bc05908b9e4fb5f66a507b61\Microsoft.VisualStudio.Text.UI.Wpf.ni.dll
pool: 0xffff94896070cbb0 | file object: 0xffff94896070cc30 | offsetby: 0x80
\$Directory
pool: 0xffff94896070cd40 | file object: 0xffff94896070cdc0 | offsetby: 0x80
\$Directory
pool: 0xffff94896070d060 | file object: 0xffff94896070d0e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896070d1f0 | file object: 0xffff94896070d270 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\Authentication\Microsoft.VisualStudio.Authentication.ConnectedServices.pkgdef
pool: 0xffff94896070d380 | file object: 0xffff94896070d400 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\Microsoft.VisualStudio.ConnectedServices.Package2.pkgdef
pool: 0xffff94896070d510 | file object: 0xffff94896070d590 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code
pool: 0xffff94896070d6a0 | file object: 0xffff94896070d720 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ScopeStudio.VsExtension.USqlProject.pkgdef
pool: 0xffff94896070d830 | file object: 0xffff94896070d8b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896070d9c0 | file object: 0xffff94896070da40 | offsetby: 0x80
\$Directory
pool: 0xffff94896070db50 | file object: 0xffff94896070dbd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\AppInsights\Core\Microsoft.VisualStudio.ApplicationInsights.pkgdef
pool: 0xffff94896070dce0 | file object: 0xffff94896070dd60 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff94896070de70 | file object: 0xffff94896070def0 | offsetby: 0x80
\$Directory
pool: 0xffff94896070e000 | file object: 0xffff94896070e080 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\KeyVault\Microsoft.VisualStudio.ConnectedServices.Azure.KeyVault.pkgdef
pool: 0xffff94896070e190 | file object: 0xffff94896070e210 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.S5aeb222a#\669c764fff7b343d0a3c4e96a2cc6f40\Microsoft.ServiceHub.Client.ni.dll
pool: 0xffff94896070e320 | file object: 0xffff94896070e3a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\icudtl.dat
pool: 0xffff94896070e4b0 | file object: 0xffff94896070e530 | offsetby: 0x80
\$Directory
pool: 0xffff94896070e640 | file object: 0xffff94896070e6c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ExtensionManager\ServiceModule\PkgdefMgmt.dll
pool: 0xffff94896070e7d0 | file object: 0xffff94896070e850 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ExtensionManager\ServiceModule\Microsoft.VisualStudio.ExtensionManager.ServiceModule.dll
pool: 0xffff94896070e960 | file object: 0xffff94896070e9e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\VSLangProj80.dll
pool: 0xffff94896070eaf0 | file object: 0xffff94896070eb70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896070ec80 | file object: 0xffff94896070ed00 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_0
pool: 0xffff94896070ee10 | file object: 0xffff94896070ee90 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\code\electron-browser\workbench\workbench.html
pool: 0xffff94896070f130 | file object: 0xffff94896070f1b0 | offsetby: 0x80
\Windows\System32\CompPkgSrv.exe
pool: 0xffff94896070f2c0 | file object: 0xffff94896070f340 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\v8_context_snapshot.bin
pool: 0xffff94896070f450 | file object: 0xffff94896070f4d0 | offsetby: 0x80
\Windows\System32\mmcbase.dll
pool: 0xffff94896070f5e0 | file object: 0xffff94896070f660 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\IntelliCode\IntelliCodeCpp.pkgdef
pool: 0xffff94896070f770 | file object: 0xffff94896070f7f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\natives_blob.bin
pool: 0xffff94896070f900 | file object: 0xffff94896070f980 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\locales\en-US.pak
pool: 0xffff94896070fa90 | file object: 0xffff94896070fb10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\IntelliCode\Microsoft.VisualStudio.Completion.Tests.pkgdef
pool: 0xffff94896070fc20 | file object: 0xffff94896070fca0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources.pak
pool: 0xffff94896070fdb0 | file object: 0xffff94896070fe30 | offsetby: 0x80
\$Directory
pool: 0xffff9489607100d0 | file object: 0xffff948960710150 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\utils-b73ac4ca4d1f9c2895e835a6fe4abf35.code
pool: 0xffff948960710260 | file object: 0xffff9489607102e0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-IKE%4Operational.evtx
pool: 0xffff9489607103f0 | file object: 0xffff948960710470 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\chrome_100_percent.pak
pool: 0xffff948960710580 | file object: 0xffff948960710600 | offsetby: 0x80
\Windows\System32\CompPkgSrv.exe
pool: 0xffff948960710710 | file object: 0xffff948960710790 | offsetby: 0x80
\Windows\System32\dssec.dll
pool: 0xffff9489607108a0 | file object: 0xffff948960710920 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code
pool: 0xffff948960710a30 | file object: 0xffff948960710ab0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_2
pool: 0xffff948960710bc0 | file object: 0xffff948960710c40 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpAsDesc.dll
pool: 0xffff948960710d50 | file object: 0xffff948960710dd0 | offsetby: 0x80
\Windows\System32\mmc.exe
pool: 0xffff948960711070 | file object: 0xffff9489607110f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\IntelliCode\Microsoft.VisualStudio.IntelliCode.pkgdef
pool: 0xffff948960711200 | file object: 0xffff948960711280 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\HttpRequests-c90f48f4204a89322be62837f53df6f3.code
pool: 0xffff948960711390 | file object: 0xffff948960711410 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\index
pool: 0xffff948960711520 | file object: 0xffff9489607115a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Graphics\Debugger\VsGraphicsLaunchHookPkg.pkgdef
pool: 0xffff9489607116b0 | file object: 0xffff948960711730 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff948960711840 | file object: 0xffff9489607118c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\chrome_200_percent.pak
pool: 0xffff9489607119d0 | file object: 0xffff948960711a50 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_0
pool: 0xffff948960711b60 | file object: 0xffff948960711be0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\Project\Microsoft.VisualStudio.Project.VisualC.VCProjectEngine.pkgdef
pool: 0xffff948960711cf0 | file object: 0xffff948960711d70 | offsetby: 0x80
\Windows\Prefetch\WUAUCLT.EXE-70318591.pf
pool: 0xffff948960712010 | file object: 0xffff948960712090 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\constants-578e1eb3d542673f07323bd5cbee59dd.code
pool: 0xffff9489607121a0 | file object: 0xffff948960712220 | offsetby: 0x80
\$Directory
pool: 0xffff948960712330 | file object: 0xffff9489607123b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\HttpRequestParser-94d0ea88b76724a81c25d3cadae91be0.code
pool: 0xffff9489607124c0 | file object: 0xffff948960712540 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Channel-2e48669b8796602739dac47371d762f5.code
pool: 0xffff948960712650 | file object: 0xffff9489607126d0 | offsetby: 0x80
\Windows\System32\wuauclt.exe
pool: 0xffff9489607127e0 | file object: 0xffff948960712860 | offsetby: 0x80
\$Directory
pool: 0xffff948960712970 | file object: 0xffff9489607129f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\icudtl.dat
pool: 0xffff948960712b00 | file object: 0xffff948960712b80 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\helpers-2ba36dbce783bb2f3371198d97a2d013.code
pool: 0xffff948960712c90 | file object: 0xffff948960712d10 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\common-ea54656fec1fc1810b78e4b0ff9a555a.code
pool: 0xffff948960712e20 | file object: 0xffff948960712ea0 | offsetby: 0x80
\Windows\Fonts\tahoma.ttf
pool: 0xffff948960713140 | file object: 0xffff9489607131c0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-ebb51bdf761c24f293b6a546f78f58d6.code
pool: 0xffff9489607132d0 | file object: 0xffff948960713350 | offsetby: 0x80
\$Directory
pool: 0xffff948960713460 | file object: 0xffff9489607134e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489607135f0 | file object: 0xffff948960713670 | offsetby: 0x80
\Windows\Prefetch\UPDATEPLATFORM.EXE-134B8B40.pf
pool: 0xffff948960713780 | file object: 0xffff948960713800 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\v8_context_snapshot.bin
pool: 0xffff948960713910 | file object: 0xffff948960713990 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960713aa0 | file object: 0xffff948960713b20 | offsetby: 0x80
\$Directory
pool: 0xffff948960713c30 | file object: 0xffff948960713cb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960713dc0 | file object: 0xffff948960713e40 | offsetby: 0x80
\Windows\Prefetch\MPSIGSTUB.EXE-6CB27A06.pf
pool: 0xffff9489607140e0 | file object: 0xffff948960714160 | offsetby: 0x80
\$Directory
pool: 0xffff948960714270 | file object: 0xffff9489607142f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960714400 | file object: 0xffff948960714480 | offsetby: 0x80
\$Directory
pool: 0xffff948960714590 | file object: 0xffff948960714610 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff948960714720 | file object: 0xffff9489607147a0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A}\mpengine.dll
pool: 0xffff9489607148b0 | file object: 0xffff948960714930 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960714a40 | file object: 0xffff948960714ac0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A}\mpasdlta.vdm
pool: 0xffff948960714bd0 | file object: 0xffff948960714c50 | offsetby: 0x80
\$Directory
pool: 0xffff948960714d60 | file object: 0xffff948960714de0 | offsetby: 0x80
\$Directory
pool: 0xffff948960715080 | file object: 0xffff948960715100 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-2ef03ef2890f956942967591b73667b2.code
pool: 0xffff948960715210 | file object: 0xffff948960715290 | offsetby: 0x80
\$Directory
pool: 0xffff9489607153a0 | file object: 0xffff948960715420 | offsetby: 0x80
\$Directory
pool: 0xffff948960715530 | file object: 0xffff9489607155b0 | offsetby: 0x80
\Windows\Fonts\msgothic.ttc
pool: 0xffff9489607156c0 | file object: 0xffff948960715740 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\DotNetDebugger.pkgdef
pool: 0xffff948960715850 | file object: 0xffff9489607158d0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\bindings-2c066a463f41616f45bf4736dbbc4940.code
pool: 0xffff9489607159e0 | file object: 0xffff948960715a60 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A}\mpavdlta.vdm
pool: 0xffff948960715b70 | file object: 0xffff948960715bf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\ECBuild.pkgdef
pool: 0xffff948960715d00 | file object: 0xffff948960715d80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\ENCMgr.pkgdef
pool: 0xffff948960716020 | file object: 0xffff9489607160a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\ParallelDebugger\Microsoft.VisualStudio.Debugger.Parallel.Gpu.pkgdef
pool: 0xffff9489607161b0 | file object: 0xffff948960716230 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-0e863e33e6c6022cc40370c6fc07c18f.code
pool: 0xffff948960716340 | file object: 0xffff9489607163c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\ParallelDebugger\Microsoft.VisualStudio.Debugger.Parallel.pkgdef
pool: 0xffff9489607164d0 | file object: 0xffff948960716550 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A}\mpengine.dll
pool: 0xffff948960716660 | file object: 0xffff9489607166e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\ParallelDebugger\PfxTaskProvider.pkgdef
pool: 0xffff9489607167f0 | file object: 0xffff948960716870 | offsetby: 0x80
\$Directory
pool: 0xffff948960716980 | file object: 0xffff948960716a00 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-7ab646000615cb5709616bd5b36afa27.code
pool: 0xffff948960716b10 | file object: 0xffff948960716b90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\ParallelDebugger\Microsoft.VisualStudio.Debugger.Parallel.Extension.pkgdef
pool: 0xffff948960716ca0 | file object: 0xffff948960716d20 | offsetby: 0x80
\$Directory
pool: 0xffff948960716e30 | file object: 0xffff948960716eb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\ParallelDebugger\PplTaskProvider.pkgdef
pool: 0xffff948960717150 | file object: 0xffff9489607171d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489607172e0 | file object: 0xffff948960717360 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\CmdDefUI.Pkgdef
pool: 0xffff948960717470 | file object: 0xffff9489607174f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\TreeNavigation\GraphProvider\Microsoft.VisualStudio.Shell.TreeNavigation.GraphProvider.pkgdef
pool: 0xffff948960717600 | file object: 0xffff948960717680 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-751e696105af1d10516afbbd2caf4d43.code
pool: 0xffff948960717790 | file object: 0xffff948960717810 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\msvsmon_x64.pkgdef
pool: 0xffff948960717920 | file object: 0xffff9489607179a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\XmlTools\Microsoft.XslDebugger.pkgdef
pool: 0xffff948960717ab0 | file object: 0xffff948960717b30 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\base\worker\workerMain.js
pool: 0xffff948960717c40 | file object: 0xffff948960717cc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960717dd0 | file object: 0xffff948960717e50 | offsetby: 0x80
\$Directory
pool: 0xffff9489607180f0 | file object: 0xffff948960718170 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960718280 | file object: 0xffff948960718300 | offsetby: 0x80
\$Directory
pool: 0xffff948960718410 | file object: 0xffff948960718490 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\locales\en-US.pak
pool: 0xffff9489607185a0 | file object: 0xffff948960718620 | offsetby: 0x80
\$Directory
pool: 0xffff948960718730 | file object: 0xffff9489607187b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\User
pool: 0xffff9489607188c0 | file object: 0xffff948960718940 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\chrome_100_percent.pak
pool: 0xffff948960718a50 | file object: 0xffff948960718ad0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960718be0 | file object: 0xffff948960718c60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960718d70 | file object: 0xffff948960718df0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\natives_blob.bin
pool: 0xffff948960719090 | file object: 0xffff948960719110 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-82bf8f1571fc1d2d58c291080f350ef4.code
pool: 0xffff948960719220 | file object: 0xffff9489607192a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489607193b0 | file object: 0xffff948960719430 | offsetby: 0x80
\$Directory
pool: 0xffff948960719540 | file object: 0xffff9489607195c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources.pak
pool: 0xffff9489607196d0 | file object: 0xffff948960719750 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960719860 | file object: 0xffff9489607198e0 | offsetby: 0x80
\Users\User\AppData\Local\nganhkhoa\lpus\ntkrnlmp.pdb\E7477A03A7078050CB7936455CE346B5\1\ntkrnlmp.pdb
pool: 0xffff9489607199f0 | file object: 0xffff948960719a70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\XsdDesigner\Microsoft.VisualStudio.XsdDesignerPackage.pkgdef
pool: 0xffff948960719b80 | file object: 0xffff948960719c00 | offsetby: 0x80
\$Directory
pool: 0xffff948960719d10 | file object: 0xffff948960719d90 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\User\snippets
pool: 0xffff94896071a030 | file object: 0xffff94896071a0b0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\chrome_200_percent.pak
pool: 0xffff94896071a1c0 | file object: 0xffff94896071a240 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071a350 | file object: 0xffff94896071a3d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\f4qeaqdm.pox\extension.vsixmanifest
pool: 0xffff94896071a4e0 | file object: 0xffff94896071a560 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-bcea1323291a66c7808e6b9f71f32aa7.code
pool: 0xffff94896071a670 | file object: 0xffff94896071a6f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071a800 | file object: 0xffff94896071a880 | offsetby: 0x80
\$Directory
pool: 0xffff94896071a990 | file object: 0xffff94896071aa10 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\objective-c\package.nls.json
pool: 0xffff94896071ab20 | file object: 0xffff94896071aba0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071acb0 | file object: 0xffff94896071ad30 | offsetby: 0x80
\$Directory
pool: 0xffff94896071ae40 | file object: 0xffff94896071aec0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071b160 | file object: 0xffff94896071b1e0 | offsetby: 0x80
\Windows\System32\winrnr.dll
pool: 0xffff94896071b2f0 | file object: 0xffff94896071b370 | offsetby: 0x80
\$Directory
pool: 0xffff94896071b480 | file object: 0xffff94896071b500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071b610 | file object: 0xffff94896071b690 | offsetby: 0x80
\$Directory
pool: 0xffff94896071b7a0 | file object: 0xffff94896071b820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071b930 | file object: 0xffff94896071b9b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071bac0 | file object: 0xffff94896071bb40 | offsetby: 0x80
\Windows\System32\drivers\FWPKCLNT.SYS
pool: 0xffff94896071bc50 | file object: 0xffff94896071bcd0 | offsetby: 0x80
\$Directory
pool: 0xffff94896071bde0 | file object: 0xffff94896071be60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071c100 | file object: 0xffff94896071c180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071c290 | file object: 0xffff94896071c310 | offsetby: 0x80
\Windows\System32\MpSigStub.exe
pool: 0xffff94896071c420 | file object: 0xffff94896071c4a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071c5b0 | file object: 0xffff94896071c630 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071c740 | file object: 0xffff94896071c7c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071c8d0 | file object: 0xffff94896071c950 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071ca60 | file object: 0xffff94896071cae0 | offsetby: 0x80
\$Directory
pool: 0xffff94896071cbf0 | file object: 0xffff94896071cc70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071cd80 | file object: 0xffff94896071ce00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Agent\TestListEditorLicense.pkgdef
pool: 0xffff94896071d0a0 | file object: 0xffff94896071d120 | offsetby: 0x80
\Windows\Temp\MpSigStub.log
pool: 0xffff94896071d230 | file object: 0xffff94896071d2b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071d3c0 | file object: 0xffff94896071d440 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071d550 | file object: 0xffff94896071d5d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896071d6e0 | file object: 0xffff94896071d760 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071d870 | file object: 0xffff94896071d8f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\python\package.nls.json
pool: 0xffff94896071da00 | file object: 0xffff94896071da80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071db90 | file object: 0xffff94896071dc10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071dd20 | file object: 0xffff94896071dda0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071e040 | file object: 0xffff94896071e0c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071e1d0 | file object: 0xffff94896071e250 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071e360 | file object: 0xffff94896071e3e0 | offsetby: 0x80
\$Directory
pool: 0xffff94896071e4f0 | file object: 0xffff94896071e570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071e680 | file object: 0xffff94896071e700 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\1033\Microsoft.VSDesignerUI.dll
pool: 0xffff94896071e810 | file object: 0xffff94896071e890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071e9a0 | file object: 0xffff94896071ea20 | offsetby: 0x80
\$Directory
pool: 0xffff94896071eb30 | file object: 0xffff94896071ebb0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData
pool: 0xffff94896071ecc0 | file object: 0xffff94896071ed40 | offsetby: 0x80
\$Directory
pool: 0xffff94896071ee50 | file object: 0xffff94896071eed0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071f170 | file object: 0xffff94896071f1f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896071f300 | file object: 0xffff94896071f380 | offsetby: 0x80
\$Directory
pool: 0xffff94896071f490 | file object: 0xffff94896071f510 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\userdeviceregistration.ngc.winmd
pool: 0xffff94896071f620 | file object: 0xffff94896071f6a0 | offsetby: 0x80
\Windows\System32\SystemSettings.SettingsExtensibility.dll
pool: 0xffff94896071f7b0 | file object: 0xffff94896071f830 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\jeyhqjbx.yg3\extension.vsixmanifest
pool: 0xffff94896071f940 | file object: 0xffff94896071f9c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\tvj5kldf.uzg\extension.vsixmanifest
pool: 0xffff94896071fad0 | file object: 0xffff94896071fb50 | offsetby: 0x80
\$Directory
pool: 0xffff94896071fc60 | file object: 0xffff94896071fce0 | offsetby: 0x80
\$Directory
pool: 0xffff94896071fdf0 | file object: 0xffff94896071fe70 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_2
pool: 0xffff948960720110 | file object: 0xffff948960720190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489607202a0 | file object: 0xffff948960720320 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_3
pool: 0xffff948960720430 | file object: 0xffff9489607204b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_3
pool: 0xffff9489607205c0 | file object: 0xffff948960720640 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960720750 | file object: 0xffff9489607207d0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WinDbg_1.2001.2001.0_neutral__8wekyb3d8bbwe\DbgX.Util.dll
pool: 0xffff9489607208e0 | file object: 0xffff948960720960 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\SystemSettings.DataModel.winmd
pool: 0xffff948960720a70 | file object: 0xffff948960720af0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\ContentManagement.winmd
pool: 0xffff948960720c00 | file object: 0xffff948960720c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960720d90 | file object: 0xffff948960720e10 | offsetby: 0x80
\$Directory
pool: 0xffff9489607210b0 | file object: 0xffff948960721130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960721240 | file object: 0xffff9489607212c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489607213d0 | file object: 0xffff948960721450 | offsetby: 0x80
\$Directory
pool: 0xffff948960721560 | file object: 0xffff9489607215e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489607216f0 | file object: 0xffff948960721770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960721880 | file object: 0xffff948960721900 | offsetby: 0x80
\$Directory
pool: 0xffff948960721a10 | file object: 0xffff948960721a90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960721ba0 | file object: 0xffff948960721c20 | offsetby: 0x80
\$Directory
pool: 0xffff948960721d30 | file object: 0xffff948960721db0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960722050 | file object: 0xffff9489607220d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489607221e0 | file object: 0xffff948960722260 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960722370 | file object: 0xffff9489607223f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960722500 | file object: 0xffff948960722580 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960722690 | file object: 0xffff948960722710 | offsetby: 0x80
\$Directory
pool: 0xffff948960722820 | file object: 0xffff9489607228a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\workbench\workbench.desktop.main.css
pool: 0xffff9489607229b0 | file object: 0xffff948960722a30 | offsetby: 0x80
\$Directory
pool: 0xffff948960722b40 | file object: 0xffff948960722bc0 | offsetby: 0x80
\Users\Public\Desktop
pool: 0xffff948960722cd0 | file object: 0xffff948960722d50 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\windows-mutex\build\Release\CreateMutex.node
pool: 0xffff948960722e60 | file object: 0xffff948960722ee0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\MicrosoftAccount.Extension.winmd
pool: 0xffff948960723180 | file object: 0xffff948960723200 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.CloudExperienceHost_cw5n1h2txyewy\enterprisedevicemanagement.enrollment.winmd
pool: 0xffff948960723310 | file object: 0xffff948960723390 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-7fd41f8c60c06815314053c7d6a81300.code
pool: 0xffff9489607234a0 | file object: 0xffff948960723520 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\bindings-1a06447fe9cc8c0f0036b27b529c8ab5.code
pool: 0xffff948960723630 | file object: 0xffff9489607236b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\windowsTerminal-fe4a9b21e21bd6bfdefda8ea8c646e33.code
pool: 0xffff9489607237c0 | file object: 0xffff948960723840 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\terminal-c9714d7f98258a819b7b195b947756c3.code
pool: 0xffff948960723950 | file object: 0xffff9489607239d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\vscode-sqlite3\build\Release\sqlite.node
pool: 0xffff948960723ae0 | file object: 0xffff948960723b60 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\code\electron-browser\workbench\workbench.js
pool: 0xffff948960723c70 | file object: 0xffff948960723cf0 | offsetby: 0x80
\$Directory
pool: 0xffff948960723e00 | file object: 0xffff948960723e80 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Code Cache\js\index-dir\the-real-index
pool: 0xffff948960724120 | file object: 0xffff9489607241a0 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.WinDbg_1.2001.2001.0_neutral__8wekyb3d8bbwe\DbgX.Interfaces.Internal.dll
pool: 0xffff9489607242b0 | file object: 0xffff948960724330 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\sqlite3-47aac148cf11aa785aeb6f07ee52e8c1.code
pool: 0xffff948960724440 | file object: 0xffff9489607244c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Common\AspNetHostType_Reg.pkgdef
pool: 0xffff9489607245d0 | file object: 0xffff948960724650 | offsetby: 0x80
\$Directory
pool: 0xffff948960724760 | file object: 0xffff9489607247e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489607248f0 | file object: 0xffff948960724970 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-WFP%4Operational.evtx
pool: 0xffff948960724a80 | file object: 0xffff948960724b00 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpCommu.dll
pool: 0xffff948960724c10 | file object: 0xffff948960724c90 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\DefenderCSP.dll
pool: 0xffff948960724da0 | file object: 0xffff948960724e20 | offsetby: 0x80
\Program Files\Windows Defender\MpAsDesc.dll
pool: 0xffff9489607250c0 | file object: 0xffff948960725140 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\workbench\workbench.desktop.main.nls.js
pool: 0xffff948960725250 | file object: 0xffff9489607252d0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\workbench.desktop.main.nls-5be50a12ee43e6c8a1b40d9dee5467e3.code
pool: 0xffff9489607253e0 | file object: 0xffff948960725460 | offsetby: 0x80
\$Directory
pool: 0xffff948960725570 | file object: 0xffff9489607255f0 | offsetby: 0x80
\Windows\Fonts\timesbd.ttf
pool: 0xffff948960725700 | file object: 0xffff948960725780 | offsetby: 0x80
\Program Files\Windows Defender\ConfigSecurityPolicy.exe
pool: 0xffff948960725890 | file object: 0xffff948960725910 | offsetby: 0x80
\Windows\Fonts\timesbi.ttf
pool: 0xffff948960725a20 | file object: 0xffff948960725aa0 | offsetby: 0x80
\Windows\Fonts\timesi.ttf
pool: 0xffff948960725bb0 | file object: 0xffff948960725c30 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpAzSubmit.dll
pool: 0xffff948960725d40 | file object: 0xffff948960725dc0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpOAV.dll
pool: 0xffff948960726060 | file object: 0xffff9489607260e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489607261f0 | file object: 0xffff948960726270 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar
pool: 0xffff948960726380 | file object: 0xffff948960726400 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpClient.dll
pool: 0xffff948960726510 | file object: 0xffff948960726590 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpCmdRun.exe
pool: 0xffff9489607266a0 | file object: 0xffff948960726720 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\NisSrv.exe
pool: 0xffff948960726830 | file object: 0xffff9489607268b0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpRtp.dll
pool: 0xffff9489607269c0 | file object: 0xffff948960726a40 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpSvc.dll
pool: 0xffff948960726b50 | file object: 0xffff948960726bd0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\workbench\workbench.desktop.main.js
pool: 0xffff948960726ce0 | file object: 0xffff948960726d60 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpUpdate.dll
pool: 0xffff948960726e70 | file object: 0xffff948960726ef0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MsMpEng.exe
pool: 0xffff948960727000 | file object: 0xffff948960727080 | offsetby: 0x80
\Windows\Fonts\times.ttf
pool: 0xffff948960727190 | file object: 0xffff948960727210 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpDetours.dll
pool: 0xffff948960727320 | file object: 0xffff9489607273a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\controller\Microsoft.ServiceHub.Resources.dll
pool: 0xffff9489607274b0 | file object: 0xffff948960727530 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MsMpLics.dll
pool: 0xffff948960727640 | file object: 0xffff9489607276c0 | offsetby: 0x80
\Program Files (x86)\Windows Defender\MpAsDesc.dll
pool: 0xffff9489607277d0 | file object: 0xffff948960727850 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\workbench.desktop.main-7b023e35ef7b6fc13c68ae05365efddf.code
pool: 0xffff948960727960 | file object: 0xffff9489607279e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-81ba7a5c4f1af9da908b0637b314661a.code
pool: 0xffff948960727af0 | file object: 0xffff948960727b70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960727c80 | file object: 0xffff948960727d00 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MpCmdRun.exe
pool: 0xffff948960727e10 | file object: 0xffff948960727e90 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\eventEmitter2-4455fe7e0326dc28456078f78c00eea0.code
pool: 0xffff948960728130 | file object: 0xffff9489607281b0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\Drivers\WdBoot.sys
pool: 0xffff9489607282c0 | file object: 0xffff948960728340 | offsetby: 0x80
\$Directory
pool: 0xffff948960728450 | file object: 0xffff9489607284d0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\utils-f686b17ce6e53c166a6db35000940de4.code
pool: 0xffff9489607285e0 | file object: 0xffff948960728660 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\Drivers\WdFilter.sys
pool: 0xffff948960728770 | file object: 0xffff9489607287f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\endpointdlp.dll
pool: 0xffff948960728900 | file object: 0xffff948960728980 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\graceful-fs-bc91ece6d82abaa36c84cefb86b345ca.code
pool: 0xffff948960728a90 | file object: 0xffff948960728b10 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpPrintFlt.dll
pool: 0xffff948960728c20 | file object: 0xffff948960728ca0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\polyfills-e5bbc4f8bb60f6fe7636bcb326434c0b.code
pool: 0xffff948960728db0 | file object: 0xffff948960728e30 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\X86\MpClient.dll
pool: 0xffff9489607290d0 | file object: 0xffff948960729150 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\X86\MpDetours.dll
pool: 0xffff948960729260 | file object: 0xffff9489607292e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\legacy-streams-bf61acc750dc495f3e8acd8053e39b99.code
pool: 0xffff9489607293f0 | file object: 0xffff948960729470 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\clone-7b64a42a63c639fbb5feba3370ae7bae.code
pool: 0xffff948960729580 | file object: 0xffff948960729600 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\X86\MpCmdRun.exe
pool: 0xffff948960729710 | file object: 0xffff948960729790 | offsetby: 0x80
\Windows\Prefetch\MPCMDRUN.EXE-BE077402.pf
pool: 0xffff9489607298a0 | file object: 0xffff948960729920 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\ProtectionManagement.dll
pool: 0xffff948960729a30 | file object: 0xffff948960729ab0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\X86\MsMpLics.dll
pool: 0xffff948960729bc0 | file object: 0xffff948960729c40 | offsetby: 0x80
\$Directory
pool: 0xffff948960729d50 | file object: 0xffff948960729dd0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\en-US\mpasdesc.dll.mui
pool: 0xffff94896072a070 | file object: 0xffff94896072a0f0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\semver-umd-4cea0a320369129e9b6994ea935e4c30.code
pool: 0xffff94896072a200 | file object: 0xffff94896072a280 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\Drivers\WdNisDrv.sys
pool: 0xffff94896072a390 | file object: 0xffff94896072a410 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\bootstrap-window.js
pool: 0xffff94896072a520 | file object: 0xffff94896072a5a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896072a6b0 | file object: 0xffff94896072a730 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\windowsPtyAgent-63612e9b2173786934b63be40d8e8572.code
pool: 0xffff94896072a840 | file object: 0xffff94896072a8c0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\ProtectionManagement.mof
pool: 0xffff94896072a9d0 | file object: 0xffff94896072aa50 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\X86\MpOAV.dll
pool: 0xffff94896072ab60 | file object: 0xffff94896072abe0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Configuration.Install\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Configuration.Install.dll
pool: 0xffff94896072acf0 | file object: 0xffff94896072ad70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896072b010 | file object: 0xffff94896072b090 | offsetby: 0x80
\$Directory
pool: 0xffff94896072b1a0 | file object: 0xffff94896072b220 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896072b330 | file object: 0xffff94896072b3b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-0b2d12840dacf18c195aeddfbef3bcec.code
pool: 0xffff94896072b4c0 | file object: 0xffff94896072b540 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V48e6e4d8#\efcf0f139287d0ba0c7e0efeeeeccf01\Microsoft.VisualStudio.Diff.ni.dll
pool: 0xffff94896072b650 | file object: 0xffff94896072b6d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896072b7e0 | file object: 0xffff94896072b860 | offsetby: 0x80
\Windows\Fonts\segoeuib.ttf
pool: 0xffff94896072b970 | file object: 0xffff94896072b9f0 | offsetby: 0x80
\$Directory
pool: 0xffff94896072bb00 | file object: 0xffff94896072bb80 | offsetby: 0x80
\Windows\Fonts\segoeuii.ttf
pool: 0xffff94896072bc90 | file object: 0xffff94896072bd10 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpenginedb.db-shm
pool: 0xffff94896072be20 | file object: 0xffff94896072bea0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MpAzSubmit.dll
pool: 0xffff94896072c140 | file object: 0xffff94896072c1c0 | offsetby: 0x80
\Windows\Fonts\segoeuil.ttf
pool: 0xffff94896072c2d0 | file object: 0xffff94896072c350 | offsetby: 0x80
pool: 0xffff94896072c460 | file object: 0xffff94896072c4e0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpenginedb.db-wal
pool: 0xffff94896072c5f0 | file object: 0xffff94896072c670 | offsetby: 0x80
\$Directory
pool: 0xffff94896072c780 | file object: 0xffff94896072c800 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A}\mpasbase.vdm
pool: 0xffff94896072c910 | file object: 0xffff94896072c990 | offsetby: 0x80
\$Directory
pool: 0xffff94896072caa0 | file object: 0xffff94896072cb20 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\bindings-db0b96e23af853baa6ea8359a94a32c0.code
pool: 0xffff94896072cc30 | file object: 0xffff94896072ccb0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-2698819e3bdc257ca6df3990d24fd632.code
pool: 0xffff94896072cdc0 | file object: 0xffff94896072ce40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896072d0e0 | file object: 0xffff94896072d160 | offsetby: 0x80
\Windows\System32\en-US\twext.dll.mui
pool: 0xffff94896072d270 | file object: 0xffff94896072d2f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\git\dist\main.js
pool: 0xffff94896072d400 | file object: 0xffff94896072d480 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ManagedProjectSystem\Microsoft.VisualStudio.ProjectSystem.Managed.VS.pkgdef
pool: 0xffff94896072d590 | file object: 0xffff94896072d610 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-46e042aa569d820a74d58875cc4cdccd.code
pool: 0xffff94896072d720 | file object: 0xffff94896072d7a0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A}\mpavbase.vdm
pool: 0xffff94896072d8b0 | file object: 0xffff94896072d930 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\controller\Microsoft.VisualStudio.RemoteControl.dll
pool: 0xffff94896072da40 | file object: 0xffff94896072dac0 | offsetby: 0x80
\Windows\Fonts\segoeui.ttf
pool: 0xffff94896072dbd0 | file object: 0xffff94896072dc50 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\User\snippets
pool: 0xffff94896072dd60 | file object: 0xffff94896072dde0 | offsetby: 0x80
\$Directory
pool: 0xffff94896072e080 | file object: 0xffff94896072e100 | offsetby: 0x80
\$Directory
pool: 0xffff94896072e210 | file object: 0xffff94896072e290 | offsetby: 0x80
\Windows\Fonts\arialbi.ttf
pool: 0xffff94896072e3a0 | file object: 0xffff94896072e420 | offsetby: 0x80
\Windows\Fonts\seguili.ttf
pool: 0xffff94896072e530 | file object: 0xffff94896072e5b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896072e6c0 | file object: 0xffff94896072e740 | offsetby: 0x80
\Windows\Fonts\ariali.ttf
pool: 0xffff94896072e850 | file object: 0xffff94896072e8d0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\FSharp.Projd4f911f5#\5d4e838b73f97bcf3c602b48fdf9de6f\FSharp.ProjectSystem.FSharp.ni.dll
pool: 0xffff94896072e9e0 | file object: 0xffff94896072ea60 | offsetby: 0x80
\Windows\Fonts\arialbd.ttf
pool: 0xffff94896072eb70 | file object: 0xffff94896072ebf0 | offsetby: 0x80
\Windows\Fonts\seguibli.ttf
pool: 0xffff94896072ed00 | file object: 0xffff94896072ed80 | offsetby: 0x80
\$Directory
pool: 0xffff94896072f020 | file object: 0xffff94896072f0a0 | offsetby: 0x80
\Windows\Fonts\seguibl.ttf
pool: 0xffff94896072f1b0 | file object: 0xffff94896072f230 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\native-is-elevated\build\Release\iselevated.node
pool: 0xffff94896072f340 | file object: 0xffff94896072f3c0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Web.ApplicationServices\v4.0_4.0.0.0__31bf3856ad364e35\System.Web.ApplicationServices.dll
pool: 0xffff94896072f4d0 | file object: 0xffff94896072f550 | offsetby: 0x80
\$Directory
pool: 0xffff94896072f660 | file object: 0xffff94896072f6e0 | offsetby: 0x80
\$Directory
pool: 0xffff94896072f7f0 | file object: 0xffff94896072f870 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\ServiceHub\controller\Microsoft.VisualStudio.Utilities.Internal.dll
pool: 0xffff94896072f980 | file object: 0xffff94896072fa00 | offsetby: 0x80
\Windows\Fonts\seguisli.ttf
pool: 0xffff94896072fb10 | file object: 0xffff94896072fb90 | offsetby: 0x80
\$Directory
pool: 0xffff94896072fca0 | file object: 0xffff94896072fd20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShareApi\Microsoft.VisualStudio.LiveShare.pkgdef
pool: 0xffff94896072fe30 | file object: 0xffff94896072feb0 | offsetby: 0x80
\Windows\Fonts\segoeuisl.ttf
pool: 0xffff948960730150 | file object: 0xffff9489607301d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ManagedProjectSystem\ProjectSelectors.pkgdef
pool: 0xffff9489607302e0 | file object: 0xffff948960730360 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ManagedProjectSystem\ProjectSystem.pkgdef
pool: 0xffff948960730470 | file object: 0xffff9489607304f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Modeling\16.0\DslRuntimeRegistry_x86.pkgdef
pool: 0xffff948960730600 | file object: 0xffff948960730680 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ManagedProjectSystem\Microsoft.VisualStudio.ProjectSystem.Managed.VS.Client.pkgdef
pool: 0xffff948960730790 | file object: 0xffff948960730810 | offsetby: 0x80
\Windows\Fonts\seguisb.ttf
pool: 0xffff948960730920 | file object: 0xffff9489607309a0 | offsetby: 0x80
\Windows\Fonts\seguisbi.ttf
pool: 0xffff948960730ab0 | file object: 0xffff948960730b30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Modeling\16.0\ToolIntegration_VsModelBus_x86.pkgdef
pool: 0xffff948960730c40 | file object: 0xffff948960730cc0 | offsetby: 0x80
\Windows\Fonts\segoeuiz.ttf
pool: 0xffff948960730dd0 | file object: 0xffff948960730e50 | offsetby: 0x80
\Windows\Fonts\arial.ttf
pool: 0xffff9489607310f0 | file object: 0xffff948960731170 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\CoreTestTypeRegistry_ui_VisualStudio_38103.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff948960731280 | file object: 0xffff948960731300 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\DevToolsRegistry.pkgdef
pool: 0xffff948960731410 | file object: 0xffff948960731490 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\QT.TestCaseManagement.dll_26328_VisualStudio_____x86.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489607315a0 | file object: 0xffff948960731620 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\QT.TestCaseManagement.dll_26328_FileExts_Core_VisualStudio_x86.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff948960731730 | file object: 0xffff9489607317b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\QT.TestProject.Registry_31859_CSharp_VisualStudio.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489607318c0 | file object: 0xffff948960731940 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\QT.TestProject.Registry_31859_VB_VisualStudio.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff948960731a50 | file object: 0xffff948960731ad0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960731be0 | file object: 0xffff948960731c60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Common\NonCoreTests.pkgdef
pool: 0xffff948960731d70 | file object: 0xffff948960731df0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\TestListEditorRegistry.pkgdef
pool: 0xffff948960732090 | file object: 0xffff948960732110 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Common\RemoteExecution_Reg.pkgdef
pool: 0xffff948960732220 | file object: 0xffff9489607322a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489607323b0 | file object: 0xffff948960732430 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\ControllerListenerPortRange_x86.pkgdef
pool: 0xffff948960732540 | file object: 0xffff9489607325c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\QT.TestProject.Registry_31859_VC_VisualStudio.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489607326d0 | file object: 0xffff948960732750 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\TestTools_CS_Snippets_Registration.pkgdef
pool: 0xffff948960732860 | file object: 0xffff9489607328e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\TestTools_VB_Snippets_Registration.pkgdef
pool: 0xffff9489607329f0 | file object: 0xffff948960732a70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\VsGraphics\toolboxitemdata.pkgdef
pool: 0xffff948960732b80 | file object: 0xffff948960732c00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\VsGraphics\VsGraphics_Microsoft_VisualStudio_Graphics_dll_Component_x86.pkgdef
pool: 0xffff948960732d10 | file object: 0xffff948960732d90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\QT.TestProject.Registry_31859_NoLang_VisualStudio.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff948960733030 | file object: 0xffff9489607330b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\QT.TestCaseManagement.dll_26328_FileExts_x86.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489607331c0 | file object: 0xffff948960733240 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\RemoteExecutionUI_Reg.pkgdef
pool: 0xffff948960733350 | file object: 0xffff9489607333d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\Test_SKU_License_Key_35172.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489607334e0 | file object: 0xffff948960733560 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\Wizards\Microsoft.VC.Wizards.pkgdef
pool: 0xffff948960733670 | file object: 0xffff9489607336f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960733800 | file object: 0xffff948960733880 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Core\TfsIntegrationRegistry.pkgdef
pool: 0xffff948960733990 | file object: 0xffff948960733a10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Portable Library Tools\Microsoft.VisualStudio.PortableLibrary.pkgdef
pool: 0xffff948960733b20 | file object: 0xffff948960733ba0 | offsetby: 0x80
\$Directory
pool: 0xffff948960733cb0 | file object: 0xffff948960733d30 | offsetby: 0x80
\$Directory
pool: 0xffff948960733e40 | file object: 0xffff948960733ec0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Tips\QT.TuipPackage.dll_27369_____VisualStudio_x86.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff948960734160 | file object: 0xffff9489607341e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Tips\TestSKURegistry_37810.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489607342f0 | file object: 0xffff948960734370 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\VC\ClassWizard\ClwWizard.pkgdef
pool: 0xffff948960734480 | file object: 0xffff948960734500 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Browser Link\Microsoft.WebTools.BrowserLink.Package.pkgdef
pool: 0xffff948960734610 | file object: 0xffff948960734690 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\TipsCommon\OrderedTestService_Reg.pkgdef
pool: 0xffff9489607347a0 | file object: 0xffff948960734820 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\WebJobs\Microsoft.WebTools.Azure.Functions.pkgdef
pool: 0xffff948960734930 | file object: 0xffff9489607349b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Html.VS.Colors.pkgdef
pool: 0xffff948960734ac0 | file object: 0xffff948960734b40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Json.VS.pkgdef
pool: 0xffff948960734c50 | file object: 0xffff948960734cd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Razor.Core.pkgdef
pool: 0xffff948960734de0 | file object: 0xffff948960734e60 | offsetby: 0x80
\$Directory
pool: 0xffff948960735100 | file object: 0xffff948960735180 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\TipsCommon\GenericTestService_Reg.pkgdef
pool: 0xffff948960735290 | file object: 0xffff948960735310 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web\Mvc\Microsoft.VisualStudio.Web.Mvc.pkgdef
pool: 0xffff948960735420 | file object: 0xffff9489607354a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Unit Test Explorer\TestWIExtension\Microsoft.TeamFoundation.TestManagement.TestMethodAssociationExtension.pkgdef
pool: 0xffff9489607355b0 | file object: 0xffff948960735630 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\TipsCommon\UnitTestService_Reg.pkgdef
pool: 0xffff948960735740 | file object: 0xffff9489607357c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\Microsoft.VisualStudio.Web.Azure.pkgdef
pool: 0xffff9489607358d0 | file object: 0xffff948960735950 | offsetby: 0x80
\$Directory
pool: 0xffff948960735a60 | file object: 0xffff948960735ae0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\WebJobs\Microsoft.WebTools.Azure.WebJobs.Package.pkgdef
pool: 0xffff948960735bf0 | file object: 0xffff948960735c70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\CodeGenerators\Microsoft.WebTools.CodeGenerators.pkgdef
pool: 0xffff948960735d80 | file object: 0xffff948960735e00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Html.VS.pkgdef
pool: 0xffff9489607360a0 | file object: 0xffff948960736120 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\VsGraphics\microsoft.visualstudio.graphics.colors.pkgdef
pool: 0xffff948960736230 | file object: 0xffff9489607362b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Extensions.pkgdef
pool: 0xffff9489607363c0 | file object: 0xffff948960736440 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Templates.pkgdef
pool: 0xffff948960736550 | file object: 0xffff9489607365d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Tips\TesterTestTypeRegistry_38104.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489607366e0 | file object: 0xffff948960736760 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\Microsoft.VisualStudio.Web.Azure.Common.pkgdef
pool: 0xffff948960736870 | file object: 0xffff9489607368f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960736a00 | file object: 0xffff948960736a80 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\77EC63BDA74BD0D0E0426DC8F8008506
pool: 0xffff948960736b90 | file object: 0xffff948960736c10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TestTools\Legacy\Tips\QT.TuipPackage.dll_27369_____x86.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff948960736d20 | file object: 0xffff948960736da0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\ItemTemplates.pkgdef
pool: 0xffff948960737040 | file object: 0xffff9489607370c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\Templates\Microsoft.WebTools.Azure.Templates.pkgdef
pool: 0xffff9489607371d0 | file object: 0xffff948960737250 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\VsGraphics\microsoft.visualstudio.graphics.pkgdef
pool: 0xffff948960737360 | file object: 0xffff9489607373e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Scaffolding\Microsoft.WebTools.Scaffolding.VS.pkgdef
pool: 0xffff9489607374f0 | file object: 0xffff948960737570 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Common\Microsoft.VisualStudio.WindowsAzure.CommonAzureTools.Package.pkgdef
pool: 0xffff948960737680 | file object: 0xffff948960737700 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\RemoteDebugger\Microsoft.VisualStudio.WindowsAzure.RemoteDebugger.pkgdef
pool: 0xffff948960737810 | file object: 0xffff948960737890 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Project\Microsoft.VisualStudio.Web.Project.pkgdef
pool: 0xffff9489607379a0 | file object: 0xffff948960737a20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Resource Manager\Microsoft.VisualStudio.Azure.ResourceManager.Package.pkgdef
pool: 0xffff948960737b30 | file object: 0xffff948960737bb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools Diagnostics\Microsoft.VisualStudio.WindowsAzure.AzureDiagnostics.pkgdef
pool: 0xffff948960737cc0 | file object: 0xffff948960737d40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\mu2fxzxx.q20\Microsoft.VisualStudio.Package.NodeJs.pkgdef
pool: 0xffff948960737e50 | file object: 0xffff948960737ed0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\nuyyjiec.xhl\Microsoft.VisualStudio.Containers.Tools.Extensions.Package.pkgdef
pool: 0xffff948960738170 | file object: 0xffff9489607381f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Deployment Project\Microsoft.VisualStudio.Azure.Deployment.pkgdef
pool: 0xffff948960738300 | file object: 0xffff948960738380 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Azure.DevSpaces.Tools.Package.pkgdef
pool: 0xffff948960738490 | file object: 0xffff948960738510 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools Shared\Shared.pkgdef
pool: 0xffff948960738620 | file object: 0xffff9489607386a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Resource Manager\ResourceManagerColors.pkgdef
pool: 0xffff9489607387b0 | file object: 0xffff948960738830 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Azure.DevSpaces.Tools.Settings.pkgdef
pool: 0xffff948960738940 | file object: 0xffff9489607389c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\TaskRunnerExplorer\Microsoft.WebTools.TaskRunnerExplorer.Colors.pkgdef
pool: 0xffff948960738ad0 | file object: 0xffff948960738b50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Library Manager\Microsoft.Web.LibraryManager.Vsix.pkgdef
pool: 0xffff948960738c60 | file object: 0xffff948960738ce0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Common\Microsoft.VisualStudio.PowerShellTools.Package.pkgdef
pool: 0xffff948960738df0 | file object: 0xffff948960738e70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\v2.9\Microsoft.VisualStudio.WindowsAzure.2.9.pkgdef
pool: 0xffff948960739110 | file object: 0xffff948960739190 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\TaskRunnerExplorer\Microsoft.WebTools.TaskRunnerExplorer.Extensions.pkgdef
pool: 0xffff9489607392a0 | file object: 0xffff948960739320 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Microsoft.VisualStudio.WindowsAzure.pkgdef
pool: 0xffff948960739430 | file object: 0xffff9489607394b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Publish\Microsoft.WebTools.Publish.pkgdef
pool: 0xffff9489607395c0 | file object: 0xffff948960739640 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Publish\Publish_VSPropertyPage_Reg.pkgdef
pool: 0xffff948960739750 | file object: 0xffff9489607397d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\ProjectSystem\Microsoft.WebTools.ProjectSystem.Components.pkgdef
pool: 0xffff9489607398e0 | file object: 0xffff948960739960 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\TaskRunnerExplorer\Microsoft.WebTools.TaskRunnerExplorer.pkgdef
pool: 0xffff948960739a70 | file object: 0xffff948960739af0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools Shared\Shared.Web.pkgdef
pool: 0xffff948960739c00 | file object: 0xffff948960739c80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Common\CATColors.pkgdef
pool: 0xffff948960739d90 | file object: 0xffff948960739e10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\AdditionalDependencies.pkgdef
pool: 0xffff94896073a0b0 | file object: 0xffff94896073a130 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Shared.VS.pkgdef
pool: 0xffff94896073a240 | file object: 0xffff94896073a2c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Package Management\Microsoft.WebTools.PackageManagement.pkgdef
pool: 0xffff94896073a3d0 | file object: 0xffff94896073a450 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\ProjectSystem\Microsoft.WebTools.ProjectSystem.pkgdef
pool: 0xffff94896073a560 | file object: 0xffff94896073a5e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\ProTools\VSData_Sources_MSSqlServer_Reg_VS.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896073a6f0 | file object: 0xffff94896073a770 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\ProTools\VS_Designer_Reg_VS_26726.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896073a880 | file object: 0xffff94896073a900 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\StaticAnalysis\stanpackage.vrg_45400.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896073aa10 | file object: 0xffff94896073aa90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\StaticAnalysis\stanpolicy.dll_42798_____x86.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896073aba0 | file object: 0xffff94896073ac20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\StaticAnalysis\Stan_RulesetEditor_reg_x86.pkgdef
pool: 0xffff94896073ad30 | file object: 0xffff94896073adb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\ProTools\VSData_Sources_MSSqlServerDBFile_Reg_VS.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896073b050 | file object: 0xffff94896073b0d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\StaticAnalysis\StanCore_reg.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896073b1e0 | file object: 0xffff94896073b260 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\StaticAnalysis\StanPackage_SolutionPage_reg.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896073b370 | file object: 0xffff94896073b3f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\StaticAnalysis\CodeAnalysis_Directories_x86.pkgdef
pool: 0xffff94896073b500 | file object: 0xffff94896073b580 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\txxba55a.20s\Microsoft.VisualStudio.DevOps.Package.15.0.pkgdef
pool: 0xffff94896073b690 | file object: 0xffff94896073b710 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Kubernetes.Tools.Package.pkgdef
pool: 0xffff94896073b820 | file object: 0xffff94896073b8a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\ProTools\VSData_Providers_SqlServer_Reg_VS.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896073b9b0 | file object: 0xffff94896073ba30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\ProTools\VSData_Sources_OracleDB_Reg_VS.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896073bb40 | file object: 0xffff94896073bbc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\vhgjvwa1.wfw\Microsoft.VisualStudio.Templates.AssemblyInfo.Wizard.pkgdef
pool: 0xffff94896073bcd0 | file object: 0xffff94896073bd50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\DataDesign\Microsoft.VisualStudio.ServerExplorer.pkgdef
pool: 0xffff94896073be60 | file object: 0xffff94896073bee0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\ProTools\VSData_Providers_Oracle_Reg_VS.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896073c180 | file object: 0xffff94896073c200 | offsetby: 0x80
\$Directory
pool: 0xffff94896073c310 | file object: 0xffff94896073c390 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\AppCapabilitiesDesigner\Microsoft.VisualStudio.TabDesigner.Implementation.pkgdef
pool: 0xffff94896073c4a0 | file object: 0xffff94896073c520 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\ProTools\Vis_DB_Tools_Reg_17108.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896073c630 | file object: 0xffff94896073c6b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\LowImpactVsFeatureFlags.pkgdef
pool: 0xffff94896073c7c0 | file object: 0xffff94896073c840 | offsetby: 0x80
\$Directory
pool: 0xffff94896073c950 | file object: 0xffff94896073c9d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\ProjectShellFileAssociations.pkgdef
pool: 0xffff94896073cae0 | file object: 0xffff94896073cb60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\DataDesign\DataDesign.pkgdef
pool: 0xffff94896073cc70 | file object: 0xffff94896073ccf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Architecture Tools\GraphProviderPackage\GraphProviderPackage.pkgdef
pool: 0xffff94896073ce00 | file object: 0xffff94896073ce80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\zkaemjb2.lop\Microsoft.VisualStudio.CloudExplorer.Package.pkgdef
pool: 0xffff94896073d120 | file object: 0xffff94896073d1a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\qlbscfin.1er\GoogleTestAdapter.VsPackage.TAfGT.pkgdef
pool: 0xffff94896073d2b0 | file object: 0xffff94896073d330 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\StaticAnalysis\CodeAnalysis_RuleSetIcon_reg.pkgdef
pool: 0xffff94896073d440 | file object: 0xffff94896073d4c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\ProTools\VSData_Compatibility_Reg_VS.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896073d5d0 | file object: 0xffff94896073d650 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\StaticAnalysis\StanCore_reg2.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896073d760 | file object: 0xffff94896073d7e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Web\Project\Web_Prj_Reg_for_VS_No_PPE.pkgdef
pool: 0xffff94896073d8f0 | file object: 0xffff94896073d970 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Web\Razor\v3.0\Microsoft.WebTools.Languages.Razor.3.pkgdef
pool: 0xffff94896073da80 | file object: 0xffff94896073db00 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-seti\icons\seti.woff
pool: 0xffff94896073dc10 | file object: 0xffff94896073dc90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CMake\Microsoft.VisualStudio.CMake.Package.pkgdef
pool: 0xffff94896073dda0 | file object: 0xffff94896073de20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VisualStudio\Editors\Microsoft.VisualStudio.Editors.pkgdef
pool: 0xffff94896073e0c0 | file object: 0xffff94896073e140 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VSLog\VSLog.pkgdef
pool: 0xffff94896073e250 | file object: 0xffff94896073e2d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VSTelemetry\VSTelemetryPackage.pkgdef
pool: 0xffff94896073e3e0 | file object: 0xffff94896073e460 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ClientDiagnostics\AppResponsiveness\VisualProfilerColors.pkgdef
pool: 0xffff94896073e570 | file object: 0xffff94896073e5f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CS\VCSharp_Proj_System_Reg.pkgdef
pool: 0xffff94896073e700 | file object: 0xffff94896073e780 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Architecture Tools\Providers\NativeCode\Microsoft.VisualStudio.Progression.Native.CodeProvider.pkgdef
pool: 0xffff94896073e890 | file object: 0xffff94896073e910 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Commands\Microsoft.VisualStudio.Commands.pkgdef
pool: 0xffff94896073ea20 | file object: 0xffff94896073eaa0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Web\ASPX\Microsoft.VisualStudio.Web.HTML.Implementation.pkgdef
pool: 0xffff94896073ebb0 | file object: 0xffff94896073ec30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Web\Project\Microsoft.VisualStudio.Web.pkgdef
pool: 0xffff94896073ed40 | file object: 0xffff94896073edc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CS\VCSharp_Proj_System_b_Reg.pkgdef
pool: 0xffff94896073f060 | file object: 0xffff94896073f0e0 | offsetby: 0x80
\$Directory
pool: 0xffff94896073f1f0 | file object: 0xffff94896073f270 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Architecture Tools\GraphProviderPackage\Microsoft.VisualStudio.GraphProviderPackage.pkgdef
pool: 0xffff94896073f380 | file object: 0xffff94896073f400 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CallHierarchy\Microsoft.VisualStudio.Platform.CallHierarchy.pkgdef
pool: 0xffff94896073f510 | file object: 0xffff94896073f590 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ClientDiagnostics\ClientDiagnostics.pkgdef
pool: 0xffff94896073f6a0 | file object: 0xffff94896073f720 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\DesignTools\Microsoft.VisualStudio.DesignTools.XamlDesignerHost.pkgdef
pool: 0xffff94896073f830 | file object: 0xffff94896073f8b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Web\Project\Web_Prj_Reg_for_VS.pkgdef
pool: 0xffff94896073f9c0 | file object: 0xffff94896073fa40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CrossRepositorySearch\Microsoft.VisualStudio.Platform.CrossRepositorySearch.pkgdef
pool: 0xffff94896073fb50 | file object: 0xffff94896073fbd0 | offsetby: 0x80
\Windows\Prefetch\MSMPENG.EXE-65EDD167.pf
pool: 0xffff94896073fce0 | file object: 0xffff94896073fd60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VSLog\Microsoft.VisualStudio.PerfWatson.Provider.pkgdef
pool: 0xffff94896073fe70 | file object: 0xffff94896073fef0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Web\ASPX\HTML_Editor_Reg.pkgdef
pool: 0xffff948960740000 | file object: 0xffff948960740080 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ClientDiagnostics\CommonColors.pkgdef
pool: 0xffff948960740190 | file object: 0xffff948960740210 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VisualStudio\Editors\VisualStudioEditorsSetup.pkgdef
pool: 0xffff948960740320 | file object: 0xffff9489607403a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Connected\Microsoft.VisualStudio.Shell.Connected.pkgdef
pool: 0xffff9489607404b0 | file object: 0xffff948960740530 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Web\html_designer_reg.pkgdef
pool: 0xffff948960740640 | file object: 0xffff9489607406c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Web\Exports\Microsoft.VisualStudio.Web.Exports.pkgdef
pool: 0xffff9489607407d0 | file object: 0xffff948960740850 | offsetby: 0x80
\$Directory
pool: 0xffff948960740960 | file object: 0xffff9489607409e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.TemplateProviders.Implementation.dll
pool: 0xffff948960740af0 | file object: 0xffff948960740b70 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-defaults\themes\dark_vs.json
pool: 0xffff948960740c80 | file object: 0xffff948960740d00 | offsetby: 0x80
\$Directory
pool: 0xffff948960740e10 | file object: 0xffff948960740e90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960741130 | file object: 0xffff9489607411b0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\clojure\package.nls.json
pool: 0xffff9489607412c0 | file object: 0xffff948960741340 | offsetby: 0x80
\$Directory
pool: 0xffff948960741450 | file object: 0xffff9489607414d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489607415e0 | file object: 0xffff948960741660 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\coffeescript\package.json
pool: 0xffff948960741770 | file object: 0xffff9489607417f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\configuration-editing\package.json
pool: 0xffff948960741900 | file object: 0xffff948960741980 | offsetby: 0x80
\$Directory
pool: 0xffff948960741a90 | file object: 0xffff948960741b10 | offsetby: 0x80
\$Directory
pool: 0xffff948960741c20 | file object: 0xffff948960741ca0 | offsetby: 0x80
\$Directory
pool: 0xffff948960741db0 | file object: 0xffff948960741e30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\LanguageServer\Microsoft.VisualStudio.VC.LanguageServer.dll
pool: 0xffff948960802160 | file object: 0xffff9489608021e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editorconfig\Wizard\Microsoft.VisualStudio.Templates.Editorconfig.Wizard.Setup.pkgdef
pool: 0xffff9489608022f0 | file object: 0xffff948960802370 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Editor.pkgdef
pool: 0xffff948960802480 | file object: 0xffff948960802500 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpClient.dll
pool: 0xffff948960802610 | file object: 0xffff948960802690 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpCommu.dll
pool: 0xffff9489608027a0 | file object: 0xffff948960802820 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MsMpLics.dll
pool: 0xffff948960802930 | file object: 0xffff9489608029b0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpUpdate.dll
pool: 0xffff948960802ac0 | file object: 0xffff948960802b40 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\Drivers\WdBoot.sys
pool: 0xffff948960802c50 | file object: 0xffff948960802cd0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpDetours.dll
pool: 0xffff948960802de0 | file object: 0xffff948960802e60 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\NisSrv.exe
pool: 0xffff948960803100 | file object: 0xffff948960803180 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpSvc.dll
pool: 0xffff948960803290 | file object: 0xffff948960803310 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\WebClient\Diagnostics\EdgeDebugAdapter\MSEdgeDebugAdapterHost.pkgdef
pool: 0xffff948960803420 | file object: 0xffff9489608034a0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\ProtectionManagement.dll
pool: 0xffff9489608035b0 | file object: 0xffff948960803630 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpCmdRun.exe
pool: 0xffff948960803740 | file object: 0xffff9489608037c0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Azure.DataLake.Tools.VisualStudio.Extension,version=2.4.6000.1\_package.json
pool: 0xffff9489608038d0 | file object: 0xffff948960803950 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpOAV.dll
pool: 0xffff948960803a60 | file object: 0xffff948960803ae0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpAzSubmit.dll
pool: 0xffff948960803bf0 | file object: 0xffff948960803c70 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpRtp.dll
pool: 0xffff948960803d80 | file object: 0xffff948960803e00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\DesktopBridge\Microsoft.VisualStudio.DesktopBridge.ProjectSystem.pkgdef
pool: 0xffff9489608040a0 | file object: 0xffff948960804120 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\EBF\Microsoft.VisualStudio.Workspace.ExternalBuildFramework.VS.pkgdef
pool: 0xffff948960804230 | file object: 0xffff9489608042b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489608043c0 | file object: 0xffff948960804440 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MsMpEng.exe
pool: 0xffff948960804550 | file object: 0xffff9489608045d0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\MpCmdRun.exe
pool: 0xffff9489608046e0 | file object: 0xffff948960804760 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MpCommu.dll
pool: 0xffff948960804870 | file object: 0xffff9489608048f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\MsMpLics.dll
pool: 0xffff948960804a00 | file object: 0xffff948960804a80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Diff.CommandLineSwitch.pkgdef
pool: 0xffff948960804b90 | file object: 0xffff948960804c10 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\DefenderCSP.dll
pool: 0xffff948960804d20 | file object: 0xffff948960804da0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Diagnostics\diagnostics.common.pkgdef
pool: 0xffff948960805040 | file object: 0xffff9489608050c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Diff.pkgdef
pool: 0xffff9489608051d0 | file object: 0xffff948960805250 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Editor.Implementation.pkgdef
pool: 0xffff948960805360 | file object: 0xffff9489608053e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Microsoft.VisualStudio.Setup.Download.dll
pool: 0xffff9489608054f0 | file object: 0xffff948960805570 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\xml\package.json
pool: 0xffff948960805680 | file object: 0xffff948960805700 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\X86\MpClient.dll
pool: 0xffff948960805810 | file object: 0xffff948960805890 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\X86\MpDetours.dll
pool: 0xffff9489608059a0 | file object: 0xffff948960805a20 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpDlpCmd.exe
pool: 0xffff948960805b30 | file object: 0xffff948960805bb0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\endpointdlp.dll
pool: 0xffff948960805cc0 | file object: 0xffff948960805d40 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\merge-conflict\package.nls.json
pool: 0xffff948960805e50 | file object: 0xffff948960805ed0 | offsetby: 0x80
\$Directory
pool: 0xffff948960806170 | file object: 0xffff9489608061f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MpPrintFlt.dll
pool: 0xffff948960806300 | file object: 0xffff948960806380 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\Drivers\WdNisDrv.sys
pool: 0xffff948960806490 | file object: 0xffff948960806510 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\merge-conflict\package.json
pool: 0xffff948960806620 | file object: 0xffff9489608066a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\merge-conflict\dist\nls.metadata.header.json
pool: 0xffff9489608067b0 | file object: 0xffff948960806830 | offsetby: 0x80
€rs\User\AppData\Roaming\npm\create-r
pool: 0xffff948960806940 | file object: 0xffff9489608069c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960806ad0 | file object: 0xffff948960806b50 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\yaml\package.json
pool: 0xffff948960806c60 | file object: 0xffff948960806ce0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\PowerShell\PSReadLine\ConsoleHost_history.txte-16.pngge.nl
pool: 0xffff948960806df0 | file object: 0xffff948960806e70 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\X86\MpCmdRun.exe
pool: 0xffff948960807110 | file object: 0xffff948960807190 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\Drivers\WdFilter.sys
pool: 0xffff9489608072a0 | file object: 0xffff948960807320 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\X86\MpOAV.dll
pool: 0xffff948960807430 | file object: 0xffff9489608074b0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\X86\MsMpLics.dll
pool: 0xffff9489608075c0 | file object: 0xffff948960807640 | offsetby: 0x80
\$Directory
pool: 0xffff948960807750 | file object: 0xffff9489608077d0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c\C
pool: 0xffff9489608078e0 | file object: 0xffff948960807960 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MpRtp.dll
pool: 0xffff948960807a70 | file object: 0xffff948960807af0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\vscode-account\package.json
pool: 0xffff948960807c00 | file object: 0xffff948960807c80 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\objective-c\package.nls.json.jsonnls.js
pool: 0xffff948960807d90 | file object: 0xffff948960807e10 | offsetby: 0x80
\$Directory
pool: 0xffff9489608080b0 | file object: 0xffff948960808130 | offsetby: 0x80
\$Directory
pool: 0xffff948960808240 | file object: 0xffff9489608082c0 | offsetby: 0x80
괁ܐ扏捓dows넀薫舎￿≱⇔䑲㷚˜蠄€ŒlāĀȁ8Ѐ겫擨쌗얫଑㯗졭誝툳朘䔡㕅茒⏿ᶧāԀāԀȁȁ
pool: 0xffff9489608083d0 | file object: 0xffff948960808450 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\ms-vscode.node-debug\package.nls.json
pool: 0xffff948960808560 | file object: 0xffff9489608085e0 | offsetby: 0x80
\Windows\System32\spoolsv.exe
pool: 0xffff9489608086f0 | file object: 0xffff948960808770 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editors\Microsoft.VisualStudio.Editors.WCF.pkgdef
pool: 0xffff948960808880 | file object: 0xffff948960808900 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editors\Microsoft.VSDesigner.WCF.pkgdef
pool: 0xffff948960808a10 | file object: 0xffff948960808a90 | offsetby: 0x80
\$Directory
pool: 0xffff948960808ba0 | file object: 0xffff948960808c20 | offsetby: 0x80
\Windows\System32\wbem\mofd.dll
pool: 0xffff948960808d30 | file object: 0xffff948960808db0 | offsetby: 0x80
\Windows\System32\wbem\mofd.dll
pool: 0xffff948960809050 | file object: 0xffff9489608090d0 | offsetby: 0x80
\Windows\Prefetch\TASKKILL.EXE-8F5B2253.pf
pool: 0xffff9489608091e0 | file object: 0xffff948960809260 | offsetby: 0x80
System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces781EF.pfnsions\python\package.json2\package.json
pool: 0xffff948960809370 | file object: 0xffff9489608093f0 | offsetby: 0x80
\Windows\Prefetch\MOFCOMP.EXE-8FE3D558.pf
pool: 0xffff948960809500 | file object: 0xffff948960809580 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\ms-vscode.node-debug2\package.nls.json
pool: 0xffff948960809690 | file object: 0xffff948960809710 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\_Instances\0f5aa209\catalog.json
pool: 0xffff948960809820 | file object: 0xffff9489608098a0 | offsetby: 0x80
\Windows\System32\en-US\taskkill.exe.mui
pool: 0xffff9489608099b0 | file object: 0xffff948960809a30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\extension.vsixmanifest
pool: 0xffff948960809b40 | file object: 0xffff948960809bc0 | offsetby: 0x80
\Windows\System32\taskkill.exe
pool: 0xffff948960809cd0 | file object: 0xffff948960809d50 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.VC.CoreIDE.Reduced,version=16.0.28315.86\_package.json
pool: 0xffff948960809e60 | file object: 0xffff948960809ee0 | offsetby: 0x80
\$Directory
pool: 0xffff94896080a180 | file object: 0xffff94896080a200 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896080a310 | file object: 0xffff94896080a390 | offsetby: 0x80
\$Directory
pool: 0xffff94896080a4a0 | file object: 0xffff94896080a520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896080a630 | file object: 0xffff94896080a6b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896080a7c0 | file object: 0xffff94896080a840 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896080a950 | file object: 0xffff94896080a9d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896080aae0 | file object: 0xffff94896080ab60 | offsetby: 0x80
\Windows\System32\wbem\mofcomp.exe
pool: 0xffff94896080ac70 | file object: 0xffff94896080acf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editors\Microsoft.VisualStudio.Editors.ClickOnce.pkgdef
pool: 0xffff94896080ae00 | file object: 0xffff94896080ae80 | offsetby: 0x80
\$Directory
pool: 0xffff94896080b120 | file object: 0xffff94896080b1a0 | offsetby: 0x80
\Windows\System32\wbem\en-US\mofd.dll.mui
pool: 0xffff94896080b2b0 | file object: 0xffff94896080b330 | offsetby: 0x80
\$Directory
pool: 0xffff94896080b440 | file object: 0xffff94896080b4c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896080b5d0 | file object: 0xffff94896080b650 | offsetby: 0x80
\$Directory
pool: 0xffff94896080b760 | file object: 0xffff94896080b7e0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\SetupWMI\Microsoft.VisualStudio.Setup.Management.mof
pool: 0xffff94896080b8f0 | file object: 0xffff94896080b970 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpenginedb.db
pool: 0xffff94896080ba80 | file object: 0xffff94896080bb00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\External Tools\GuidGen\GuidGen.pkgdef
pool: 0xffff94896080bc10 | file object: 0xffff94896080bc90 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\MpOAV.dll
pool: 0xffff94896080bda0 | file object: 0xffff94896080be20 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpenginedb.db-wal
pool: 0xffff94896080c0c0 | file object: 0xffff94896080c140 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\EFTools\Microsoft.Data.Entity.Design.Package.pkgdef
pool: 0xffff94896080c250 | file object: 0xffff94896080c2d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ErrorList\Microsoft.VisualStudio.ErrorListPkg.pkgdef
pool: 0xffff94896080c3e0 | file object: 0xffff94896080c460 | offsetby: 0x80
\Windows\System32\wbem\AutoRecover\4E9BED298E4A2447DA493DE14F1E57F4.mof
pool: 0xffff94896080c570 | file object: 0xffff94896080c5f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\External Tools\UtilsPreReq\GuidGen.pkgdef
pool: 0xffff94896080c700 | file object: 0xffff94896080c780 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpenginedb.db-shm
pool: 0xffff94896080c890 | file object: 0xffff94896080c910 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\FSharp\FSharp.LanguageService.Base.pkgdef
pool: 0xffff94896080ca20 | file object: 0xffff94896080caa0 | offsetby: 0x80
\$Directory
pool: 0xffff94896080cbb0 | file object: 0xffff94896080cc30 | offsetby: 0x80
\Windows\System32\wbem\AutoRecover\F225DFFFB8CA52645466A4FCAF618324.mof
pool: 0xffff94896080cd40 | file object: 0xffff94896080cdc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\FSharp\FSharp.ProjectSystem.FSharp.pkgdef
pool: 0xffff94896080d060 | file object: 0xffff94896080d0e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\External Tools\ErrLook\ErrLook.pkgdef
pool: 0xffff94896080d1f0 | file object: 0xffff94896080d270 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\FSharp\FSharp.ProjectSystem.PropertyPages.pkgdef
pool: 0xffff94896080d380 | file object: 0xffff94896080d400 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\IntelliTrace\IntelliTrace.pkgdef
pool: 0xffff94896080d510 | file object: 0xffff94896080d590 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\InteractiveWindow\Microsoft.VisualStudio.VsInteractiveWindow.pkgdef
pool: 0xffff94896080d6a0 | file object: 0xffff94896080d720 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\JSDiagnostics\Debugger\DebugAdapterExtensions.pkgdef
pool: 0xffff94896080d830 | file object: 0xffff94896080d8b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\LanguageServer\Microsoft.VisualStudio.LanguageServer.Client.Implementation.pkgdef
pool: 0xffff94896080d9c0 | file object: 0xffff94896080da40 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2004.6-0\ProtectionManagement.mof
pool: 0xffff94896080db50 | file object: 0xffff94896080dbd0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\rust\package.nls.jsonures\package.json
pool: 0xffff94896080dce0 | file object: 0xffff94896080dd60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896080de70 | file object: 0xffff94896080def0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\FSharp\FSharp.Editor.pkgdef
pool: 0xffff94896080e000 | file object: 0xffff94896080e080 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\FSharp\FSharp.LanguageService.pkgdef
pool: 0xffff94896080e190 | file object: 0xffff94896080e210 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\FSharp\FSharp.ProjectSystem.Base.pkgdef
pool: 0xffff94896080e320 | file object: 0xffff94896080e3a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896080e4b0 | file object: 0xffff94896080e530 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\EFTools\Microsoft.Data.Entity.Design.BootstrapPackage.pkgdef
pool: 0xffff94896080e640 | file object: 0xffff94896080e6c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\FSharp\FSharp.VS.FSI.pkgdef
pool: 0xffff94896080e7d0 | file object: 0xffff94896080e850 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\FSharp\RegisterFsharpPackage.pkgdef
pool: 0xffff94896080e960 | file object: 0xffff94896080e9e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Project\Microsoft.VisualStudio.Project.VS.Implementation.pkgdef
pool: 0xffff94896080eaf0 | file object: 0xffff94896080eb70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Project\msbuildproj.pkgdef
pool: 0xffff94896080ec80 | file object: 0xffff94896080ed00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ObjectBrowser\COMPlusLibraryManager.pkgdef
pool: 0xffff94896080ee10 | file object: 0xffff94896080ee90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Performance Tools\PerfPkg.pkgdef
pool: 0xffff94896080f130 | file object: 0xffff94896080f1b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.VisualStudio.LanguageServices.CSharp.pkgdef
pool: 0xffff94896080f2c0 | file object: 0xffff94896080f340 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\MDD\Debugger\Microsoft.SSHDebugPS.pkgdef
pool: 0xffff94896080f450 | file object: 0xffff94896080f4d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\MDD\Debugger\Microsoft.MIDebugEngine.pkgdef
pool: 0xffff94896080f5e0 | file object: 0xffff94896080f660 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\ExpressionEvaluators\ExpressionEvaluatorPackage.pkgdef
pool: 0xffff94896080f770 | file object: 0xffff94896080f7f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.VisualStudio.LanguageServices.LiveShare.pkgdef
pool: 0xffff94896080f900 | file object: 0xffff94896080f980 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NavigateTo\Microsoft.VisualStudio.Platform.NavigateTo.pkgdef
pool: 0xffff94896080fa90 | file object: 0xffff94896080fb10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\VisualBasicPackageRegistration.pkgdef
pool: 0xffff94896080fc20 | file object: 0xffff94896080fca0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.VisualStudio.LanguageServices.pkgdef
pool: 0xffff94896080fdb0 | file object: 0xffff94896080fe30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\MDD\Debugger\Microsoft.Kofe.Package.pkgdef
pool: 0xffff9489608100d0 | file object: 0xffff948960810150 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\CSharpPackageRegistration.pkgdef
pool: 0xffff948960810260 | file object: 0xffff9489608102e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.VisualStudio.OnlineEnvironment.Client.pkgdef
pool: 0xffff9489608103f0 | file object: 0xffff948960810470 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Performance Tools\Microsoft.VisualStudio.PerformanceTools.EditorIntegration.pkgdef
pool: 0xffff948960810580 | file object: 0xffff948960810600 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Project\codesharingproj.pkgdef
pool: 0xffff948960810710 | file object: 0xffff948960810790 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Project\Microsoft.VisualStudio.ProjectSystem.pkgdef
pool: 0xffff9489608108a0 | file object: 0xffff948960810920 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.VisualStudio.LanguageServices.VisualBasic.pkgdef
pool: 0xffff948960810a30 | file object: 0xffff948960810ab0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.Tools.pkgdef
pool: 0xffff948960810bc0 | file object: 0xffff948960810c40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Roslyn.VisualStudio.Setup.pkgdef
pool: 0xffff948960810d50 | file object: 0xffff948960810dd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\MDD\Debugger\Microsoft.IOSDebugLauncher.pkgdef
pool: 0xffff948960811070 | file object: 0xffff9489608110f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Linux\Linux\Microsoft.VisualStudio.Linux.ConnectionManager.pkgdef
pool: 0xffff948960811200 | file object: 0xffff948960811280 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Linux\Linux\Microsoft.VisualStudio.Linux.ConnectionManager.ToolsOptions.pkgdef
pool: 0xffff948960811390 | file object: 0xffff948960811410 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\MDD\Debugger\Microsoft.AndroidDebugLauncher.pkgdef
pool: 0xffff948960811520 | file object: 0xffff9489608115a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\MDD\Debugger\Microsoft.MIDebugPackage.pkgdef
pool: 0xffff9489608116b0 | file object: 0xffff948960811730 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\MDD\Debugger\Microsoft.Kofe.Engine.pkgdef
pool: 0xffff948960811840 | file object: 0xffff9489608118c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.SolutionRestoreManager.pkgdef
pool: 0xffff9489608119d0 | file object: 0xffff948960811a50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\VSIntegrationPackage.pkgdef
pool: 0xffff948960811b60 | file object: 0xffff948960811be0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ReferenceManager\Microsoft.VisualStudio.ReferenceManager.pkgdef
pool: 0xffff948960811cf0 | file object: 0xffff948960811d70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\Microsoft.VisualStudio.RazorExtension.Custom.pkgdef
pool: 0xffff948960812010 | file object: 0xffff948960812090 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestGeneration\Microsoft.VisualStudio.TestPlatform.TestGeneration.Package.pkgdef
pool: 0xffff9489608121a0 | file object: 0xffff948960812220 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Search\Microsoft.VisualStudio.Search.pkgdef
pool: 0xffff948960812330 | file object: 0xffff9489608123b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Terminal\Microsoft.VisualStudio.Terminal.pkgdef
pool: 0xffff9489608124c0 | file object: 0xffff948960812540 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestWindow\Microsoft.VisualStudio.TestWindow.pkgdef
pool: 0xffff948960812650 | file object: 0xffff9489608126d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\TeamExplorer.pkgdef
pool: 0xffff9489608127e0 | file object: 0xffff948960812860 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ReferenceManager\Microsoft.VisualStudio.ReferenceManager.Providers.pkgdef
pool: 0xffff948960812970 | file object: 0xffff9489608129f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\TeamExplorerThemes.pkgdef
pool: 0xffff948960812b00 | file object: 0xffff948960812b80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ProjectWizards\NewProjectFromExistingPackage.pkgdef
pool: 0xffff948960812c90 | file object: 0xffff948960812d10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ProjectSystemQuery\Microsoft.VisualStudio.ProjectSystem.Query.pkgdef
pool: 0xffff948960812e20 | file object: 0xffff948960812ea0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestWindow\TestWindowProvideCodeBase.pkgdef
pool: 0xffff948960813140 | file object: 0xffff9489608131c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TailoredProjectServices\Microsoft.VisualStudio.AppxPackage.pkgdef
pool: 0xffff9489608132d0 | file object: 0xffff948960813350 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TextMate\TMLanguage.pkgdef
pool: 0xffff948960813460 | file object: 0xffff9489608134e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TypeScript\GeneratedPackageDefinition.pkgdef
pool: 0xffff9489608135f0 | file object: 0xffff948960813670 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TypeScript\TypeScriptLinting.pkgdef
pool: 0xffff948960813780 | file object: 0xffff948960813800 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TypeScript\TypeScriptVisualStudio.pkgdef
pool: 0xffff948960813910 | file object: 0xffff948960813990 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\Microsoft.VisualStudio.RazorExtension.pkgdef
pool: 0xffff948960813aa0 | file object: 0xffff948960813b20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\UniversalFlavor\Microsoft.VisualStudio.Universal.TemplateWizards.RuntimeConfiguration.pkgdef
pool: 0xffff948960813c30 | file object: 0xffff948960813cb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\UniversalFlavor\Microsoft.VisualStudio.UniversalLibrary.pkgdef
pool: 0xffff948960813dc0 | file object: 0xffff948960813e40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TailoredProjectServices\Microsoft.VisualStudio.AppxManifestDesigner.UAP.pkgdef
pool: 0xffff9489608140e0 | file object: 0xffff948960814160 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TailoredProjectServices\Microsoft.VisualStudio.TailoredProjectServices.pkgdef
pool: 0xffff948960814270 | file object: 0xffff9489608142f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Search\Microsoft.VisualStudio.Platform.SearchProviders.Legacy.pkgdef
pool: 0xffff948960814400 | file object: 0xffff948960814480 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\TeamExplorer.CodeBase.pkgdef
pool: 0xffff948960814590 | file object: 0xffff948960814610 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Project\SharedProjectFilesPackage.pkgdef
pool: 0xffff948960814720 | file object: 0xffff9489608147a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ServiceHubClient\ServiceHubClient.pkgdef
pool: 0xffff9489608148b0 | file object: 0xffff948960814930 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ProjectServices\Microsoft.VisualStudio.ProjectServices.pkgdef
pool: 0xffff948960814a40 | file object: 0xffff948960814ac0 | offsetby: 0x80
\$Directory
pool: 0xffff948960814bd0 | file object: 0xffff948960814c50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Terminal\Microsoft.VisualStudio.Terminal.Implementation.pkgdef
pool: 0xffff948960814d60 | file object: 0xffff948960814de0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\Editor\VCEditorColors.pkgdef
pool: 0xffff948960815080 | file object: 0xffff948960815100 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\Debugger\VCDebugger.pkgdef
pool: 0xffff948960815210 | file object: 0xffff948960815290 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\VC_Exp_DirControl_Registry.pkgdef
pool: 0xffff9489608153a0 | file object: 0xffff948960815420 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\VC_Pkg_Core_Registration.pkgdef
pool: 0xffff948960815530 | file object: 0xffff9489608155b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Windows Forms Designer UI\Designer_Framework_UI.pkgdef
pool: 0xffff9489608156c0 | file object: 0xffff948960815740 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\WindowsXamlFlavor\Microsoft.VisualStudio.Windows.UI.Xaml.Project.pkgdef
pool: 0xffff948960815850 | file object: 0xffff9489608158d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489608159e0 | file object: 0xffff948960815a60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\ResourceEditor.pkgdef
pool: 0xffff948960815b70 | file object: 0xffff948960815bf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\vc.tools.hostx64.targetx86.pkgdef
pool: 0xffff948960815d00 | file object: 0xffff948960815d80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\vc.tools.hostx86.targetx86.pkgdef
pool: 0xffff948960816020 | file object: 0xffff9489608160a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\VCProject_Pro_Registry.pkgdef
pool: 0xffff9489608161b0 | file object: 0xffff948960816230 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\VC_Pkg_Pro_Registration.pkgdef
pool: 0xffff948960816340 | file object: 0xffff9489608163c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\VCProject_Common_Registry.pkgdef
pool: 0xffff9489608164d0 | file object: 0xffff948960816550 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\LanguageServer\Microsoft.VisualStudio.VC.LanguageServer.pkgdef
pool: 0xffff948960816660 | file object: 0xffff9489608166e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\WebClient\Diagnostics\ToolWindows\AdapterLaunchers.pkgdef
pool: 0xffff9489608167f0 | file object: 0xffff948960816870 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\MCppEE.pkgdef
pool: 0xffff948960816980 | file object: 0xffff948960816a00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\ObjC.pkgdef
pool: 0xffff948960816b10 | file object: 0xffff948960816b90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\WebClient\Diagnostics\ToolWindows\DiagToolsColors.pkgdef
pool: 0xffff948960816ca0 | file object: 0xffff948960816d20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\Editor\Microsoft.VisualC.Editor.Implementation.pkgdef
pool: 0xffff948960816e30 | file object: 0xffff948960816eb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\WebClient\Diagnostics\WebDiagnosticsAttach\WebDiagnosticsAttach.pkgdef
pool: 0xffff948960817150 | file object: 0xffff9489608171d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\Microsoft.VisualStudio.VC.pkgdef
pool: 0xffff9489608172e0 | file object: 0xffff948960817360 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\vc.tools.core.pkgdef
pool: 0xffff948960817470 | file object: 0xffff9489608174f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\WebClient\Diagnostics\ToolWindows\Microsoft.VisualStudio.WebClient.Diagnostics.HtmlToolHost.pkgdef
pool: 0xffff948960817600 | file object: 0xffff948960817680 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\VC_Snippets.pkgdef
pool: 0xffff948960817790 | file object: 0xffff948960817810 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Windows Forms Designer Services\Designer_Framework_Reg.pkgdef
pool: 0xffff948960817920 | file object: 0xffff9489608179a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Windows Forms Integration Design\WindowsFormsIntegrationDesignPackage.pkgdef
pool: 0xffff948960817ab0 | file object: 0xffff948960817b30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Windows.Forms\Microsoft.VisualStudio.WinForms.Package.pkgdef
pool: 0xffff948960817c40 | file object: 0xffff948960817cc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\vc.tools.hostx64.targetx64.pkgdef
pool: 0xffff948960817dd0 | file object: 0xffff948960817e50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\vc.tools.hostx86.targetx64.pkgdef
pool: 0xffff9489608180f0 | file object: 0xffff948960818170 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\EditorColors.pkgdef
pool: 0xffff948960818280 | file object: 0xffff948960818300 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\ShellColors.pkgdef
pool: 0xffff948960818410 | file object: 0xffff948960818490 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\MsMpEng.exe
pool: 0xffff9489608185a0 | file object: 0xffff948960818620 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Support\MPLog-20200413-120121.log
pool: 0xffff948960818730 | file object: 0xffff9489608187b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\XamlDiagnostics\Microsoft.VisualStudio.DesignTools.Diagnostics.pkgdef
pool: 0xffff9489608188c0 | file object: 0xffff948960818940 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\MSBuild\Microsoft.Build.Tasks.Core.pkgdef
pool: 0xffff948960818a50 | file object: 0xffff948960818ad0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960818be0 | file object: 0xffff948960818c60 | offsetby: 0x80
\Windows\System32\en-US\wscapi.dll.mui
pool: 0xffff948960819090 | file object: 0xffff948960819110 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\MSBuild\Microsoft.Build.Engine.pkgdef
pool: 0xffff948960819220 | file object: 0xffff9489608192a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\MSBuild\Microsoft.Build.Framework.pkgdef
pool: 0xffff9489608193b0 | file object: 0xffff948960819430 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960819540 | file object: 0xffff9489608195c0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Support\MpWppTracing-20200603-232833-00000003-ffffffff.bin
pool: 0xffff9489608196d0 | file object: 0xffff948960819750 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960819860 | file object: 0xffff9489608198e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608199f0 | file object: 0xffff948960819a70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\XamlLanguageService\Microsoft.VisualStudio.DesignTools.XamlLanguageService.pkgdef
pool: 0xffff948960819b80 | file object: 0xffff948960819c00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\MSBuild\System.Resources.Extensions.pkgdef
pool: 0xffff948960819d10 | file object: 0xffff948960819d90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\MSBuild\Microsoft.Build.Utilities.Core.pkgdef
pool: 0xffff94896081a030 | file object: 0xffff94896081a0b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Microsoft.VisualStudio.MinShell.Interop.pkgdef
pool: 0xffff94896081a1c0 | file object: 0xffff94896081a240 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\MSBuild\Microsoft.Build.Conversion.Core.pkgdef
pool: 0xffff94896081a350 | file object: 0xffff94896081a3d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896081a4e0 | file object: 0xffff94896081a560 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\MSBuild\Microsoft.Build.pkgdef
pool: 0xffff94896081a670 | file object: 0xffff94896081a6f0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94896081a800 | file object: 0xffff94896081a880 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Support\MPDetection-20200602-000558.log
pool: 0xffff94896081a990 | file object: 0xffff94896081aa10 | offsetby: 0x80
\$Directory
pool: 0xffff94896081ab20 | file object: 0xffff94896081aba0 | offsetby: 0x80
\$Directory
pool: 0xffff94896081acb0 | file object: 0xffff94896081ad30 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Support\MpWppTracing-20200603-232833-00000003-ffffffff.bin
pool: 0xffff94896081ae40 | file object: 0xffff94896081aec0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896081b160 | file object: 0xffff94896081b1e0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A}\mpavdlta.vdm
pool: 0xffff94896081b2f0 | file object: 0xffff94896081b370 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896081b480 | file object: 0xffff94896081b500 | offsetby: 0x80
\Windows\SysWOW64\gpapi.dll
pool: 0xffff94896081b610 | file object: 0xffff94896081b690 | offsetby: 0x80
\$Extend\$Deleted\000400000000F0B144BCDAABfinition Updates\{45BFE74E-A0A2-4B43-B3B6-1BC0C76E3AAD}\mpavbase.vdm
pool: 0xffff94896081b7a0 | file object: 0xffff94896081b820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896081b930 | file object: 0xffff94896081b9b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896081bac0 | file object: 0xffff94896081bb40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896081bc50 | file object: 0xffff94896081bcd0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2005.5-0\NisSrv.exe
pool: 0xffff94896081bde0 | file object: 0xffff94896081be60 | offsetby: 0x80
\Windows\System32\UIRibbonRes.dllanager-AllowAppS
pool: 0xffff94896081c100 | file object: 0xffff94896081c180 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896081c290 | file object: 0xffff94896081c310 | offsetby: 0x80
\$Extend\$Deleted\000400000000F0AE2AA4A86Afinition Updates\{45BFE74E-A0A2-4B43-B3B6-1BC0C76E3AAD}\mpasbase.vdm
pool: 0xffff94896081c420 | file object: 0xffff94896081c4a0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\History\CacheManager\BBEBF2F8-0000-0000-0000-402400000000-1.bin
pool: 0xffff94896081c5b0 | file object: 0xffff94896081c630 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896081c740 | file object: 0xffff94896081c7c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896081c8d0 | file object: 0xffff94896081c950 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\MpDiag.bin
pool: 0xffff94896081ca60 | file object: 0xffff94896081cae0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896081cbf0 | file object: 0xffff94896081cc70 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\merge-conflict\dist\nls.metadata.json
pool: 0xffff94896081cd80 | file object: 0xffff94896081ce00 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Ca
pool: 0xffff94896081d0a0 | file object: 0xffff94896081d120 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896081d3c0 | file object: 0xffff94896081d440 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896081d550 | file object: 0xffff94896081d5d0 | offsetby: 0x80
\Windows\System32
pool: 0xffff94896081d6e0 | file object: 0xffff94896081d760 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896081d870 | file object: 0xffff94896081d8f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896081da00 | file object: 0xffff94896081da80 | offsetby: 0x80
\Windows\SysWOW64\webio.dll
pool: 0xffff94896081db90 | file object: 0xffff94896081dc10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896081dd20 | file object: 0xffff94896081dda0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Deployment\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Deployment.dll
pool: 0xffff94896081e040 | file object: 0xffff94896081e0c0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\Updates
pool: 0xffff94896081e1d0 | file object: 0xffff94896081e250 | offsetby: 0x80
\Windows\SysWOW64\ncryptprov.dll
pool: 0xffff94896081e360 | file object: 0xffff94896081e3e0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.67
pool: 0xffff94896081e4f0 | file object: 0xffff94896081e570 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A}\mpavdlta.vdm
pool: 0xffff94896081e680 | file object: 0xffff94896081e700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896081e810 | file object: 0xffff94896081e890 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A}\mpavbase.vdm
pool: 0xffff94896081e9a0 | file object: 0xffff94896081ea20 | offsetby: 0x80
\$Directory
pool: 0xffff94896081eb30 | file object: 0xffff94896081ebb0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A}\mpasdlta.vdm
pool: 0xffff94896081ecc0 | file object: 0xffff94896081ed40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896081ee50 | file object: 0xffff94896081eed0 | offsetby: 0x80
\$Directory
pool: 0xffff94896081f170 | file object: 0xffff94896081f1f0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\8a52b313c586a7934d328b7f479e866e\~PC\WpfLibrary\CSharp\.NET Core\1033\WpfLibrary.zipl
pool: 0xffff94896081f300 | file object: 0xffff94896081f380 | offsetby: 0x80
\Windows\System32\RstrtMgr.dll
pool: 0xffff94896081f490 | file object: 0xffff94896081f510 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-RestartManager%4Operational.evtx
pool: 0xffff94896081f620 | file object: 0xffff94896081f6a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896081f7b0 | file object: 0xffff94896081f830 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Setup\x86\Microsoft.VisualStudio.Setup.Configuration.Native.dll
pool: 0xffff94896081f940 | file object: 0xffff94896081f9c0 | offsetby: 0x80
\$Directory
pool: 0xffff94896081fad0 | file object: 0xffff94896081fb50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Graphics\Debugger\Extension.vsixmanifest
pool: 0xffff94896081fc60 | file object: 0xffff94896081fce0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Branding.Community,version=16.6.30014.187,language=en-US\_package.json
pool: 0xffff94896081fdf0 | file object: 0xffff94896081fe70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960820110 | file object: 0xffff948960820190 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.67
pool: 0xffff9489608202a0 | file object: 0xffff948960820320 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960820430 | file object: 0xffff9489608204b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608205c0 | file object: 0xffff948960820640 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\0t3j2i5x.feq\extension.vsixmanifest
pool: 0xffff948960820750 | file object: 0xffff9489608207d0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c2b70ciersEF2
pool: 0xffff9489608208e0 | file object: 0xffff948960820960 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960820a70 | file object: 0xffff948960820af0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960820c00 | file object: 0xffff948960820c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960820d90 | file object: 0xffff948960820e10 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A}\mpasdlta.vdm
pool: 0xffff9489608210b0 | file object: 0xffff948960821130 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\b4bf7266d73c05a0e87b198b961a00a0\System.Core.ni.dll.auxl.auxexe2
pool: 0xffff948960821240 | file object: 0xffff9489608212c0 | offsetby: 0x80
\$ConvertToNonresident
pool: 0xffff9489608213d0 | file object: 0xffff948960821450 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960821560 | file object: 0xffff9489608215e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608216f0 | file object: 0xffff948960821770 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\VSLogP.pkgdef
pool: 0xffff948960821880 | file object: 0xffff948960821900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960821a10 | file object: 0xffff948960821a90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960821ba0 | file object: 0xffff948960821c20 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.83
pool: 0xffff948960821d30 | file object: 0xffff948960821db0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.87
pool: 0xffff948960822050 | file object: 0xffff9489608220d0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.6C
pool: 0xffff9489608221e0 | file object: 0xffff948960822260 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.87
pool: 0xffff948960822370 | file object: 0xffff9489608223f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.A0
pool: 0xffff948960822500 | file object: 0xffff948960822580 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.5B
pool: 0xffff948960822690 | file object: 0xffff948960822710 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.5B
pool: 0xffff948960822820 | file object: 0xffff9489608228a0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.A0
pool: 0xffff9489608229b0 | file object: 0xffff948960822a30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\SHMetapdb.pkgdef
pool: 0xffff948960822b40 | file object: 0xffff948960822bc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960822cd0 | file object: 0xffff948960822d50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960822e60 | file object: 0xffff948960822ee0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.6C
pool: 0xffff948960823180 | file object: 0xffff948960823200 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Microsoft.Diagnostics.Tracing.EventSource.dll
pool: 0xffff948960823310 | file object: 0xffff948960823390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608234a0 | file object: 0xffff948960823520 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.7E
pool: 0xffff948960823630 | file object: 0xffff9489608236b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\ReflectionBDM.pkgdef
pool: 0xffff9489608237c0 | file object: 0xffff948960823840 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\msvsmon_x86.pkgdef
pool: 0xffff948960823950 | file object: 0xffff9489608239d0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A}\mpasbase.vdm
pool: 0xffff948960823ae0 | file object: 0xffff948960823b60 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.7E
pool: 0xffff948960823c70 | file object: 0xffff948960823cf0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.80
pool: 0xffff948960823e00 | file object: 0xffff948960823e80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960824120 | file object: 0xffff9489608241a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608242b0 | file object: 0xffff948960824330 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.7C
pool: 0xffff948960824440 | file object: 0xffff9489608244c0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.79
pool: 0xffff9489608245d0 | file object: 0xffff948960824650 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\mpcache-03A56558E59B7D4FC5D56A7CB2715F94BCE1BB8E.bin.80
pool: 0xffff948960824760 | file object: 0xffff9489608247e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.ComponentModelHost.Implementation.pkgdef
pool: 0xffff9489608248f0 | file object: 0xffff948960824970 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\VSDbg_Engine.pkgdef
pool: 0xffff948960824a80 | file object: 0xffff948960824b00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\VsDebugPresentationPackage.pkgdef
pool: 0xffff948960824c10 | file object: 0xffff948960824c90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.FeatureFlags.pkgdef
pool: 0xffff948960824da0 | file object: 0xffff948960824e20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\DiagnosticsHub\Microsoft.DiagnosticsHub.VisualStudio.Package.pkgdef
pool: 0xffff9489608250c0 | file object: 0xffff948960825140 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.TemplateWizard.pkgdef
pool: 0xffff948960825250 | file object: 0xffff9489608252d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\VSDebugEng_Impl_Core.pkgdef
pool: 0xffff9489608253e0 | file object: 0xffff948960825460 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\VS_Debug_Scriptle2_AppidReg_4661.pkgdef
pool: 0xffff948960825570 | file object: 0xffff9489608255f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.Toolbox.pkgdef
pool: 0xffff948960825700 | file object: 0xffff948960825780 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.IDE.ToolboxControlsInstaller.pkgdef
pool: 0xffff948960825890 | file object: 0xffff948960825910 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.XmlEditor.pkgdef
pool: 0xffff948960825a20 | file object: 0xffff948960825aa0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\SymbolLocator.pkgdef
pool: 0xffff948960825bb0 | file object: 0xffff948960825c30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.ExportTemplate.pkgdef
pool: 0xffff948960825d40 | file object: 0xffff948960825dc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.Pkgdef
pool: 0xffff948960826060 | file object: 0xffff9489608260e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\DiagnosticsHub\VsStandardCollectorPath.pkgdef
pool: 0xffff9489608261f0 | file object: 0xffff948960826270 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\EventsViewer\Microsoft.DiagnosticsHub.EventsViewerTool.pkgdef
pool: 0xffff948960826380 | file object: 0xffff948960826400 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.CommonIDE.pkgdef
pool: 0xffff948960826510 | file object: 0xffff948960826590 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\DiagnosticsHub\DiagnosticsHubColors.pkgdef
pool: 0xffff9489608266a0 | file object: 0xffff948960826720 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.Dialogs.pkgdef
pool: 0xffff948960826830 | file object: 0xffff9489608268b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\VSDebug.pkgdef
pool: 0xffff9489608269c0 | file object: 0xffff948960826a40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\DotNetObjectAlloc\Microsoft.DiagnosticsHub.DotNetObjectAllocation.pkgdef
pool: 0xffff948960826b50 | file object: 0xffff948960826bd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\VSDebugEng_Impl_Engine.pkgdef
pool: 0xffff948960826ce0 | file object: 0xffff948960826d60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.ExtensionManager.Implementation.pkgdef
pool: 0xffff948960826e70 | file object: 0xffff948960826ef0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\VsDebugCoreUI.pkgdef
pool: 0xffff948960827000 | file object: 0xffff948960827080 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.Platform.WindowManagement.pkgdef
pool: 0xffff948960827190 | file object: 0xffff948960827210 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.Shell.UI.Internal.pkgdef
pool: 0xffff948960827320 | file object: 0xffff9489608273a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\NavigateTo\FileProvider\FileNameProvider.pkgdef
pool: 0xffff9489608274b0 | file object: 0xffff948960827530 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Instrumentation\Microsoft.DiagnosticsHub.Instrumentation.pkgdef
pool: 0xffff948960827640 | file object: 0xffff9489608276c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\VCSharp_EE_Registry_Keys_23307.pkgdef
pool: 0xffff9489608277d0 | file object: 0xffff948960827850 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\VsDebugConsole.pkgdef
pool: 0xffff948960827960 | file object: 0xffff9489608279e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\vssln.pkgdef
pool: 0xffff948960827af0 | file object: 0xffff948960827b70 | offsetby: 0x80
\$Directory
pool: 0xffff948960827c80 | file object: 0xffff948960827d00 | offsetby: 0x80
\$Directory
pool: 0xffff948960827e10 | file object: 0xffff948960827e90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960828130 | file object: 0xffff9489608281b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608282c0 | file object: 0xffff948960828340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960828450 | file object: 0xffff9489608284d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608285e0 | file object: 0xffff948960828660 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960828770 | file object: 0xffff9489608287f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\ProjectAggregator.pkgdef
pool: 0xffff948960828900 | file object: 0xffff948960828980 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960828a90 | file object: 0xffff948960828b10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960828c20 | file object: 0xffff948960828ca0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960828db0 | file object: 0xffff948960828e30 | offsetby: 0x80
\$Directory
pool: 0xffff9489608290d0 | file object: 0xffff948960829150 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960829260 | file object: 0xffff9489608292e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608293f0 | file object: 0xffff948960829470 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960829580 | file object: 0xffff948960829600 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\VSIXInstaller.pkgdef
pool: 0xffff948960829710 | file object: 0xffff948960829790 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\VsAppDomainManager.pkgdef
pool: 0xffff9489608298a0 | file object: 0xffff948960829920 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.ValueTuple\v4.0_4.0.0.0__cc7b13ffcd2ddd51\System.ValueTuple.dll
pool: 0xffff948960829a30 | file object: 0xffff948960829ab0 | offsetby: 0x80
\$Directory
pool: 0xffff948960829bc0 | file object: 0xffff948960829c40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960829d50 | file object: 0xffff948960829dd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082a070 | file object: 0xffff94896082a0f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082a200 | file object: 0xffff94896082a280 | offsetby: 0x80
\$Directory
pool: 0xffff94896082a390 | file object: 0xffff94896082a410 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.MinShell.Msi.Resources,version=16.0.28329.73,language=en-US\_package.json
pool: 0xffff94896082a520 | file object: 0xffff94896082a5a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082a6b0 | file object: 0xffff94896082a730 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082a840 | file object: 0xffff94896082a8c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Msenv.Core.Pkgdef
pool: 0xffff94896082a9d0 | file object: 0xffff94896082aa50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\MachineState.json
pool: 0xffff94896082ab60 | file object: 0xffff94896082abe0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082acf0 | file object: 0xffff94896082ad70 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Da9845d5e#\24a386b35f87e0b50fc0a7def3c30bf9\Microsoft.Diagnostics.Tracing.EventSource.ni.dll.aux
pool: 0xffff94896082b010 | file object: 0xffff94896082b090 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082b1a0 | file object: 0xffff94896082b220 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082b330 | file object: 0xffff94896082b3b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896082b4c0 | file object: 0xffff94896082b540 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082b650 | file object: 0xffff94896082b6d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896082b7e0 | file object: 0xffff94896082b860 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082b970 | file object: 0xffff94896082b9f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082bb00 | file object: 0xffff94896082bb80 | offsetby: 0x80
\$Directory
pool: 0xffff94896082bc90 | file object: 0xffff94896082bd10 | offsetby: 0x80
\$Directory
pool: 0xffff94896082be20 | file object: 0xffff94896082bea0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082c140 | file object: 0xffff94896082c1c0 | offsetby: 0x80
\$Directory
pool: 0xffff94896082c2d0 | file object: 0xffff94896082c350 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082c460 | file object: 0xffff94896082c4e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082c5f0 | file object: 0xffff94896082c670 | offsetby: 0x80
\$Directory
pool: 0xffff94896082c780 | file object: 0xffff94896082c800 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082c910 | file object: 0xffff94896082c990 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082caa0 | file object: 0xffff94896082cb20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082cc30 | file object: 0xffff94896082ccb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082cdc0 | file object: 0xffff94896082ce40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082d0e0 | file object: 0xffff94896082d160 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082d270 | file object: 0xffff94896082d2f0 | offsetby: 0x80
\$Directory
pool: 0xffff94896082d400 | file object: 0xffff94896082d480 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082d590 | file object: 0xffff94896082d610 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082d720 | file object: 0xffff94896082d7a0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\mscorrc.dll
pool: 0xffff94896082d8b0 | file object: 0xffff94896082d930 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082da40 | file object: 0xffff94896082dac0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896082dbd0 | file object: 0xffff94896082dc50 | offsetby: 0x80
\$Directory
pool: 0xffff94896082dd60 | file object: 0xffff94896082dde0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\qlbscfin.1er\extension.vsixmanifest
pool: 0xffff94896082e080 | file object: 0xffff94896082e100 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\3n5v0kzv.e5c\extension.vsixmanifest
pool: 0xffff94896082e210 | file object: 0xffff94896082e290 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\aepxgmna.u04\extension.vsixmanifest
pool: 0xffff94896082e3a0 | file object: 0xffff94896082e420 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kuukjpxv.jrk\extension.vsixmanifest
pool: 0xffff94896082e530 | file object: 0xffff94896082e5b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\31dsjgzs.mu0\extension.vsixmanifest
pool: 0xffff94896082e6c0 | file object: 0xffff94896082e740 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\mhdggq4k.qg3\extension.vsixmanifest
pool: 0xffff94896082e850 | file object: 0xffff94896082e8d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\nuyyjiec.xhl\extension.vsixmanifest
pool: 0xffff94896082e9e0 | file object: 0xffff94896082ea60 | offsetby: 0x80
\$Directory
pool: 0xffff94896082eb70 | file object: 0xffff94896082ebf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\em3ozjcu.15r\extension.vsixmanifest
pool: 0xffff94896082ed00 | file object: 0xffff94896082ed80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\jq3442h5.qyy\extension.vsixmanifest
pool: 0xffff94896082f020 | file object: 0xffff94896082f0a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\e1xcjrpa.qg3\extension.vsixmanifest
pool: 0xffff94896082f1b0 | file object: 0xffff94896082f230 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\njkjqvul.v5p\extension.vsixmanifest
pool: 0xffff94896082f340 | file object: 0xffff94896082f3c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\extension.vsixmanifest
pool: 0xffff94896082f4d0 | file object: 0xffff94896082f550 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\1ni0dpci.ttf\extension.vsixmanifest
pool: 0xffff94896082f660 | file object: 0xffff94896082f6e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\2hc1rrvx.nll\extension.vsixmanifest
pool: 0xffff94896082f7f0 | file object: 0xffff94896082f870 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\f1x2mc45.djr\extension.vsixmanifest
pool: 0xffff94896082f980 | file object: 0xffff94896082fa00 | offsetby: 0x80
\$Directory
pool: 0xffff94896082fb10 | file object: 0xffff94896082fb90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\sk051ii2.vxc\extension.vsixmanifest
pool: 0xffff94896082fca0 | file object: 0xffff94896082fd20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\vhgjvwa1.wfw\extension.vsixmanifest
pool: 0xffff94896082fe30 | file object: 0xffff94896082feb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\cgsbggh1.e2k\extension.vsixmanifest
pool: 0xffff948960830150 | file object: 0xffff9489608301d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\duqpdt4v.2vu\extension.vsixmanifest
pool: 0xffff9489608302e0 | file object: 0xffff948960830360 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\jkzdf0pw.lhk\extension.vsixmanifest
pool: 0xffff948960830470 | file object: 0xffff9489608304f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\extension.vsixmanifest
pool: 0xffff948960830600 | file object: 0xffff948960830680 | offsetby: 0x80
\$Directory
pool: 0xffff948960830790 | file object: 0xffff948960830810 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\1tqxtbdb.rpc\extension.vsixmanifest
pool: 0xffff948960830920 | file object: 0xffff9489608309a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960830ab0 | file object: 0xffff948960830b30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\sh2cok4l.gcl\extension.vsixmanifest
pool: 0xffff948960830c40 | file object: 0xffff948960830cc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\a1ifu4i3.eo5\extension.vsixmanifest
pool: 0xffff948960830dd0 | file object: 0xffff948960830e50 | offsetby: 0x80
\$Directory
pool: 0xffff9489608310f0 | file object: 0xffff948960831170 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\zkaemjb2.lop\extension.vsixmanifest
pool: 0xffff948960831280 | file object: 0xffff948960831300 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Initializer,version=16.4.29313.120\_package.json
pool: 0xffff948960831410 | file object: 0xffff948960831490 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.MefHosting,version=16.6.255.35071\_package.json
pool: 0xffff9489608315a0 | file object: 0xffff948960831620 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Platform.Editor,version=16.6.255.35071\_package.json
pool: 0xffff948960831730 | file object: 0xffff9489608317b0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.MinShell.Platform,version=16.6.255.35071\_package.json
pool: 0xffff9489608318c0 | file object: 0xffff948960831940 | offsetby: 0x80
\$Directory
pool: 0xffff948960831a50 | file object: 0xffff948960831ad0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.AzureSDK,version=16.6.30014.184\_package.json
pool: 0xffff948960831be0 | file object: 0xffff948960831c60 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.NativeImageSupport,version=16.6.30105.148\_package.json
pool: 0xffff948960831d70 | file object: 0xffff948960831df0 | offsetby: 0x80
\$Directory
pool: 0xffff948960832090 | file object: 0xffff948960832110 | offsetby: 0x80
\$Directory
pool: 0xffff948960832220 | file object: 0xffff9489608322a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608323b0 | file object: 0xffff948960832430 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Connected,version=16.6.30028.132\_package.json
pool: 0xffff948960832540 | file object: 0xffff9489608325c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608326d0 | file object: 0xffff948960832750 | offsetby: 0x80
\$Directory
pool: 0xffff948960832860 | file object: 0xffff9489608328e0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\gulp\package.jsonoked.timestamp2d56d911efaea
pool: 0xffff9489608329f0 | file object: 0xffff948960832a70 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.MinShell.Msi,version=16.6.30014.187\_package.json
pool: 0xffff948960832b80 | file object: 0xffff948960832c00 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Setup.WMIProvider,version=2.6.2109.55756\_package.json
pool: 0xffff948960832d10 | file object: 0xffff948960832d90 | offsetby: 0x80
\$Directory
pool: 0xffff948960833030 | file object: 0xffff9489608330b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608331c0 | file object: 0xffff948960833240 | offsetby: 0x80
\$Directory
pool: 0xffff948960833350 | file object: 0xffff9489608333d0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.MinShell,version=16.6.30128.74\_package.json
pool: 0xffff9489608334e0 | file object: 0xffff948960833560 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\yr02mzpc.reh\extension.vsixmanifest
pool: 0xffff948960833670 | file object: 0xffff9489608336f0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.MinShell.Platform.Resources,version=16.6.255.35071,language=en-US\_package.json
pool: 0xffff948960833800 | file object: 0xffff948960833880 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.MefHosting.Resources,version=16.6.255.35071,language=en-US\_package.json
pool: 0xffff948960833990 | file object: 0xffff948960833a10 | offsetby: 0x80
耄ðĀÜāĀāԀ āԀȁԀ Ƞā̀Ƞȁ<Ѐ뀗檔ẁ舡≠뮘鯑梾퉢ई⍉炊ȁԀ Ƞā
pool: 0xffff948960833b20 | file object: 0xffff948960833ba0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ExtensionManager,version=16.6.2051.19088\_package.json
pool: 0xffff948960833cb0 | file object: 0xffff948960833d30 | offsetby: 0x80
pool: 0xffff948960833e40 | file object: 0xffff948960833ec0 | offsetby: 0x80
\$Directory
pool: 0xffff948960834160 | file object: 0xffff9489608341e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608342f0 | file object: 0xffff948960834370 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.TextMateGrammars,version=16.6.255.35071\_package.json
pool: 0xffff948960834480 | file object: 0xffff948960834500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960834610 | file object: 0xffff948960834690 | offsetby: 0x80
\$Directory
pool: 0xffff9489608347a0 | file object: 0xffff948960834820 | offsetby: 0x80
耔Ìì0ǿāĀœ(ǿ؁ԀP覵㣻萙쯂汜洣W湷ˀ蝤ǽāԀǽȁԀ ȠƝāԀƝāԀȁ؁ԀP覵㣻萙쯂汜洣W湷ˀ蝤؁ԀP覵㣻萙쯂汜洣W湷
pool: 0xffff948960834930 | file object: 0xffff9489608349b0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Build.Dependencies,version=16.6.30014.66\_package.json
pool: 0xffff948960834ac0 | file object: 0xffff948960834b40 | offsetby: 0x80
.\Device\HarddiskVolume2EEF&SUBSYS_040515AD&REV_00PCI\VEN_80EE&DEV_BEEF&SUBSYS_040515ADPCI\VEN_80EE&DEV_BEEF&CC_030000PCI\VEN_
pool: 0xffff948960834c50 | file object: 0xffff948960834cd0 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff948960834de0 | file object: 0xffff948960834e60 | offsetby: 0x80
\$Directory
pool: 0xffff948960835100 | file object: 0xffff948960835180 | offsetby: 0x80
\$Directory
pool: 0xffff948960835290 | file object: 0xffff948960835310 | offsetby: 0x80
.\Device\HarddiskVolume23234566417-3121902272-2793192418-1001_Classes\CLSID\{603D3801-BD81-11d0-A3A5-00C04FD706EC}\InProcServer32
pool: 0xffff948960835420 | file object: 0xffff9489608354a0 | offsetby: 0x80
\REGISTRY\USER\S-1-5-21-3234566417-3121902272-2793192418-1001_Classes\CLSID\{603D3801-BD81-11d0-A3A5-00C04FD706EC}\InprocHandler32
pool: 0xffff9489608355b0 | file object: 0xffff948960835630 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Log,version=16.6.30014.161\_package.json
pool: 0xffff948960835740 | file object: 0xffff9489608357c0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Build,version=16.6.0.2022303,chip=neutral,language=neutral\_package.json
pool: 0xffff9489608358d0 | file object: 0xffff948960835950 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ProjectServices,version=15.8.463.54428\_package.json
pool: 0xffff948960835a60 | file object: 0xffff948960835ae0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.CoreEditor,version=16.6.30014.187\_package.json
pool: 0xffff948960835bf0 | file object: 0xffff948960835c70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960835d80 | file object: 0xffff948960835e00 | offsetby: 0x80
\$Directory
pool: 0xffff9489608360a0 | file object: 0xffff948960836120 | offsetby: 0x80
\$Directory
pool: 0xffff948960836230 | file object: 0xffff9489608362b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608363c0 | file object: 0xffff948960836440 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.TeamExplorer,version=16.6.30024.1\_package.json
pool: 0xffff948960836550 | file object: 0xffff9489608365d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\git\package.json\package.jsonx64\_package.json
pool: 0xffff9489608366e0 | file object: 0xffff948960836760 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960836870 | file object: 0xffff9489608368f0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Finalizer,version=16.6.30013.169\_package.json
pool: 0xffff948960836a00 | file object: 0xffff948960836a80 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.OpenFolder.VSIX,version=16.6.42.48607\_package.json
pool: 0xffff948960836b90 | file object: 0xffff948960836c10 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\docker\package.json1a-d0b52f2e83e1
pool: 0xffff948960836d20 | file object: 0xffff948960836da0 | offsetby: 0x80
\$Directory
pool: 0xffff948960837040 | file object: 0xffff9489608370c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608371d0 | file object: 0xffff948960837250 | offsetby: 0x80
\$Directory
pool: 0xffff948960837360 | file object: 0xffff9489608373e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608374f0 | file object: 0xffff948960837570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960837680 | file object: 0xffff948960837700 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PerformanceProvider,version=16.5.29813.82\_package.json
pool: 0xffff948960837810 | file object: 0xffff948960837890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608379a0 | file object: 0xffff948960837a20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960837b30 | file object: 0xffff948960837bb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960837cc0 | file object: 0xffff948960837d40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960837e50 | file object: 0xffff948960837ed0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ConnectedServices.Office365,version=15.0.40718.821\_package.json
pool: 0xffff948960838170 | file object: 0xffff9489608381f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960838300 | file object: 0xffff948960838380 | offsetby: 0x80
\$Directory
pool: 0xffff948960838490 | file object: 0xffff948960838510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960838620 | file object: 0xffff9489608386a0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.DevCmd,version=16.6.30027.235\_package.json
pool: 0xffff9489608387b0 | file object: 0xffff948960838830 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960838940 | file object: 0xffff9489608389c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960838ad0 | file object: 0xffff948960838b50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960838c60 | file object: 0xffff948960838ce0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960838df0 | file object: 0xffff948960838e70 | offsetby: 0x80
\$Directory
pool: 0xffff948960839110 | file object: 0xffff948960839190 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.DevCmd.Resources,version=16.5.29721.120,language=en-US\_package.json
pool: 0xffff9489608392a0 | file object: 0xffff948960839320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960839430 | file object: 0xffff9489608394b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608395c0 | file object: 0xffff948960839640 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960839750 | file object: 0xffff9489608397d0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.GraphModel,version=16.5.29813.95\_package.json
pool: 0xffff9489608398e0 | file object: 0xffff948960839960 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960839a70 | file object: 0xffff948960839af0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960839c00 | file object: 0xffff948960839c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960839d90 | file object: 0xffff948960839e10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896083a0b0 | file object: 0xffff94896083a130 | offsetby: 0x80
\$Directory
pool: 0xffff94896083a240 | file object: 0xffff94896083a2c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896083a3d0 | file object: 0xffff94896083a450 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896083a560 | file object: 0xffff94896083a5e0 | offsetby: 0x80
\$Directory
pool: 0xffff94896083a6f0 | file object: 0xffff94896083a770 | offsetby: 0x80
\$Directory
pool: 0xffff94896083a880 | file object: 0xffff94896083a900 | offsetby: 0x80
\$Directory
pool: 0xffff94896083aa10 | file object: 0xffff94896083aa90 | offsetby: 0x80
\$Directory
pool: 0xffff94896083aba0 | file object: 0xffff94896083ac20 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VsDevCmd.Core.DotNet,version=16.0.28315.86\_package.json
pool: 0xffff94896083ad30 | file object: 0xffff94896083adb0 | offsetby: 0x80
\$Directory
pool: 0xffff94896083b050 | file object: 0xffff94896083b0d0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Tools.Common.Utils.Resources,version=14.26.28803,language=en-US\_package.json
pool: 0xffff94896083b1e0 | file object: 0xffff94896083b260 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.AspNetCore.SharedFramework.3.1.3.1.4.x64,version=16.6.30107.105,chip=x64\_package.json
pool: 0xffff94896083b370 | file object: 0xffff94896083b3f0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Constants-f60b1150081d4f8616185ddfad9005ad.code
pool: 0xffff94896083b500 | file object: 0xffff94896083b580 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.NetCore.TargetingPack.3.1.3.1.0,version=16.6.30013.169,chip=x64\_package.json
pool: 0xffff94896083b690 | file object: 0xffff94896083b710 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896083b820 | file object: 0xffff94896083b8a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896083b9b0 | file object: 0xffff94896083ba30 | offsetby: 0x80
gramData\Microsoft\VisualStu+index-2ef03ef2890f956942967591b73667b2.codeFramework.3.1.3.1.4.x64,version=16.6.30107.105,chip=x64\_package.json
pool: 0xffff94896083bb40 | file object: 0xffff94896083bbc0 | offsetby: 0x80
\$Directory
pool: 0xffff94896083bcd0 | file object: 0xffff94896083bd50 | offsetby: 0x80
蠔Ôð0āကက¤$ǿԁԀ鄑샋狀먔믢꙼ϩǿāԀ́Ԁ0ǿ両滺Კ攊셗깾꾳♎爝ᎊ絯麈挦鳇ȁԀ ȠԁԀ鄑샋狀먔믢꙼ϩԁԀ鄑샋狀먔믢꙼ȁ
pool: 0xffff94896083be60 | file object: 0xffff94896083bee0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.WindowsDesktop.TargetingPack.3.1.3.1.0,version=16.6.30013.169,chip=x64\_package.json
pool: 0xffff94896083c180 | file object: 0xffff94896083c200 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Tools.Common.Utils,version=14.26.28803\_package.json
pool: 0xffff94896083c310 | file object: 0xffff94896083c390 | offsetby: 0x80
\$Directory
pool: 0xffff94896083c4a0 | file object: 0xffff94896083c520 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Tools.Common.UtilsPrereq,version=16.6.30013.169\_package.json
pool: 0xffff94896083c630 | file object: 0xffff94896083c6b0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.NetCore.HostFXR.3.1.4.x86,version=16.6.30107.105\_package.json
pool: 0xffff94896083c7c0 | file object: 0xffff94896083c840 | offsetby: 0x80
\$Directory
pool: 0xffff94896083c950 | file object: 0xffff94896083c9d0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VsDevCmd.Ext.NetFxSdk,version=16.6.30013.169\_package.json
pool: 0xffff94896083cae0 | file object: 0xffff94896083cb60 | offsetby: 0x80
\Device\HarddiskVolume2\Windows\assembly\NativeImages_v4.0.30319_64\System.Data\6ae9aebb477a06a1021b58a2b90efb57\System.Data.ni.dllcode
pool: 0xffff94896083cc70 | file object: 0xffff94896083ccf0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.NetCore.SharedFramework.3.1.3.1.4.x64,version=16.6.30107.105,chip=x64\_package.json
pool: 0xffff94896083ce00 | file object: 0xffff94896083ce80 | offsetby: 0x80
\$Directory
pool: 0xffff94896083d120 | file object: 0xffff94896083d1a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\EBF\extension.vsixmanifest
pool: 0xffff94896083d2b0 | file object: 0xffff94896083d330 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Constants-f60b1150081d4f8616185ddfad9005ad.codeson
pool: 0xffff94896083d440 | file object: 0xffff94896083d4c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CMake\extension.vsixmanifest
pool: 0xffff94896083d5d0 | file object: 0xffff94896083d650 | offsetby: 0x80
\$Directory
pool: 0xffff94896083d760 | file object: 0xffff94896083d7e0 | offsetby: 0x80
韨辉舎￿韨辉舎￿頀辉舎￿頀辉舎￿
pool: 0xffff94896083d8f0 | file object: 0xffff94896083d970 | offsetby: 0x80
\$Directory
pool: 0xffff94896083da80 | file object: 0xffff94896083db00 | offsetby: 0x80
\$Directory
pool: 0xffff94896083dc10 | file object: 0xffff94896083dc90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896083dda0 | file object: 0xffff94896083de20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Project\Microsoft.VisualStudio.ProjectSystem.Implementation.dll
pool: 0xffff94896083e0c0 | file object: 0xffff94896083e140 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Net.Core.SDK.MSBuildExtensions,version=16.6.30107.105\_package.json
pool: 0xffff94896083e250 | file object: 0xffff94896083e2d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896083e3e0 | file object: 0xffff94896083e460 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.FSharp.IDE,version=16.6.0.2021704\_package.json
pool: 0xffff94896083e570 | file object: 0xffff94896083e5f0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Editors,version=16.6.0.6530602\_package.json
pool: 0xffff94896083e700 | file object: 0xffff94896083e780 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.FSharp.SDK,version=16.6.0.2021704\_package.json
pool: 0xffff94896083e890 | file object: 0xffff94896083e910 | offsetby: 0x80
\$Directory
pool: 0xffff94896083ea20 | file object: 0xffff94896083eaa0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.FSharp.VSIX.Full.Core,version=16.6.0.2021704\_package.json
pool: 0xffff94896083ebb0 | file object: 0xffff94896083ec30 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.NetCore.Toolset.3.1.300,version=16.6.30107.105,chip=x64\_package.json
pool: 0xffff94896083ed40 | file object: 0xffff94896083edc0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Devenv.Msi,version=16.0.28329.73\_package.json
pool: 0xffff94896083f060 | file object: 0xffff94896083f0e0 | offsetby: 0x80
\$Directory
pool: 0xffff94896083f1f0 | file object: 0xffff94896083f270 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Community.Msi.Resources,version=16.0.28329.73,language=en-US\_package.json
pool: 0xffff94896083f380 | file object: 0xffff94896083f400 | offsetby: 0x80
Ɛ̐釈藮舎￿寠怉钉￿退x¦À銀藮舎￿..銀藮舎￿\Device\HarddiskVolume2\Program Files (x86)\WindowsPowerShell\Modules\AzureRM\5.7.0db-jou
pool: 0xffff94896083f510 | file object: 0xffff94896083f590 | offsetby: 0x80
\$Directory
pool: 0xffff94896083f6a0 | file object: 0xffff94896083f720 | offsetby: 0x80
\$Directory
pool: 0xffff94896083f830 | file object: 0xffff94896083f8b0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.WebSiteProject.DTE,version=16.6.30013.169\_package.json
pool: 0xffff94896083f9c0 | file object: 0xffff94896083fa40 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.MSHtml,version=16.0.28315.86\_package.json
pool: 0xffff94896083fb50 | file object: 0xffff94896083fbd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\EBF\TestExplorer\extension.vsixmanifest
pool: 0xffff94896083fce0 | file object: 0xffff94896083fd60 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Net.Eula.Resources,version=16.0.28315.86,language=en-US\_package.json
pool: 0xffff94896083fe70 | file object: 0xffff94896083fef0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\JSDiagnostics\Debugger\extension.vsixmanifest
pool: 0xffff948960840000 | file object: 0xffff948960840080 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.NetCore.SharedHost.3.1.4,version=16.6.30107.105,chip=x64\_package.json
pool: 0xffff948960840190 | file object: 0xffff948960840210 | offsetby: 0x80
\Program Files\WindowsPowerShell\Modules\PSReadline\2.0.0\PSReadLine.format.ps1xmlr.unpacked\spdlog\build\Rele
pool: 0xffff948960840320 | file object: 0xffff9489608403a0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.Managed,version=16.6.30014.67\_package.json
pool: 0xffff9489608404b0 | file object: 0xffff948960840530 | offsetby: 0x80
\$Directory
pool: 0xffff948960840640 | file object: 0xffff9489608406c0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Community.x86,version=16.6.30013.169,chip=x86\_package.json
pool: 0xffff9489608407d0 | file object: 0xffff948960840850 | offsetby: 0x80
\$Directory
pool: 0xffff948960840960 | file object: 0xffff9489608409e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CallHierarchy\Microsoft.VisualStudio.Language.CallHierarchy.Implementation.dll
pool: 0xffff948960840af0 | file object: 0xffff948960840b70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TailoredProjectServices\Microsoft.VisualStudio.AppxPackage.Contracts.dll
pool: 0xffff948960840c80 | file object: 0xffff948960840d00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960840e10 | file object: 0xffff948960840e90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.VCProjectEngine.dll
pool: 0xffff948960841130 | file object: 0xffff9489608411b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.VCProjectEngine.dll
pool: 0xffff9489608412c0 | file object: 0xffff948960841340 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\VB\Bin\msvbprj.dll
pool: 0xffff948960841450 | file object: 0xffff9489608414d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Windows.Forms\Microsoft.WinForms.Utilities.Shared.dll
pool: 0xffff9489608415e0 | file object: 0xffff948960841660 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960841770 | file object: 0xffff9489608417f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960841900 | file object: 0xffff948960841980 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.Templates.VB.Wpf.Resources.en-US.Project..vstman
pool: 0xffff948960841a90 | file object: 0xffff948960841b10 | offsetby: 0x80
耄ÜìÈ āԀ῿ȁԀ ȠāĀāԀကāԀကāԀကāԀȁȁȁ
pool: 0xffff948960841c20 | file object: 0xffff948960841ca0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960841db0 | file object: 0xffff948960841e30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\Microsoft.VisualStudio.TestTools.Templates.Managed.Project..vstman
pool: 0xffff948960884160 | file object: 0xffff9489608841e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608842f0 | file object: 0xffff948960884370 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960884480 | file object: 0xffff948960884500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960884610 | file object: 0xffff948960884690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608847a0 | file object: 0xffff948960884820 | offsetby: 0x80
\$Directory
pool: 0xffff948960884930 | file object: 0xffff9489608849b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960884ac0 | file object: 0xffff948960884b40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960884c50 | file object: 0xffff948960884cd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960884de0 | file object: 0xffff948960884e60 | offsetby: 0x80
\$Directory
pool: 0xffff948960885100 | file object: 0xffff948960885180 | offsetby: 0x80
\$Directory
pool: 0xffff948960885290 | file object: 0xffff948960885310 | offsetby: 0x80
\$Directory
pool: 0xffff948960885420 | file object: 0xffff9489608854a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608855b0 | file object: 0xffff948960885630 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960885740 | file object: 0xffff9489608857c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608858d0 | file object: 0xffff948960885950 | offsetby: 0x80
\$Directory
pool: 0xffff948960885a60 | file object: 0xffff948960885ae0 | offsetby: 0x80
\$Directory
pool: 0xffff948960885bf0 | file object: 0xffff948960885c70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960885d80 | file object: 0xffff948960885e00 | offsetby: 0x80
\$Directory
pool: 0xffff9489608860a0 | file object: 0xffff948960886120 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960886230 | file object: 0xffff9489608862b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608863c0 | file object: 0xffff948960886440 | offsetby: 0x80
\$Directory
pool: 0xffff948960886550 | file object: 0xffff9489608865d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608866e0 | file object: 0xffff948960886760 | offsetby: 0x80
\$Directory
pool: 0xffff948960886870 | file object: 0xffff9489608868f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960886a00 | file object: 0xffff948960886a80 | offsetby: 0x80
\Program Files\WindowsPowerShell\Modules\PSReadline\2.0.0\Microsoft.PowerShell.PSReadline.dll
pool: 0xffff948960886b90 | file object: 0xffff948960886c10 | offsetby: 0x80
\$Directory
pool: 0xffff948960886d20 | file object: 0xffff948960886da0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960887040 | file object: 0xffff9489608870c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608871d0 | file object: 0xffff948960887250 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960887360 | file object: 0xffff9489608873e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608874f0 | file object: 0xffff948960887570 | offsetby: 0x80
\$Directory
pool: 0xffff948960887680 | file object: 0xffff948960887700 | offsetby: 0x80
\$Directory
pool: 0xffff948960887810 | file object: 0xffff948960887890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608879a0 | file object: 0xffff948960887a20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960887b30 | file object: 0xffff948960887bb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960887cc0 | file object: 0xffff948960887d40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960887e50 | file object: 0xffff948960887ed0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960888170 | file object: 0xffff9489608881f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960888300 | file object: 0xffff948960888380 | offsetby: 0x80
\$Directory
pool: 0xffff948960888490 | file object: 0xffff948960888510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960888620 | file object: 0xffff9489608886a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608887b0 | file object: 0xffff948960888830 | offsetby: 0x80
\$Directory
pool: 0xffff948960888940 | file object: 0xffff9489608889c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960888ad0 | file object: 0xffff948960888b50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960888c60 | file object: 0xffff948960888ce0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960888df0 | file object: 0xffff948960888e70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960889110 | file object: 0xffff948960889190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608892a0 | file object: 0xffff948960889320 | offsetby: 0x80
\$Directory
pool: 0xffff948960889430 | file object: 0xffff9489608894b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608895c0 | file object: 0xffff948960889640 | offsetby: 0x80
\$Directory
pool: 0xffff948960889750 | file object: 0xffff9489608897d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608898e0 | file object: 0xffff948960889960 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960889a70 | file object: 0xffff948960889af0 | offsetby: 0x80
\$Directory
pool: 0xffff948960889c00 | file object: 0xffff948960889c80 | offsetby: 0x80
\$Directory
pool: 0xffff948960889d90 | file object: 0xffff948960889e10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088a0b0 | file object: 0xffff94896088a130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088a240 | file object: 0xffff94896088a2c0 | offsetby: 0x80
\$Directory
pool: 0xffff94896088a3d0 | file object: 0xffff94896088a450 | offsetby: 0x80
\$Directory
pool: 0xffff94896088a560 | file object: 0xffff94896088a5e0 | offsetby: 0x80
\$Directory
pool: 0xffff94896088a6f0 | file object: 0xffff94896088a770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088a880 | file object: 0xffff94896088a900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088aa10 | file object: 0xffff94896088aa90 | offsetby: 0x80
\$Directory
pool: 0xffff94896088aba0 | file object: 0xffff94896088ac20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088ad30 | file object: 0xffff94896088adb0 | offsetby: 0x80
\$Directory
pool: 0xffff94896088b050 | file object: 0xffff94896088b0d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896088b1e0 | file object: 0xffff94896088b260 | offsetby: 0x80
\$Directory
pool: 0xffff94896088b370 | file object: 0xffff94896088b3f0 | offsetby: 0x80
\$Directory
pool: 0xffff94896088b500 | file object: 0xffff94896088b580 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088b690 | file object: 0xffff94896088b710 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088b820 | file object: 0xffff94896088b8a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896088b9b0 | file object: 0xffff94896088ba30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088bb40 | file object: 0xffff94896088bbc0 | offsetby: 0x80
\$Directory
pool: 0xffff94896088bcd0 | file object: 0xffff94896088bd50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088be60 | file object: 0xffff94896088bee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088c180 | file object: 0xffff94896088c200 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088c310 | file object: 0xffff94896088c390 | offsetby: 0x80
\$Directory
pool: 0xffff94896088c4a0 | file object: 0xffff94896088c520 | offsetby: 0x80
\$Directory
pool: 0xffff94896088c630 | file object: 0xffff94896088c6b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088c7c0 | file object: 0xffff94896088c840 | offsetby: 0x80
\$Directory
pool: 0xffff94896088c950 | file object: 0xffff94896088c9d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088cae0 | file object: 0xffff94896088cb60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088cc70 | file object: 0xffff94896088ccf0 | offsetby: 0x80
\$Directory
pool: 0xffff94896088ce00 | file object: 0xffff94896088ce80 | offsetby: 0x80
\$Directory
pool: 0xffff94896088d120 | file object: 0xffff94896088d1a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088d2b0 | file object: 0xffff94896088d330 | offsetby: 0x80
\$Directory
pool: 0xffff94896088d440 | file object: 0xffff94896088d4c0 | offsetby: 0x80
\$Directory
pool: 0xffff94896088d5d0 | file object: 0xffff94896088d650 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088d760 | file object: 0xffff94896088d7e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088d8f0 | file object: 0xffff94896088d970 | offsetby: 0x80
\$Directory
pool: 0xffff94896088da80 | file object: 0xffff94896088db00 | offsetby: 0x80
\$Directory
pool: 0xffff94896088dc10 | file object: 0xffff94896088dc90 | offsetby: 0x80
\$Directory
pool: 0xffff94896088dda0 | file object: 0xffff94896088de20 | offsetby: 0x80
\$Directory
pool: 0xffff94896088e0c0 | file object: 0xffff94896088e140 | offsetby: 0x80
\$Directory
pool: 0xffff94896088e250 | file object: 0xffff94896088e2d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088e3e0 | file object: 0xffff94896088e460 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088e570 | file object: 0xffff94896088e5f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088e700 | file object: 0xffff94896088e780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088e890 | file object: 0xffff94896088e910 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088ea20 | file object: 0xffff94896088eaa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088ebb0 | file object: 0xffff94896088ec30 | offsetby: 0x80
\$Directory
pool: 0xffff94896088ed40 | file object: 0xffff94896088edc0 | offsetby: 0x80
\$Directory
pool: 0xffff94896088f060 | file object: 0xffff94896088f0e0 | offsetby: 0x80
\$Directory
pool: 0xffff94896088f1f0 | file object: 0xffff94896088f270 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088f380 | file object: 0xffff94896088f400 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088f510 | file object: 0xffff94896088f590 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088f6a0 | file object: 0xffff94896088f720 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088f830 | file object: 0xffff94896088f8b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896088f9c0 | file object: 0xffff94896088fa40 | offsetby: 0x80
\$Directory
pool: 0xffff94896088fb50 | file object: 0xffff94896088fbd0 | offsetby: 0x80
\$Directory
pool: 0xffff94896088fce0 | file object: 0xffff94896088fd60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896088fe70 | file object: 0xffff94896088fef0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960890000 | file object: 0xffff948960890080 | offsetby: 0x80
\$Directory
pool: 0xffff948960890190 | file object: 0xffff948960890210 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960890320 | file object: 0xffff9489608903a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608904b0 | file object: 0xffff948960890530 | offsetby: 0x80
\$Directory
pool: 0xffff948960890640 | file object: 0xffff9489608906c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608907d0 | file object: 0xffff948960890850 | offsetby: 0x80
\$Directory
pool: 0xffff948960890960 | file object: 0xffff9489608909e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960890af0 | file object: 0xffff948960890b70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960890c80 | file object: 0xffff948960890d00 | offsetby: 0x80
\$Directory
pool: 0xffff948960890e10 | file object: 0xffff948960890e90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960891130 | file object: 0xffff9489608911b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608912c0 | file object: 0xffff948960891340 | offsetby: 0x80
\$Directory
pool: 0xffff948960891450 | file object: 0xffff9489608914d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608915e0 | file object: 0xffff948960891660 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960891770 | file object: 0xffff9489608917f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960891900 | file object: 0xffff948960891980 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960891a90 | file object: 0xffff948960891b10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960891c20 | file object: 0xffff948960891ca0 | offsetby: 0x80
\$Directory
pool: 0xffff948960891db0 | file object: 0xffff948960891e30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608920d0 | file object: 0xffff948960892150 | offsetby: 0x80
\$Directory
pool: 0xffff948960892260 | file object: 0xffff9489608922e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608923f0 | file object: 0xffff948960892470 | offsetby: 0x80
\$Directory
pool: 0xffff948960892580 | file object: 0xffff948960892600 | offsetby: 0x80
\$Directory
pool: 0xffff948960892710 | file object: 0xffff948960892790 | offsetby: 0x80
\$Directory
pool: 0xffff9489608928a0 | file object: 0xffff948960892920 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960892a30 | file object: 0xffff948960892ab0 | offsetby: 0x80
\$Directory
pool: 0xffff948960892bc0 | file object: 0xffff948960892c40 | offsetby: 0x80
\$Directory
pool: 0xffff948960892d50 | file object: 0xffff948960892dd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960893070 | file object: 0xffff9489608930f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960893200 | file object: 0xffff948960893280 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960893390 | file object: 0xffff948960893410 | offsetby: 0x80
\$Directory
pool: 0xffff948960893520 | file object: 0xffff9489608935a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608936b0 | file object: 0xffff948960893730 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960893840 | file object: 0xffff9489608938c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608939d0 | file object: 0xffff948960893a50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960893b60 | file object: 0xffff948960893be0 | offsetby: 0x80
\$Directory
pool: 0xffff948960893cf0 | file object: 0xffff948960893d70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960894010 | file object: 0xffff948960894090 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608941a0 | file object: 0xffff948960894220 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960894330 | file object: 0xffff9489608943b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608944c0 | file object: 0xffff948960894540 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960894650 | file object: 0xffff9489608946d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608947e0 | file object: 0xffff948960894860 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960894970 | file object: 0xffff9489608949f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960894b00 | file object: 0xffff948960894b80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960894c90 | file object: 0xffff948960894d10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960894e20 | file object: 0xffff948960894ea0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960895140 | file object: 0xffff9489608951c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608952d0 | file object: 0xffff948960895350 | offsetby: 0x80
\$Directory
pool: 0xffff948960895460 | file object: 0xffff9489608954e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608955f0 | file object: 0xffff948960895670 | offsetby: 0x80
\$Directory
pool: 0xffff948960895780 | file object: 0xffff948960895800 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960895910 | file object: 0xffff948960895990 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960895aa0 | file object: 0xffff948960895b20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960895c30 | file object: 0xffff948960895cb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960895dc0 | file object: 0xffff948960895e40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608960e0 | file object: 0xffff948960896160 | offsetby: 0x80
\$Directory
pool: 0xffff948960896270 | file object: 0xffff9489608962f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960896400 | file object: 0xffff948960896480 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960896590 | file object: 0xffff948960896610 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960896720 | file object: 0xffff9489608967a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608968b0 | file object: 0xffff948960896930 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960896a40 | file object: 0xffff948960896ac0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960896bd0 | file object: 0xffff948960896c50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960896d60 | file object: 0xffff948960896de0 | offsetby: 0x80
\$Directory
pool: 0xffff948960897080 | file object: 0xffff948960897100 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960897210 | file object: 0xffff948960897290 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608973a0 | file object: 0xffff948960897420 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960897530 | file object: 0xffff9489608975b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608976c0 | file object: 0xffff948960897740 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960897850 | file object: 0xffff9489608978d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608979e0 | file object: 0xffff948960897a60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960897b70 | file object: 0xffff948960897bf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960897d00 | file object: 0xffff948960897d80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960898020 | file object: 0xffff9489608980a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608981b0 | file object: 0xffff948960898230 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960898340 | file object: 0xffff9489608983c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608984d0 | file object: 0xffff948960898550 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960898660 | file object: 0xffff9489608986e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608987f0 | file object: 0xffff948960898870 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960898980 | file object: 0xffff948960898a00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960898b10 | file object: 0xffff948960898b90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960898ca0 | file object: 0xffff948960898d20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960898e30 | file object: 0xffff948960898eb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960899150 | file object: 0xffff9489608991d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608992e0 | file object: 0xffff948960899360 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960899470 | file object: 0xffff9489608994f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960899600 | file object: 0xffff948960899680 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960899790 | file object: 0xffff948960899810 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960899920 | file object: 0xffff9489608999a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960899ab0 | file object: 0xffff948960899b30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960899c40 | file object: 0xffff948960899cc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960899dd0 | file object: 0xffff948960899e50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089a0f0 | file object: 0xffff94896089a170 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089a280 | file object: 0xffff94896089a300 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089a410 | file object: 0xffff94896089a490 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089a5a0 | file object: 0xffff94896089a620 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089a730 | file object: 0xffff94896089a7b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089a8c0 | file object: 0xffff94896089a940 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089aa50 | file object: 0xffff94896089aad0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089abe0 | file object: 0xffff94896089ac60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089ad70 | file object: 0xffff94896089adf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089b090 | file object: 0xffff94896089b110 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089b220 | file object: 0xffff94896089b2a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089b3b0 | file object: 0xffff94896089b430 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089b540 | file object: 0xffff94896089b5c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089b6d0 | file object: 0xffff94896089b750 | offsetby: 0x80
\$Directory
pool: 0xffff94896089b860 | file object: 0xffff94896089b8e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089b9f0 | file object: 0xffff94896089ba70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089bb80 | file object: 0xffff94896089bc00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089bd10 | file object: 0xffff94896089bd90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089c030 | file object: 0xffff94896089c0b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896089c1c0 | file object: 0xffff94896089c240 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089c350 | file object: 0xffff94896089c3d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089c4e0 | file object: 0xffff94896089c560 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089c670 | file object: 0xffff94896089c6f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089c800 | file object: 0xffff94896089c880 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089c990 | file object: 0xffff94896089ca10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089cb20 | file object: 0xffff94896089cba0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089ccb0 | file object: 0xffff94896089cd30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089ce40 | file object: 0xffff94896089cec0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089d160 | file object: 0xffff94896089d1e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089d2f0 | file object: 0xffff94896089d370 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089d480 | file object: 0xffff94896089d500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089d610 | file object: 0xffff94896089d690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089d7a0 | file object: 0xffff94896089d820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089d930 | file object: 0xffff94896089d9b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089dac0 | file object: 0xffff94896089db40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089dc50 | file object: 0xffff94896089dcd0 | offsetby: 0x80
\$Directory
pool: 0xffff94896089dde0 | file object: 0xffff94896089de60 | offsetby: 0x80
\$Directory
pool: 0xffff94896089e100 | file object: 0xffff94896089e180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089e290 | file object: 0xffff94896089e310 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089e420 | file object: 0xffff94896089e4a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089e5b0 | file object: 0xffff94896089e630 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089e740 | file object: 0xffff94896089e7c0 | offsetby: 0x80
\$Directory
pool: 0xffff94896089e8d0 | file object: 0xffff94896089e950 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089ea60 | file object: 0xffff94896089eae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089ebf0 | file object: 0xffff94896089ec70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089ed80 | file object: 0xffff94896089ee00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089f0a0 | file object: 0xffff94896089f120 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089f230 | file object: 0xffff94896089f2b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089f3c0 | file object: 0xffff94896089f440 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089f550 | file object: 0xffff94896089f5d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089f6e0 | file object: 0xffff94896089f760 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089f870 | file object: 0xffff94896089f8f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089fa00 | file object: 0xffff94896089fa80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089fb90 | file object: 0xffff94896089fc10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896089fd20 | file object: 0xffff94896089fda0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a0040 | file object: 0xffff9489608a00c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a01d0 | file object: 0xffff9489608a0250 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a0360 | file object: 0xffff9489608a03e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a04f0 | file object: 0xffff9489608a0570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a0680 | file object: 0xffff9489608a0700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a0810 | file object: 0xffff9489608a0890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a09a0 | file object: 0xffff9489608a0a20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a0b30 | file object: 0xffff9489608a0bb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a0cc0 | file object: 0xffff9489608a0d40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a0e50 | file object: 0xffff9489608a0ed0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a1170 | file object: 0xffff9489608a11f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a1300 | file object: 0xffff9489608a1380 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a1490 | file object: 0xffff9489608a1510 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a1620 | file object: 0xffff9489608a16a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a17b0 | file object: 0xffff9489608a1830 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a1940 | file object: 0xffff9489608a19c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a1ad0 | file object: 0xffff9489608a1b50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a1c60 | file object: 0xffff9489608a1ce0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a1df0 | file object: 0xffff9489608a1e70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a2110 | file object: 0xffff9489608a2190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a22a0 | file object: 0xffff9489608a2320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a2430 | file object: 0xffff9489608a24b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a25c0 | file object: 0xffff9489608a2640 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a2750 | file object: 0xffff9489608a27d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a28e0 | file object: 0xffff9489608a2960 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a2a70 | file object: 0xffff9489608a2af0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a2c00 | file object: 0xffff9489608a2c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a2d90 | file object: 0xffff9489608a2e10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a30b0 | file object: 0xffff9489608a3130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a3240 | file object: 0xffff9489608a32c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a33d0 | file object: 0xffff9489608a3450 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a3560 | file object: 0xffff9489608a35e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a36f0 | file object: 0xffff9489608a3770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a3880 | file object: 0xffff9489608a3900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a3a10 | file object: 0xffff9489608a3a90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a3ba0 | file object: 0xffff9489608a3c20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a3d30 | file object: 0xffff9489608a3db0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a4050 | file object: 0xffff9489608a40d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a41e0 | file object: 0xffff9489608a4260 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a4370 | file object: 0xffff9489608a43f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a4500 | file object: 0xffff9489608a4580 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a4690 | file object: 0xffff9489608a4710 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a4820 | file object: 0xffff9489608a48a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a49b0 | file object: 0xffff9489608a4a30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a4b40 | file object: 0xffff9489608a4bc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a4cd0 | file object: 0xffff9489608a4d50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a4e60 | file object: 0xffff9489608a4ee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a5180 | file object: 0xffff9489608a5200 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a5310 | file object: 0xffff9489608a5390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a54a0 | file object: 0xffff9489608a5520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a5630 | file object: 0xffff9489608a56b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a57c0 | file object: 0xffff9489608a5840 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a5950 | file object: 0xffff9489608a59d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a5ae0 | file object: 0xffff9489608a5b60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a5c70 | file object: 0xffff9489608a5cf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a5e00 | file object: 0xffff9489608a5e80 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a6120 | file object: 0xffff9489608a61a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a62b0 | file object: 0xffff9489608a6330 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a6440 | file object: 0xffff9489608a64c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a65d0 | file object: 0xffff9489608a6650 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a6760 | file object: 0xffff9489608a67e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a68f0 | file object: 0xffff9489608a6970 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a6a80 | file object: 0xffff9489608a6b00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a6c10 | file object: 0xffff9489608a6c90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a6da0 | file object: 0xffff9489608a6e20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a70c0 | file object: 0xffff9489608a7140 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a7250 | file object: 0xffff9489608a72d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a73e0 | file object: 0xffff9489608a7460 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a7570 | file object: 0xffff9489608a75f0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a7700 | file object: 0xffff9489608a7780 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a7890 | file object: 0xffff9489608a7910 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a7a20 | file object: 0xffff9489608a7aa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a7bb0 | file object: 0xffff9489608a7c30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a7d40 | file object: 0xffff9489608a7dc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a8060 | file object: 0xffff9489608a80e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a81f0 | file object: 0xffff9489608a8270 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a8380 | file object: 0xffff9489608a8400 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a8510 | file object: 0xffff9489608a8590 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a86a0 | file object: 0xffff9489608a8720 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a8830 | file object: 0xffff9489608a88b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a89c0 | file object: 0xffff9489608a8a40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a8b50 | file object: 0xffff9489608a8bd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a8ce0 | file object: 0xffff9489608a8d60 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a8e70 | file object: 0xffff9489608a8ef0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a9000 | file object: 0xffff9489608a9080 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a9190 | file object: 0xffff9489608a9210 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a9320 | file object: 0xffff9489608a93a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a94b0 | file object: 0xffff9489608a9530 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a9640 | file object: 0xffff9489608a96c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a97d0 | file object: 0xffff9489608a9850 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a9960 | file object: 0xffff9489608a99e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608a9af0 | file object: 0xffff9489608a9b70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a9c80 | file object: 0xffff9489608a9d00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608a9e10 | file object: 0xffff9489608a9e90 | offsetby: 0x80
\$Directory
pool: 0xffff9489608aa130 | file object: 0xffff9489608aa1b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608aa2c0 | file object: 0xffff9489608aa340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608aa450 | file object: 0xffff9489608aa4d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608aa5e0 | file object: 0xffff9489608aa660 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608aa770 | file object: 0xffff9489608aa7f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608aa900 | file object: 0xffff9489608aa980 | offsetby: 0x80
\$Directory
pool: 0xffff9489608aaa90 | file object: 0xffff9489608aab10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608aac20 | file object: 0xffff9489608aaca0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608aadb0 | file object: 0xffff9489608aae30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ab0d0 | file object: 0xffff9489608ab150 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ab260 | file object: 0xffff9489608ab2e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ab3f0 | file object: 0xffff9489608ab470 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ab580 | file object: 0xffff9489608ab600 | offsetby: 0x80
\$Directory
pool: 0xffff9489608ab710 | file object: 0xffff9489608ab790 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ab8a0 | file object: 0xffff9489608ab920 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608aba30 | file object: 0xffff9489608abab0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608abbc0 | file object: 0xffff9489608abc40 | offsetby: 0x80
\$Directory
pool: 0xffff9489608abd50 | file object: 0xffff9489608abdd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ac070 | file object: 0xffff9489608ac0f0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608ac200 | file object: 0xffff9489608ac280 | offsetby: 0x80
\$Directory
pool: 0xffff9489608ac390 | file object: 0xffff9489608ac410 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ac520 | file object: 0xffff9489608ac5a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ac6b0 | file object: 0xffff9489608ac730 | offsetby: 0x80
\$Directory
pool: 0xffff9489608ac840 | file object: 0xffff9489608ac8c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ac9d0 | file object: 0xffff9489608aca50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608acb60 | file object: 0xffff9489608acbe0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608accf0 | file object: 0xffff9489608acd70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ad010 | file object: 0xffff9489608ad090 | offsetby: 0x80
\$Directory
pool: 0xffff9489608ad1a0 | file object: 0xffff9489608ad220 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ad330 | file object: 0xffff9489608ad3b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ad4c0 | file object: 0xffff9489608ad540 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ad650 | file object: 0xffff9489608ad6d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ad7e0 | file object: 0xffff9489608ad860 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ad970 | file object: 0xffff9489608ad9f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608adb00 | file object: 0xffff9489608adb80 | offsetby: 0x80
\$Directory
pool: 0xffff9489608adc90 | file object: 0xffff9489608add10 | offsetby: 0x80
\$Directory
pool: 0xffff9489608ade20 | file object: 0xffff9489608adea0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608ae140 | file object: 0xffff9489608ae1c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ae2d0 | file object: 0xffff9489608ae350 | offsetby: 0x80
\$Directory
pool: 0xffff9489608ae460 | file object: 0xffff9489608ae4e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608ae5f0 | file object: 0xffff9489608ae670 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ae780 | file object: 0xffff9489608ae800 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ae910 | file object: 0xffff9489608ae990 | offsetby: 0x80
\$Directory
pool: 0xffff9489608aeaa0 | file object: 0xffff9489608aeb20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608aec30 | file object: 0xffff9489608aecb0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608aedc0 | file object: 0xffff9489608aee40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608af0e0 | file object: 0xffff9489608af160 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608af270 | file object: 0xffff9489608af2f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608af400 | file object: 0xffff9489608af480 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608af590 | file object: 0xffff9489608af610 | offsetby: 0x80
\$Directory
pool: 0xffff9489608af720 | file object: 0xffff9489608af7a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608af8b0 | file object: 0xffff9489608af930 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608afa40 | file object: 0xffff9489608afac0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608afbd0 | file object: 0xffff9489608afc50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608afd60 | file object: 0xffff9489608afde0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b0080 | file object: 0xffff9489608b0100 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b0210 | file object: 0xffff9489608b0290 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b03a0 | file object: 0xffff9489608b0420 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b0530 | file object: 0xffff9489608b05b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b06c0 | file object: 0xffff9489608b0740 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b0850 | file object: 0xffff9489608b08d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b09e0 | file object: 0xffff9489608b0a60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b0b70 | file object: 0xffff9489608b0bf0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b0d00 | file object: 0xffff9489608b0d80 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b1020 | file object: 0xffff9489608b10a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b11b0 | file object: 0xffff9489608b1230 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b1340 | file object: 0xffff9489608b13c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b14d0 | file object: 0xffff9489608b1550 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b1660 | file object: 0xffff9489608b16e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b17f0 | file object: 0xffff9489608b1870 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b1980 | file object: 0xffff9489608b1a00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b1b10 | file object: 0xffff9489608b1b90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b1ca0 | file object: 0xffff9489608b1d20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b1e30 | file object: 0xffff9489608b1eb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b2150 | file object: 0xffff9489608b21d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b22e0 | file object: 0xffff9489608b2360 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b2470 | file object: 0xffff9489608b24f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b2600 | file object: 0xffff9489608b2680 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b2790 | file object: 0xffff9489608b2810 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b2920 | file object: 0xffff9489608b29a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b2ab0 | file object: 0xffff9489608b2b30 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b2c40 | file object: 0xffff9489608b2cc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b2dd0 | file object: 0xffff9489608b2e50 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b30f0 | file object: 0xffff9489608b3170 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b3280 | file object: 0xffff9489608b3300 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b3410 | file object: 0xffff9489608b3490 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b35a0 | file object: 0xffff9489608b3620 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b3730 | file object: 0xffff9489608b37b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b38c0 | file object: 0xffff9489608b3940 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b3a50 | file object: 0xffff9489608b3ad0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b3be0 | file object: 0xffff9489608b3c60 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b3d70 | file object: 0xffff9489608b3df0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b4090 | file object: 0xffff9489608b4110 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b4220 | file object: 0xffff9489608b42a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b43b0 | file object: 0xffff9489608b4430 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b4540 | file object: 0xffff9489608b45c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b46d0 | file object: 0xffff9489608b4750 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b4860 | file object: 0xffff9489608b48e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b49f0 | file object: 0xffff9489608b4a70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b4b80 | file object: 0xffff9489608b4c00 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b4d10 | file object: 0xffff9489608b4d90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b5030 | file object: 0xffff9489608b50b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b51c0 | file object: 0xffff9489608b5240 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b5350 | file object: 0xffff9489608b53d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b54e0 | file object: 0xffff9489608b5560 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b5670 | file object: 0xffff9489608b56f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b5800 | file object: 0xffff9489608b5880 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b5990 | file object: 0xffff9489608b5a10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b5b20 | file object: 0xffff9489608b5ba0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b5cb0 | file object: 0xffff9489608b5d30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b5e40 | file object: 0xffff9489608b5ec0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b6160 | file object: 0xffff9489608b61e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b62f0 | file object: 0xffff9489608b6370 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b6480 | file object: 0xffff9489608b6500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b6610 | file object: 0xffff9489608b6690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b67a0 | file object: 0xffff9489608b6820 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b6930 | file object: 0xffff9489608b69b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b6ac0 | file object: 0xffff9489608b6b40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b6c50 | file object: 0xffff9489608b6cd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b6de0 | file object: 0xffff9489608b6e60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b7100 | file object: 0xffff9489608b7180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b7290 | file object: 0xffff9489608b7310 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b7420 | file object: 0xffff9489608b74a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b75b0 | file object: 0xffff9489608b7630 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b7740 | file object: 0xffff9489608b77c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b78d0 | file object: 0xffff9489608b7950 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b7a60 | file object: 0xffff9489608b7ae0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b7bf0 | file object: 0xffff9489608b7c70 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b7d80 | file object: 0xffff9489608b7e00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b80a0 | file object: 0xffff9489608b8120 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b8230 | file object: 0xffff9489608b82b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b83c0 | file object: 0xffff9489608b8440 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b8550 | file object: 0xffff9489608b85d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b86e0 | file object: 0xffff9489608b8760 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b8870 | file object: 0xffff9489608b88f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b8a00 | file object: 0xffff9489608b8a80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b8b90 | file object: 0xffff9489608b8c10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b8d20 | file object: 0xffff9489608b8da0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b9040 | file object: 0xffff9489608b90c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b91d0 | file object: 0xffff9489608b9250 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b9360 | file object: 0xffff9489608b93e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b94f0 | file object: 0xffff9489608b9570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b9680 | file object: 0xffff9489608b9700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b9810 | file object: 0xffff9489608b9890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608b99a0 | file object: 0xffff9489608b9a20 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b9b30 | file object: 0xffff9489608b9bb0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b9cc0 | file object: 0xffff9489608b9d40 | offsetby: 0x80
\$Directory
pool: 0xffff9489608b9e50 | file object: 0xffff9489608b9ed0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ba170 | file object: 0xffff9489608ba1f0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608ba300 | file object: 0xffff9489608ba380 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ba490 | file object: 0xffff9489608ba510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ba620 | file object: 0xffff9489608ba6a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ba7b0 | file object: 0xffff9489608ba830 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608ba940 | file object: 0xffff9489608ba9c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608baad0 | file object: 0xffff9489608bab50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bac60 | file object: 0xffff9489608bace0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608badf0 | file object: 0xffff9489608bae70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bb110 | file object: 0xffff9489608bb190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bb2a0 | file object: 0xffff9489608bb320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bb430 | file object: 0xffff9489608bb4b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bb5c0 | file object: 0xffff9489608bb640 | offsetby: 0x80
\$Directory
pool: 0xffff9489608bb750 | file object: 0xffff9489608bb7d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608bb8e0 | file object: 0xffff9489608bb960 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bba70 | file object: 0xffff9489608bbaf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bbc00 | file object: 0xffff9489608bbc80 | offsetby: 0x80
\$Directory
pool: 0xffff9489608bbd90 | file object: 0xffff9489608bbe10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bc0b0 | file object: 0xffff9489608bc130 | offsetby: 0x80
\$Directory
pool: 0xffff9489608bc240 | file object: 0xffff9489608bc2c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bc3d0 | file object: 0xffff9489608bc450 | offsetby: 0x80
\$Directory
pool: 0xffff9489608bc560 | file object: 0xffff9489608bc5e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bc6f0 | file object: 0xffff9489608bc770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bc880 | file object: 0xffff9489608bc900 | offsetby: 0x80
\$Directory
pool: 0xffff9489608bca10 | file object: 0xffff9489608bca90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bcba0 | file object: 0xffff9489608bcc20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bcd30 | file object: 0xffff9489608bcdb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bd050 | file object: 0xffff9489608bd0d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bd1e0 | file object: 0xffff9489608bd260 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bd370 | file object: 0xffff9489608bd3f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bd500 | file object: 0xffff9489608bd580 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bd690 | file object: 0xffff9489608bd710 | offsetby: 0x80
\$Directory
pool: 0xffff9489608bd820 | file object: 0xffff9489608bd8a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608bd9b0 | file object: 0xffff9489608bda30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bdb40 | file object: 0xffff9489608bdbc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bdcd0 | file object: 0xffff9489608bdd50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bde60 | file object: 0xffff9489608bdee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608be180 | file object: 0xffff9489608be200 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608be310 | file object: 0xffff9489608be390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608be4a0 | file object: 0xffff9489608be520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608be630 | file object: 0xffff9489608be6b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608be7c0 | file object: 0xffff9489608be840 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608be950 | file object: 0xffff9489608be9d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608beae0 | file object: 0xffff9489608beb60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bec70 | file object: 0xffff9489608becf0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608bee00 | file object: 0xffff9489608bee80 | offsetby: 0x80
\$Directory
pool: 0xffff9489608bf120 | file object: 0xffff9489608bf1a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bf2b0 | file object: 0xffff9489608bf330 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bf440 | file object: 0xffff9489608bf4c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bf5d0 | file object: 0xffff9489608bf650 | offsetby: 0x80
\$Directory
pool: 0xffff9489608bf760 | file object: 0xffff9489608bf7e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608bf8f0 | file object: 0xffff9489608bf970 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bfa80 | file object: 0xffff9489608bfb00 | offsetby: 0x80
\$Directory
pool: 0xffff9489608bfc10 | file object: 0xffff9489608bfc90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608bfda0 | file object: 0xffff9489608bfe20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c00c0 | file object: 0xffff9489608c0140 | offsetby: 0x80
\$Directory
pool: 0xffff9489608c0250 | file object: 0xffff9489608c02d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c03e0 | file object: 0xffff9489608c0460 | offsetby: 0x80
\$Directory
pool: 0xffff9489608c0570 | file object: 0xffff9489608c05f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c0700 | file object: 0xffff9489608c0780 | offsetby: 0x80
\$Directory
pool: 0xffff9489608c0890 | file object: 0xffff9489608c0910 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c0a20 | file object: 0xffff9489608c0aa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c0bb0 | file object: 0xffff9489608c0c30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c0d40 | file object: 0xffff9489608c0dc0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608c1060 | file object: 0xffff9489608c10e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c11f0 | file object: 0xffff9489608c1270 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c1380 | file object: 0xffff9489608c1400 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c1510 | file object: 0xffff9489608c1590 | offsetby: 0x80
\$Directory
pool: 0xffff9489608c16a0 | file object: 0xffff9489608c1720 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c1830 | file object: 0xffff9489608c18b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c19c0 | file object: 0xffff9489608c1a40 | offsetby: 0x80
\$Directory
pool: 0xffff9489608c1b50 | file object: 0xffff9489608c1bd0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608c1ce0 | file object: 0xffff9489608c1d60 | offsetby: 0x80
\$Directory
pool: 0xffff9489608c1e70 | file object: 0xffff9489608c1ef0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c2000 | file object: 0xffff9489608c2080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c2190 | file object: 0xffff9489608c2210 | offsetby: 0x80
\$Directory
pool: 0xffff9489608c2320 | file object: 0xffff9489608c23a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608c24b0 | file object: 0xffff9489608c2530 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c2640 | file object: 0xffff9489608c26c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608c27d0 | file object: 0xffff9489608c2850 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c2960 | file object: 0xffff9489608c29e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608c2af0 | file object: 0xffff9489608c2b70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c2c80 | file object: 0xffff9489608c2d00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c2e10 | file object: 0xffff9489608c2e90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c3130 | file object: 0xffff9489608c31b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c32c0 | file object: 0xffff9489608c3340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c3450 | file object: 0xffff9489608c34d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c35e0 | file object: 0xffff9489608c3660 | offsetby: 0x80
\$Directory
pool: 0xffff9489608c3770 | file object: 0xffff9489608c37f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c3900 | file object: 0xffff9489608c3980 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489608c3a90 | file object: 0xffff9489608c3b10 | offsetby: 0x80
\$Directory
pool: 0xffff9489608c3c20 | file object: 0xffff9489608c3ca0 | offsetby: 0x80
\$Directory
pool: 0xffff9489608c3db0 | file object: 0xffff9489608c3e30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960902160 | file object: 0xffff9489609021e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609022f0 | file object: 0xffff948960902370 | offsetby: 0x80
\$Directory
pool: 0xffff948960902480 | file object: 0xffff948960902500 | offsetby: 0x80
\$Directory
pool: 0xffff948960902610 | file object: 0xffff948960902690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609027a0 | file object: 0xffff948960902820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960902930 | file object: 0xffff9489609029b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960902ac0 | file object: 0xffff948960902b40 | offsetby: 0x80
\$Directory
pool: 0xffff948960902c50 | file object: 0xffff948960902cd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960902de0 | file object: 0xffff948960902e60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960903100 | file object: 0xffff948960903180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960903290 | file object: 0xffff948960903310 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960903420 | file object: 0xffff9489609034a0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\clrcompression.dll
pool: 0xffff9489609035b0 | file object: 0xffff948960903630 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960903740 | file object: 0xffff9489609037c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609038d0 | file object: 0xffff948960903950 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960903a60 | file object: 0xffff948960903ae0 | offsetby: 0x80
\$Directory
pool: 0xffff948960903bf0 | file object: 0xffff948960903c70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960903d80 | file object: 0xffff948960903e00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609040a0 | file object: 0xffff948960904120 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960904230 | file object: 0xffff9489609042b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609043c0 | file object: 0xffff948960904440 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960904550 | file object: 0xffff9489609045d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609046e0 | file object: 0xffff948960904760 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960904870 | file object: 0xffff9489609048f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960904a00 | file object: 0xffff948960904a80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960904b90 | file object: 0xffff948960904c10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960904d20 | file object: 0xffff948960904da0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960905040 | file object: 0xffff9489609050c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609051d0 | file object: 0xffff948960905250 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960905360 | file object: 0xffff9489609053e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609054f0 | file object: 0xffff948960905570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960905680 | file object: 0xffff948960905700 | offsetby: 0x80
\$Directory
pool: 0xffff948960905810 | file object: 0xffff948960905890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609059a0 | file object: 0xffff948960905a20 | offsetby: 0x80
\$Directory
pool: 0xffff948960905b30 | file object: 0xffff948960905bb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960905cc0 | file object: 0xffff948960905d40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960905e50 | file object: 0xffff948960905ed0 | offsetby: 0x80
\$Directory
pool: 0xffff948960906170 | file object: 0xffff9489609061f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960906300 | file object: 0xffff948960906380 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960906490 | file object: 0xffff948960906510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960906620 | file object: 0xffff9489609066a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609067b0 | file object: 0xffff948960906830 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960906940 | file object: 0xffff9489609069c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960906ad0 | file object: 0xffff948960906b50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960906c60 | file object: 0xffff948960906ce0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960906df0 | file object: 0xffff948960906e70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960907110 | file object: 0xffff948960907190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609072a0 | file object: 0xffff948960907320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960907430 | file object: 0xffff9489609074b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609075c0 | file object: 0xffff948960907640 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960907750 | file object: 0xffff9489609077d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609078e0 | file object: 0xffff948960907960 | offsetby: 0x80
\$Directory
pool: 0xffff948960907a70 | file object: 0xffff948960907af0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960907c00 | file object: 0xffff948960907c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960907d90 | file object: 0xffff948960907e10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609080b0 | file object: 0xffff948960908130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960908240 | file object: 0xffff9489609082c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609083d0 | file object: 0xffff948960908450 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960908560 | file object: 0xffff9489609085e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609086f0 | file object: 0xffff948960908770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960908880 | file object: 0xffff948960908900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960908a10 | file object: 0xffff948960908a90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960908ba0 | file object: 0xffff948960908c20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960908d30 | file object: 0xffff948960908db0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960909050 | file object: 0xffff9489609090d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609091e0 | file object: 0xffff948960909260 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960909370 | file object: 0xffff9489609093f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960909500 | file object: 0xffff948960909580 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960909690 | file object: 0xffff948960909710 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960909820 | file object: 0xffff9489609098a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609099b0 | file object: 0xffff948960909a30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960909b40 | file object: 0xffff948960909bc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960909cd0 | file object: 0xffff948960909d50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960909e60 | file object: 0xffff948960909ee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090a180 | file object: 0xffff94896090a200 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090a310 | file object: 0xffff94896090a390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090a4a0 | file object: 0xffff94896090a520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090a630 | file object: 0xffff94896090a6b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090a7c0 | file object: 0xffff94896090a840 | offsetby: 0x80
\$Directory
pool: 0xffff94896090a950 | file object: 0xffff94896090a9d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090aae0 | file object: 0xffff94896090ab60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090ac70 | file object: 0xffff94896090acf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090ae00 | file object: 0xffff94896090ae80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090b120 | file object: 0xffff94896090b1a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090b2b0 | file object: 0xffff94896090b330 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090b440 | file object: 0xffff94896090b4c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090b5d0 | file object: 0xffff94896090b650 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090b760 | file object: 0xffff94896090b7e0 | offsetby: 0x80
\$Directory
pool: 0xffff94896090b8f0 | file object: 0xffff94896090b970 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090ba80 | file object: 0xffff94896090bb00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090bc10 | file object: 0xffff94896090bc90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090bda0 | file object: 0xffff94896090be20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090c0c0 | file object: 0xffff94896090c140 | offsetby: 0x80
\$Directory
pool: 0xffff94896090c250 | file object: 0xffff94896090c2d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090c3e0 | file object: 0xffff94896090c460 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090c570 | file object: 0xffff94896090c5f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090c700 | file object: 0xffff94896090c780 | offsetby: 0x80
\$Directory
pool: 0xffff94896090c890 | file object: 0xffff94896090c910 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090ca20 | file object: 0xffff94896090caa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090cbb0 | file object: 0xffff94896090cc30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090cd40 | file object: 0xffff94896090cdc0 | offsetby: 0x80
\$Directory
pool: 0xffff94896090d060 | file object: 0xffff94896090d0e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090d1f0 | file object: 0xffff94896090d270 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090d380 | file object: 0xffff94896090d400 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090d510 | file object: 0xffff94896090d590 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090d6a0 | file object: 0xffff94896090d720 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090d830 | file object: 0xffff94896090d8b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090d9c0 | file object: 0xffff94896090da40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090db50 | file object: 0xffff94896090dbd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090dce0 | file object: 0xffff94896090dd60 | offsetby: 0x80
\$Directory
pool: 0xffff94896090de70 | file object: 0xffff94896090def0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090e000 | file object: 0xffff94896090e080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090e190 | file object: 0xffff94896090e210 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090e320 | file object: 0xffff94896090e3a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090e4b0 | file object: 0xffff94896090e530 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090e640 | file object: 0xffff94896090e6c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090e7d0 | file object: 0xffff94896090e850 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090e960 | file object: 0xffff94896090e9e0 | offsetby: 0x80
\$Directory
pool: 0xffff94896090eaf0 | file object: 0xffff94896090eb70 | offsetby: 0x80
\$Directory
pool: 0xffff94896090ec80 | file object: 0xffff94896090ed00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090ee10 | file object: 0xffff94896090ee90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090f130 | file object: 0xffff94896090f1b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090f2c0 | file object: 0xffff94896090f340 | offsetby: 0x80
\$Directory
pool: 0xffff94896090f450 | file object: 0xffff94896090f4d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090f5e0 | file object: 0xffff94896090f660 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090f770 | file object: 0xffff94896090f7f0 | offsetby: 0x80
\$Directory
pool: 0xffff94896090f900 | file object: 0xffff94896090f980 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090fa90 | file object: 0xffff94896090fb10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896090fc20 | file object: 0xffff94896090fca0 | offsetby: 0x80
\$Directory
pool: 0xffff94896090fdb0 | file object: 0xffff94896090fe30 | offsetby: 0x80
\$Directory
pool: 0xffff9489609100d0 | file object: 0xffff948960910150 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960910260 | file object: 0xffff9489609102e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609103f0 | file object: 0xffff948960910470 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960910580 | file object: 0xffff948960910600 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960910710 | file object: 0xffff948960910790 | offsetby: 0x80
\$Directory
pool: 0xffff9489609108a0 | file object: 0xffff948960910920 | offsetby: 0x80
\$Directory
pool: 0xffff948960910a30 | file object: 0xffff948960910ab0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960910bc0 | file object: 0xffff948960910c40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960910d50 | file object: 0xffff948960910dd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960911070 | file object: 0xffff9489609110f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960911200 | file object: 0xffff948960911280 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960911390 | file object: 0xffff948960911410 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960911520 | file object: 0xffff9489609115a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609116b0 | file object: 0xffff948960911730 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960911840 | file object: 0xffff9489609118c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609119d0 | file object: 0xffff948960911a50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960911b60 | file object: 0xffff948960911be0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960911cf0 | file object: 0xffff948960911d70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960912010 | file object: 0xffff948960912090 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609121a0 | file object: 0xffff948960912220 | offsetby: 0x80
\$Directory
pool: 0xffff948960912330 | file object: 0xffff9489609123b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609124c0 | file object: 0xffff948960912540 | offsetby: 0x80
\$Directory
pool: 0xffff948960912650 | file object: 0xffff9489609126d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609127e0 | file object: 0xffff948960912860 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960912970 | file object: 0xffff9489609129f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960912b00 | file object: 0xffff948960912b80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960912c90 | file object: 0xffff948960912d10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960912e20 | file object: 0xffff948960912ea0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960913140 | file object: 0xffff9489609131c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609132d0 | file object: 0xffff948960913350 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960913460 | file object: 0xffff9489609134e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609135f0 | file object: 0xffff948960913670 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960913780 | file object: 0xffff948960913800 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960913910 | file object: 0xffff948960913990 | offsetby: 0x80
\$Directory
pool: 0xffff948960913aa0 | file object: 0xffff948960913b20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960913c30 | file object: 0xffff948960913cb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960913dc0 | file object: 0xffff948960913e40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609140e0 | file object: 0xffff948960914160 | offsetby: 0x80
\$Directory
pool: 0xffff948960914270 | file object: 0xffff9489609142f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960914400 | file object: 0xffff948960914480 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960914590 | file object: 0xffff948960914610 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960914720 | file object: 0xffff9489609147a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609148b0 | file object: 0xffff948960914930 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960914a40 | file object: 0xffff948960914ac0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960914bd0 | file object: 0xffff948960914c50 | offsetby: 0x80
\$Directory
pool: 0xffff948960914d60 | file object: 0xffff948960914de0 | offsetby: 0x80
\$Directory
pool: 0xffff948960915080 | file object: 0xffff948960915100 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960915210 | file object: 0xffff948960915290 | offsetby: 0x80
\$Directory
pool: 0xffff9489609153a0 | file object: 0xffff948960915420 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\search-result\package.nls.json
pool: 0xffff948960915530 | file object: 0xffff9489609155b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609156c0 | file object: 0xffff948960915740 | offsetby: 0x80
\$Directory
pool: 0xffff948960915850 | file object: 0xffff9489609158d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609159e0 | file object: 0xffff948960915a60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960915b70 | file object: 0xffff948960915bf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960915d00 | file object: 0xffff948960915d80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960916020 | file object: 0xffff9489609160a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609161b0 | file object: 0xffff948960916230 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960916340 | file object: 0xffff9489609163c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609164d0 | file object: 0xffff948960916550 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960916660 | file object: 0xffff9489609166e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609167f0 | file object: 0xffff948960916870 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960916980 | file object: 0xffff948960916a00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960916b10 | file object: 0xffff948960916b90 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-abyss\package.nls.json
pool: 0xffff948960916ca0 | file object: 0xffff948960916d20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960916e30 | file object: 0xffff948960916eb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960917150 | file object: 0xffff9489609171d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609172e0 | file object: 0xffff948960917360 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960917470 | file object: 0xffff9489609174f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960917600 | file object: 0xffff948960917680 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960917790 | file object: 0xffff948960917810 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960917920 | file object: 0xffff9489609179a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960917ab0 | file object: 0xffff948960917b30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960917c40 | file object: 0xffff948960917cc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960917dd0 | file object: 0xffff948960917e50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609180f0 | file object: 0xffff948960918170 | offsetby: 0x80
\$Directory
pool: 0xffff948960918280 | file object: 0xffff948960918300 | offsetby: 0x80
\$Directory
pool: 0xffff948960918410 | file object: 0xffff948960918490 | offsetby: 0x80
\$Directory
pool: 0xffff9489609185a0 | file object: 0xffff948960918620 | offsetby: 0x80
\Windows\System32\drivers\lpus.sys
pool: 0xffff948960918730 | file object: 0xffff9489609187b0 | offsetby: 0x80
\$ConvertToNonresident
pool: 0xffff9489609188c0 | file object: 0xffff948960918940 | offsetby: 0x80
\$Directory
pool: 0xffff948960918a50 | file object: 0xffff948960918ad0 | offsetby: 0x80
\$Directory
pool: 0xffff948960918be0 | file object: 0xffff948960918c60 | offsetby: 0x80
\$Directory
pool: 0xffff948960918d70 | file object: 0xffff948960918df0 | offsetby: 0x80
\$Directory
pool: 0xffff948960919090 | file object: 0xffff948960919110 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960919220 | file object: 0xffff9489609192a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609193b0 | file object: 0xffff948960919430 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code
pool: 0xffff948960919540 | file object: 0xffff9489609195c0 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha\target\release
pool: 0xffff9489609196d0 | file object: 0xffff948960919750 | offsetby: 0x80
\$Directory
pool: 0xffff948960919860 | file object: 0xffff9489609198e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489609199f0 | file object: 0xffff948960919a70 | offsetby: 0x80
\$Directory
pool: 0xffff948960919b80 | file object: 0xffff948960919c00 | offsetby: 0x80
\$Directory
pool: 0xffff948960919d10 | file object: 0xffff948960919d90 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\vscode-account\dist\nls.metadata.header.json
pool: 0xffff94896091a030 | file object: 0xffff94896091a0b0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\vscode-account\dist\nls.metadata.json
pool: 0xffff94896091a1c0 | file object: 0xffff94896091a240 | offsetby: 0x80
\$Directory
pool: 0xffff94896091a350 | file object: 0xffff94896091a3d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896091a4e0 | file object: 0xffff94896091a560 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\iconcache_32.db
pool: 0xffff94896091a670 | file object: 0xffff94896091a6f0 | offsetby: 0x80
\$Directory
pool: 0xffff94896091a800 | file object: 0xffff94896091a880 | offsetby: 0x80
\$Directory
pool: 0xffff94896091a990 | file object: 0xffff94896091aa10 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\shaderlab\package.nls.json
pool: 0xffff94896091ab20 | file object: 0xffff94896091aba0 | offsetby: 0x80
\$Directory
pool: 0xffff94896091acb0 | file object: 0xffff94896091ad30 | offsetby: 0x80
\$Directory
pool: 0xffff94896091ae40 | file object: 0xffff94896091aec0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\scss\package.nls.json
pool: 0xffff94896091b160 | file object: 0xffff94896091b1e0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-monokai-dimmed\package.nls.json
pool: 0xffff94896091b2f0 | file object: 0xffff94896091b370 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\yaml\package.nls.json
pool: 0xffff94896091b480 | file object: 0xffff94896091b500 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-red\package.nls.json
pool: 0xffff94896091b610 | file object: 0xffff94896091b690 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Net.Http\a2d37dadd384c1315ba8f02dd2140cbe\System.Net.Http.ni.dll
pool: 0xffff94896091b7a0 | file object: 0xffff94896091b820 | offsetby: 0x80
\$Directory
pool: 0xffff94896091b930 | file object: 0xffff94896091b9b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896091bac0 | file object: 0xffff94896091bb40 | offsetby: 0x80
\$Directory
pool: 0xffff94896091bc50 | file object: 0xffff94896091bcd0 | offsetby: 0x80
\$Directory
pool: 0xffff94896091bde0 | file object: 0xffff94896091be60 | offsetby: 0x80
\$Directory
pool: 0xffff94896091c100 | file object: 0xffff94896091c180 | offsetby: 0x80
\$Directory
pool: 0xffff94896091c290 | file object: 0xffff94896091c310 | offsetby: 0x80
\$Directory
pool: 0xffff94896091c420 | file object: 0xffff94896091c4a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896091c5b0 | file object: 0xffff94896091c630 | offsetby: 0x80
\$Directory
pool: 0xffff94896091c740 | file object: 0xffff94896091c7c0 | offsetby: 0x80
\$Directory
pool: 0xffff94896091c8d0 | file object: 0xffff94896091c950 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha\target\release
pool: 0xffff94896091ca60 | file object: 0xffff94896091cae0 | offsetby: 0x80
\$Directory
pool: 0xffff94896091cbf0 | file object: 0xffff94896091cc70 | offsetby: 0x80
\$Directory
pool: 0xffff94896091cd80 | file object: 0xffff94896091ce00 | offsetby: 0x80
\$Directory
pool: 0xffff94896091d0a0 | file object: 0xffff94896091d120 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.LiveShare,version=1.0.2274.0\payload.vsix
pool: 0xffff94896091d230 | file object: 0xffff94896091d2b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896091d3c0 | file object: 0xffff94896091d440 | offsetby: 0x80
\$Directory
pool: 0xffff94896091d550 | file object: 0xffff94896091d5d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-defaults\package.nls.json
pool: 0xffff94896091d6e0 | file object: 0xffff94896091d760 | offsetby: 0x80
\$Directory
pool: 0xffff94896091d870 | file object: 0xffff94896091d8f0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Net.Http\a2d37dadd384c1315ba8f02dd2140cbe\System.Net.Http.ni.dll.aux
pool: 0xffff94896091da00 | file object: 0xffff94896091da80 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-monokai\package.nls.json
pool: 0xffff94896091db90 | file object: 0xffff94896091dc10 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\xml\package.nls.json
pool: 0xffff94896091dd20 | file object: 0xffff94896091dda0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-kimbie-dark\package.nls.json
pool: 0xffff94896091e040 | file object: 0xffff94896091e0c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-seti\package.nls.json
pool: 0xffff94896091e1d0 | file object: 0xffff94896091e250 | offsetby: 0x80
\$Directory
pool: 0xffff94896091e360 | file object: 0xffff94896091e3e0 | offsetby: 0x80
\$Directory
pool: 0xffff94896091e4f0 | file object: 0xffff94896091e570 | offsetby: 0x80
\$Directory
pool: 0xffff94896091e680 | file object: 0xffff94896091e700 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-quietlight\package.nls.json
pool: 0xffff94896091e810 | file object: 0xffff94896091e890 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\typescript-language-features\package.nls.json
pool: 0xffff94896091e9a0 | file object: 0xffff94896091ea20 | offsetby: 0x80
\$Directory
pool: 0xffff94896091eb30 | file object: 0xffff94896091ebb0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\vb\package.nls.json
pool: 0xffff94896091ecc0 | file object: 0xffff94896091ed40 | offsetby: 0x80
\$Directory
pool: 0xffff94896091ee50 | file object: 0xffff94896091eed0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\iconcache_48.db
pool: 0xffff94896091f170 | file object: 0xffff94896091f1f0 | offsetby: 0x80
\$Directory
pool: 0xffff94896091f300 | file object: 0xffff94896091f380 | offsetby: 0x80
\$Directory
pool: 0xffff94896091f490 | file object: 0xffff94896091f510 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-solarized-dark\package.nls.json
pool: 0xffff94896091f620 | file object: 0xffff94896091f6a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896091f7b0 | file object: 0xffff94896091f830 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha\target\release\eprocess_scan.exe
pool: 0xffff94896091f940 | file object: 0xffff94896091f9c0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Confe64a9051#\db14181143f09a81576d6aaee8456d8d\System.Configuration.Install.ni.dll
pool: 0xffff94896091fad0 | file object: 0xffff94896091fb50 | offsetby: 0x80
\$Directory
pool: 0xffff94896091fc60 | file object: 0xffff94896091fce0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\typescript-basics\package.nls.json
pool: 0xffff94896091fdf0 | file object: 0xffff94896091fe70 | offsetby: 0x80
\$Directory
pool: 0xffff948960920110 | file object: 0xffff948960920190 | offsetby: 0x80
\$Directory
pool: 0xffff9489609202a0 | file object: 0xffff948960920320 | offsetby: 0x80
\$Directory
pool: 0xffff948960920430 | file object: 0xffff9489609204b0 | offsetby: 0x80
\Registry\Machine\System\CurrentControlSet\Control\StateSeparation\Re
pool: 0xffff9489609205c0 | file object: 0xffff948960920640 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960920750 | file object: 0xffff9489609207d0 | offsetby: 0x80
\Windows\System32\networkexplorer.dll
pool: 0xffff9489609208e0 | file object: 0xffff948960920960 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\shellscript\package.nls.json
pool: 0xffff948960920a70 | file object: 0xffff948960920af0 | offsetby: 0x80
\$Directory
pool: 0xffff948960920c00 | file object: 0xffff948960920c80 | offsetby: 0x80
\$Directory
pool: 0xffff948960920d90 | file object: 0xffff948960920e10 | offsetby: 0x80
\Windows\System32\en-US\combase.dll.mui
pool: 0xffff9489609210b0 | file object: 0xffff948960921130 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-solarized-light\package.nls.json
pool: 0xffff948960921240 | file object: 0xffff9489609212c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-tomorrow-night-blue\package.nls.json
pool: 0xffff9489609213d0 | file object: 0xffff948960921450 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\swift\package.nls.json
pool: 0xffff948960921560 | file object: 0xffff9489609215e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609216f0 | file object: 0xffff948960921770 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960921880 | file object: 0xffff948960921900 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff948960921a10 | file object: 0xffff948960921a90 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Utility\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Commands.Utility.dll
pool: 0xffff948960921ba0 | file object: 0xffff948960921c20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960921d30 | file object: 0xffff948960921db0 | offsetby: 0x80
\$Directory
pool: 0xffff948960922050 | file object: 0xffff9489609220d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609221e0 | file object: 0xffff948960922260 | offsetby: 0x80
\Windows\System32\MicrosoftEdgeCP.exe
pool: 0xffff948960922370 | file object: 0xffff9489609223f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960922500 | file object: 0xffff948960922580 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe
pool: 0xffff948960922690 | file object: 0xffff948960922710 | offsetby: 0x80
\$Directory
pool: 0xffff948960922820 | file object: 0xffff9489609228a0 | offsetby: 0x80
\Windows\Resources\Themes\aero\Shell\NormalColor\shellstyle.dll
pool: 0xffff9489609229b0 | file object: 0xffff948960922a30 | offsetby: 0x80
\Windows\Prefetch\RUNDLL32.EXE-CF0EC82C.pf
pool: 0xffff948960922b40 | file object: 0xffff948960922bc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960922cd0 | file object: 0xffff948960922d50 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\vscode-windows-ca-certs\build\Release\crypt32.node
pool: 0xffff948960922e60 | file object: 0xffff948960922ee0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\vscode-account\package.nls.json
pool: 0xffff948960923180 | file object: 0xffff948960923200 | offsetby: 0x80
\$Directory
pool: 0xffff948960923310 | file object: 0xffff948960923390 | offsetby: 0x80
\Windows\System32\rundll32.exe
pool: 0xffff9489609234a0 | file object: 0xffff948960923520 | offsetby: 0x80
\$Directory
pool: 0xffff948960923630 | file object: 0xffff9489609236b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609237c0 | file object: 0xffff948960923840 | offsetby: 0x80
\$Directory
pool: 0xffff948960923950 | file object: 0xffff9489609239d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960923ae0 | file object: 0xffff948960923b60 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\sql\package.nls.json
pool: 0xffff948960923c70 | file object: 0xffff948960923cf0 | offsetby: 0x80
\$Directory
pool: 0xffff948960923e00 | file object: 0xffff948960923e80 | offsetby: 0x80
\$Directory
pool: 0xffff948960924120 | file object: 0xffff9489609241a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609242b0 | file object: 0xffff948960924330 | offsetby: 0x80
\$Directory
pool: 0xffff948960924440 | file object: 0xffff9489609244c0 | offsetby: 0x80
\Registry\Machine\System\CurrentControlSet\Control\StateSeparation\Re
pool: 0xffff9489609245d0 | file object: 0xffff948960924650 | offsetby: 0x80
\$Directory
pool: 0xffff948960924760 | file object: 0xffff9489609247e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609248f0 | file object: 0xffff948960924970 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\iconcache_16.db
pool: 0xffff948960924a80 | file object: 0xffff948960924b00 | offsetby: 0x80
\$Directory
pool: 0xffff948960924c10 | file object: 0xffff948960924c90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960924da0 | file object: 0xffff948960924e20 | offsetby: 0x80
\$Directory
pool: 0xffff9489609250c0 | file object: 0xffff948960925140 | offsetby: 0x80
\$Directory
pool: 0xffff948960925250 | file object: 0xffff9489609252d0 | offsetby: 0x80
鶈辉舎￿蓹舎￿鶠辉舎￿鶠辉舎￿
pool: 0xffff9489609253e0 | file object: 0xffff948960925460 | offsetby: 0x80
\$Directory
pool: 0xffff948960925570 | file object: 0xffff9489609255f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960925700 | file object: 0xffff948960925780 | offsetby: 0x80
\$Directory
pool: 0xffff948960925890 | file object: 0xffff948960925910 | offsetby: 0x80
\$Directory
pool: 0xffff948960925a20 | file object: 0xffff948960925aa0 | offsetby: 0x80
\$Directory
pool: 0xffff948960925bb0 | file object: 0xffff948960925c30 | offsetby: 0x80
\$Directory
pool: 0xffff948960925d40 | file object: 0xffff948960925dc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960926060 | file object: 0xffff9489609260e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609261f0 | file object: 0xffff948960926270 | offsetby: 0x80
\$Directory
pool: 0xffff948960926380 | file object: 0xffff948960926400 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\MicrosoftEdgePDF.targetsize-16.png
pool: 0xffff948960926510 | file object: 0xffff948960926590 | offsetby: 0x80
\$Directory
pool: 0xffff9489609266a0 | file object: 0xffff948960926720 | offsetby: 0x80
\$Directory
pool: 0xffff948960926830 | file object: 0xffff9489609268b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609269c0 | file object: 0xffff948960926a40 | offsetby: 0x80
\$Directory
pool: 0xffff948960926b50 | file object: 0xffff948960926bd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960926ce0 | file object: 0xffff948960926d60 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha\target
pool: 0xffff948960926e70 | file object: 0xffff948960926ef0 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha\target
pool: 0xffff948960927000 | file object: 0xffff948960927080 | offsetby: 0x80
\$Directory
pool: 0xffff948960927190 | file object: 0xffff948960927210 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960927320 | file object: 0xffff9489609273a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609274b0 | file object: 0xffff948960927530 | offsetby: 0x80
\Users\User\Desktop
pool: 0xffff948960927640 | file object: 0xffff9489609276c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609277d0 | file object: 0xffff948960927850 | offsetby: 0x80
\Windows\System32\en-US\dui70.dll.mui
pool: 0xffff948960927960 | file object: 0xffff9489609279e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960927af0 | file object: 0xffff948960927b70 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\484AE34DE480ACEC63C99B22BDBAE251
pool: 0xffff948960927c80 | file object: 0xffff948960927d00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960927e10 | file object: 0xffff948960927e90 | offsetby: 0x80
\$Directory
pool: 0xffff948960928130 | file object: 0xffff9489609281b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609282c0 | file object: 0xffff948960928340 | offsetby: 0x80
\$Directory
pool: 0xffff948960928450 | file object: 0xffff9489609284d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609285e0 | file object: 0xffff948960928660 | offsetby: 0x80
\Users\User\Desktop
pool: 0xffff948960928770 | file object: 0xffff9489609287f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960928900 | file object: 0xffff948960928980 | offsetby: 0x80
ware\Microsoft\Windows NT\CurrentVersion\WindowsntVersion\tifi
pool: 0xffff948960928a90 | file object: 0xffff948960928b10 | offsetby: 0x80
\$Directory
pool: 0xffff948960928c20 | file object: 0xffff948960928ca0 | offsetby: 0x80
\$Directory
pool: 0xffff948960928db0 | file object: 0xffff948960928e30 | offsetby: 0x80
\$Directory
pool: 0xffff9489609290d0 | file object: 0xffff948960929150 | offsetby: 0x80
\$Directory
pool: 0xffff948960929260 | file object: 0xffff9489609292e0 | offsetby: 0x80
\Device\HarddiskVolume2\Users\User\AppData\Local\nganhkhoa\lpus\ntkrn
pool: 0xffff9489609293f0 | file object: 0xffff948960929470 | offsetby: 0x80
\$Directory
pool: 0xffff948960929580 | file object: 0xffff948960929600 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960929710 | file object: 0xffff948960929790 | offsetby: 0x80
\$Directory
pool: 0xffff9489609298a0 | file object: 0xffff948960929920 | offsetby: 0x80
\$Directory
pool: 0xffff948960929a30 | file object: 0xffff948960929ab0 | offsetby: 0x80
\$Directory
pool: 0xffff948960929bc0 | file object: 0xffff948960929c40 | offsetby: 0x80
\$Directory
pool: 0xffff948960929d50 | file object: 0xffff948960929dd0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092a070 | file object: 0xffff94896092a0f0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_09E6BF504445ABAC3251ADACCFE25781
pool: 0xffff94896092a200 | file object: 0xffff94896092a280 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Themes\CachedFiles\Cach
pool: 0xffff94896092a390 | file object: 0xffff94896092a410 | offsetby: 0x80
\$Directory
pool: 0xffff94896092a520 | file object: 0xffff94896092a5a0 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha
pool: 0xffff94896092a6b0 | file object: 0xffff94896092a730 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896092a840 | file object: 0xffff94896092a8c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896092a9d0 | file object: 0xffff94896092aa50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896092ab60 | file object: 0xffff94896092abe0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092acf0 | file object: 0xffff94896092ad70 | offsetby: 0x80
\$Directory
pool: 0xffff94896092b010 | file object: 0xffff94896092b090 | offsetby: 0x80
\$Directory
pool: 0xffff94896092b1a0 | file object: 0xffff94896092b220 | offsetby: 0x80
\$Directory
pool: 0xffff94896092b330 | file object: 0xffff94896092b3b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092b4c0 | file object: 0xffff94896092b540 | offsetby: 0x80
\$Directory
pool: 0xffff94896092b650 | file object: 0xffff94896092b6d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092b7e0 | file object: 0xffff94896092b860 | offsetby: 0x80
\$Directory
pool: 0xffff94896092b970 | file object: 0xffff94896092b9f0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092bb00 | file object: 0xffff94896092bb80 | offsetby: 0x80
\$Directory
pool: 0xffff94896092bc90 | file object: 0xffff94896092bd10 | offsetby: 0x80
\$Directory
pool: 0xffff94896092be20 | file object: 0xffff94896092bea0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092c140 | file object: 0xffff94896092c1c0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092c2d0 | file object: 0xffff94896092c350 | offsetby: 0x80
\$Directory
pool: 0xffff94896092c460 | file object: 0xffff94896092c4e0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092c5f0 | file object: 0xffff94896092c670 | offsetby: 0x80
\$Directory
pool: 0xffff94896092c780 | file object: 0xffff94896092c800 | offsetby: 0x80
\$Directory
pool: 0xffff94896092c910 | file object: 0xffff94896092c990 | offsetby: 0x80
\$Directory
pool: 0xffff94896092caa0 | file object: 0xffff94896092cb20 | offsetby: 0x80
\$Directory
pool: 0xffff94896092cc30 | file object: 0xffff94896092ccb0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092cdc0 | file object: 0xffff94896092ce40 | offsetby: 0x80
\$Directory
pool: 0xffff94896092d0e0 | file object: 0xffff94896092d160 | offsetby: 0x80
\$Directory
pool: 0xffff94896092d270 | file object: 0xffff94896092d2f0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092d400 | file object: 0xffff94896092d480 | offsetby: 0x80
\$Directory
pool: 0xffff94896092d590 | file object: 0xffff94896092d610 | offsetby: 0x80
\$Directory
pool: 0xffff94896092d720 | file object: 0xffff94896092d7a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092d8b0 | file object: 0xffff94896092d930 | offsetby: 0x80
\$Directory
pool: 0xffff94896092da40 | file object: 0xffff94896092dac0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092dbd0 | file object: 0xffff94896092dc50 | offsetby: 0x80
\$Directory
pool: 0xffff94896092dd60 | file object: 0xffff94896092dde0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092e080 | file object: 0xffff94896092e100 | offsetby: 0x80
\$Directory
pool: 0xffff94896092e210 | file object: 0xffff94896092e290 | offsetby: 0x80
\$Directory
pool: 0xffff94896092e3a0 | file object: 0xffff94896092e420 | offsetby: 0x80
\$Directory
pool: 0xffff94896092e530 | file object: 0xffff94896092e5b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092e6c0 | file object: 0xffff94896092e740 | offsetby: 0x80
\$Directory
pool: 0xffff94896092e850 | file object: 0xffff94896092e8d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092e9e0 | file object: 0xffff94896092ea60 | offsetby: 0x80
\$Directory
pool: 0xffff94896092eb70 | file object: 0xffff94896092ebf0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092ed00 | file object: 0xffff94896092ed80 | offsetby: 0x80
\$Directory
pool: 0xffff94896092f020 | file object: 0xffff94896092f0a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092f1b0 | file object: 0xffff94896092f230 | offsetby: 0x80
\$Directory
pool: 0xffff94896092f340 | file object: 0xffff94896092f3c0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092f4d0 | file object: 0xffff94896092f550 | offsetby: 0x80
\$Directory
pool: 0xffff94896092f660 | file object: 0xffff94896092f6e0 | offsetby: 0x80
\$Directory
pool: 0xffff94896092f7f0 | file object: 0xffff94896092f870 | offsetby: 0x80
\$Directory
pool: 0xffff94896092f980 | file object: 0xffff94896092fa00 | offsetby: 0x80
\$Directory
pool: 0xffff94896092fb10 | file object: 0xffff94896092fb90 | offsetby: 0x80
\$Directory
pool: 0xffff94896092fca0 | file object: 0xffff94896092fd20 | offsetby: 0x80
\$Directory
pool: 0xffff94896092fe30 | file object: 0xffff94896092feb0 | offsetby: 0x80
System\CurrentControlSet\Services\Tcpip\Parameters\Interfaces781EF.
pool: 0xffff948960930150 | file object: 0xffff9489609301d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609302e0 | file object: 0xffff948960930360 | offsetby: 0x80
\$Directory
pool: 0xffff948960930470 | file object: 0xffff9489609304f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960930600 | file object: 0xffff948960930680 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_256.db
pool: 0xffff948960930790 | file object: 0xffff948960930810 | offsetby: 0x80
\$Directory
pool: 0xffff948960930920 | file object: 0xffff9489609309a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960930ab0 | file object: 0xffff948960930b30 | offsetby: 0x80
\$Directory
pool: 0xffff948960930c40 | file object: 0xffff948960930cc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960930dd0 | file object: 0xffff948960930e50 | offsetby: 0x80
\$Directory
pool: 0xffff9489609310f0 | file object: 0xffff948960931170 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\MicrosoftEdgeFile.targetsize-16.png
pool: 0xffff948960931280 | file object: 0xffff948960931300 | offsetby: 0x80
\Windows\System32\en-US\rundll32.exe.mui
pool: 0xffff948960931410 | file object: 0xffff948960931490 | offsetby: 0x80
\$Directory
pool: 0xffff9489609315a0 | file object: 0xffff948960931620 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_idx.
pool: 0xffff948960931730 | file object: 0xffff9489609317b0 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha\target\release\file_object_scan.exe
pool: 0xffff9489609318c0 | file object: 0xffff948960931940 | offsetby: 0x80
\$Directory
pool: 0xffff948960931a50 | file object: 0xffff948960931ad0 | offsetby: 0x80
\$Directory
pool: 0xffff948960931be0 | file object: 0xffff948960931c60 | offsetby: 0x80
\$Directory
pool: 0xffff948960931d70 | file object: 0xffff948960931df0 | offsetby: 0x80
\$Directory
pool: 0xffff948960932090 | file object: 0xffff948960932110 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\PowerShell\PSReadLine\ConsoleHost_history.txt
pool: 0xffff948960932220 | file object: 0xffff9489609322a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609323b0 | file object: 0xffff948960932430 | offsetby: 0x80
\$Directory
pool: 0xffff948960932540 | file object: 0xffff9489609325c0 | offsetby: 0x80
pool: 0xffff9489609326d0 | file object: 0xffff948960932750 | offsetby: 0x80
\$Directory
pool: 0xffff948960932860 | file object: 0xffff9489609328e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609329f0 | file object: 0xffff948960932a70 | offsetby: 0x80
\$Directory
pool: 0xffff948960932b80 | file object: 0xffff948960932c00 | offsetby: 0x80
\$Directory
pool: 0xffff948960932d10 | file object: 0xffff948960932d90 | offsetby: 0x80
\$Directory
pool: 0xffff948960933030 | file object: 0xffff9489609330b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609331c0 | file object: 0xffff948960933240 | offsetby: 0x80
\$Directory
pool: 0xffff948960933350 | file object: 0xffff9489609333d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609334e0 | file object: 0xffff948960933560 | offsetby: 0x80
\$Directory
pool: 0xffff948960933670 | file object: 0xffff9489609336f0 | offsetby: 0x80
\Users\User\AppData\Local\nganhkhoa\lpus\ntkrnlmp.pdb\E7477A03A707805
pool: 0xffff948960933800 | file object: 0xffff948960933880 | offsetby: 0x80
\$Directory
pool: 0xffff948960933990 | file object: 0xffff948960933a10 | offsetby: 0x80
\$Directory
pool: 0xffff948960933b20 | file object: 0xffff948960933ba0 | offsetby: 0x80
\$Directory
pool: 0xffff948960933cb0 | file object: 0xffff948960933d30 | offsetby: 0x80
\$Directory
pool: 0xffff948960933e40 | file object: 0xffff948960933ec0 | offsetby: 0x80
\Windows\System32\WindowsPowerShell\v1.0\Modules\Microsoft.PowerShell.Utility\Microsoft.PowerShell.Utility.psd1
pool: 0xffff948960934160 | file object: 0xffff9489609341e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609342f0 | file object: 0xffff948960934370 | offsetby: 0x80
\$Directory
pool: 0xffff948960934480 | file object: 0xffff948960934500 | offsetby: 0x80
\$Directory
pool: 0xffff948960934610 | file object: 0xffff948960934690 | offsetby: 0x80
\$Directory
pool: 0xffff9489609347a0 | file object: 0xffff948960934820 | offsetby: 0x80
\$Directory
pool: 0xffff948960934930 | file object: 0xffff9489609349b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960934ac0 | file object: 0xffff948960934b40 | offsetby: 0x80
\$Directory
pool: 0xffff948960934c50 | file object: 0xffff948960934cd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960934de0 | file object: 0xffff948960934e60 | offsetby: 0x80
\$Directory
pool: 0xffff948960935100 | file object: 0xffff948960935180 | offsetby: 0x80
\$Directory
pool: 0xffff948960935290 | file object: 0xffff948960935310 | offsetby: 0x80
\$Directory
pool: 0xffff948960935420 | file object: 0xffff9489609354a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609355b0 | file object: 0xffff948960935630 | offsetby: 0x80
\$Directory
pool: 0xffff948960935740 | file object: 0xffff9489609357c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609358d0 | file object: 0xffff948960935950 | offsetby: 0x80
\$Directory
pool: 0xffff948960935a60 | file object: 0xffff948960935ae0 | offsetby: 0x80
\$Directory
pool: 0xffff948960935bf0 | file object: 0xffff948960935c70 | offsetby: 0x80
\$Directory
pool: 0xffff948960935d80 | file object: 0xffff948960935e00 | offsetby: 0x80
\$Directory
pool: 0xffff9489609360a0 | file object: 0xffff948960936120 | offsetby: 0x80
\$Directory
pool: 0xffff948960936230 | file object: 0xffff9489609362b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609363c0 | file object: 0xffff948960936440 | offsetby: 0x80
\$Directory
pool: 0xffff948960936550 | file object: 0xffff9489609365d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609366e0 | file object: 0xffff948960936760 | offsetby: 0x80
\$Directory
pool: 0xffff948960936870 | file object: 0xffff9489609368f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960936a00 | file object: 0xffff948960936a80 | offsetby: 0x80
\$Directory
pool: 0xffff948960936b90 | file object: 0xffff948960936c10 | offsetby: 0x80
\$Directory
pool: 0xffff948960936d20 | file object: 0xffff948960936da0 | offsetby: 0x80
\$Directory
pool: 0xffff948960937040 | file object: 0xffff9489609370c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609371d0 | file object: 0xffff948960937250 | offsetby: 0x80
\$Directory
pool: 0xffff948960937360 | file object: 0xffff9489609373e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609374f0 | file object: 0xffff948960937570 | offsetby: 0x80
\$Directory
pool: 0xffff948960937680 | file object: 0xffff948960937700 | offsetby: 0x80
\$Directory
pool: 0xffff948960937810 | file object: 0xffff948960937890 | offsetby: 0x80
\$Directory
pool: 0xffff9489609379a0 | file object: 0xffff948960937a20 | offsetby: 0x80
\$Directory
pool: 0xffff948960937b30 | file object: 0xffff948960937bb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960937cc0 | file object: 0xffff948960937d40 | offsetby: 0x80
\$Directory
pool: 0xffff948960937e50 | file object: 0xffff948960937ed0 | offsetby: 0x80
\$Directory
pool: 0xffff948960938170 | file object: 0xffff9489609381f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960938300 | file object: 0xffff948960938380 | offsetby: 0x80
\$Directory
pool: 0xffff948960938490 | file object: 0xffff948960938510 | offsetby: 0x80
\$Directory
pool: 0xffff948960938620 | file object: 0xffff9489609386a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609387b0 | file object: 0xffff948960938830 | offsetby: 0x80
\$Directory
pool: 0xffff948960938940 | file object: 0xffff9489609389c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960938ad0 | file object: 0xffff948960938b50 | offsetby: 0x80
\$Directory
pool: 0xffff948960938c60 | file object: 0xffff948960938ce0 | offsetby: 0x80
\$Directory
pool: 0xffff948960938df0 | file object: 0xffff948960938e70 | offsetby: 0x80
\$Directory
pool: 0xffff948960939110 | file object: 0xffff948960939190 | offsetby: 0x80
\$Directory
pool: 0xffff9489609392a0 | file object: 0xffff948960939320 | offsetby: 0x80
\$Directory
pool: 0xffff948960939430 | file object: 0xffff9489609394b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609395c0 | file object: 0xffff948960939640 | offsetby: 0x80
\$Directory
pool: 0xffff948960939750 | file object: 0xffff9489609397d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609398e0 | file object: 0xffff948960939960 | offsetby: 0x80
\$Directory
pool: 0xffff948960939a70 | file object: 0xffff948960939af0 | offsetby: 0x80
\$Directory
pool: 0xffff948960939c00 | file object: 0xffff948960939c80 | offsetby: 0x80
\$Directory
pool: 0xffff948960939d90 | file object: 0xffff948960939e10 | offsetby: 0x80
\$Directory
pool: 0xffff94896093a0b0 | file object: 0xffff94896093a130 | offsetby: 0x80
\$Directory
pool: 0xffff94896093a240 | file object: 0xffff94896093a2c0 | offsetby: 0x80
\$Directory
pool: 0xffff94896093a3d0 | file object: 0xffff94896093a450 | offsetby: 0x80
\$Directory
pool: 0xffff94896093a560 | file object: 0xffff94896093a5e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896093a6f0 | file object: 0xffff94896093a770 | offsetby: 0x80
\$Directory
pool: 0xffff94896093a880 | file object: 0xffff94896093a900 | offsetby: 0x80
\$Directory
pool: 0xffff94896093aa10 | file object: 0xffff94896093aa90 | offsetby: 0x80
\$Directory
pool: 0xffff94896093aba0 | file object: 0xffff94896093ac20 | offsetby: 0x80
\$Directory
pool: 0xffff94896093ad30 | file object: 0xffff94896093adb0 | offsetby: 0x80
\$Directory
pool: 0xffff94896093b050 | file object: 0xffff94896093b0d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896093b1e0 | file object: 0xffff94896093b260 | offsetby: 0x80
\$Directory
pool: 0xffff94896093b370 | file object: 0xffff94896093b3f0 | offsetby: 0x80
\$Directory
pool: 0xffff94896093b500 | file object: 0xffff94896093b580 | offsetby: 0x80
\$Directory
pool: 0xffff94896093b690 | file object: 0xffff94896093b710 | offsetby: 0x80
\$Directory
pool: 0xffff94896093b820 | file object: 0xffff94896093b8a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896093b9b0 | file object: 0xffff94896093ba30 | offsetby: 0x80
\$Directory
pool: 0xffff94896093bb40 | file object: 0xffff94896093bbc0 | offsetby: 0x80
\$Directory
pool: 0xffff94896093bcd0 | file object: 0xffff94896093bd50 | offsetby: 0x80
\$Directory
pool: 0xffff94896093be60 | file object: 0xffff94896093bee0 | offsetby: 0x80
\$Directory
pool: 0xffff94896093c180 | file object: 0xffff94896093c200 | offsetby: 0x80
\$Directory
pool: 0xffff94896093c310 | file object: 0xffff94896093c390 | offsetby: 0x80
\$Directory
pool: 0xffff94896093c4a0 | file object: 0xffff94896093c520 | offsetby: 0x80
\$Directory
pool: 0xffff94896093c630 | file object: 0xffff94896093c6b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896093c7c0 | file object: 0xffff94896093c840 | offsetby: 0x80
\$Directory
pool: 0xffff94896093c950 | file object: 0xffff94896093c9d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896093cae0 | file object: 0xffff94896093cb60 | offsetby: 0x80
\$Directory
pool: 0xffff94896093cc70 | file object: 0xffff94896093ccf0 | offsetby: 0x80
\$Directory
pool: 0xffff94896093ce00 | file object: 0xffff94896093ce80 | offsetby: 0x80
\$Directory
pool: 0xffff94896093d120 | file object: 0xffff94896093d1a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896093d2b0 | file object: 0xffff94896093d330 | offsetby: 0x80
\$Directory
pool: 0xffff94896093d440 | file object: 0xffff94896093d4c0 | offsetby: 0x80
\$Directory
pool: 0xffff94896093d5d0 | file object: 0xffff94896093d650 | offsetby: 0x80
\$Directory
pool: 0xffff94896093d760 | file object: 0xffff94896093d7e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896093d8f0 | file object: 0xffff94896093d970 | offsetby: 0x80
\$Directory
pool: 0xffff94896093da80 | file object: 0xffff94896093db00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896093dc10 | file object: 0xffff94896093dc90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896093dda0 | file object: 0xffff94896093de20 | offsetby: 0x80
\$Directory
pool: 0xffff94896093e0c0 | file object: 0xffff94896093e140 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896093e250 | file object: 0xffff94896093e2d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896093e3e0 | file object: 0xffff94896093e460 | offsetby: 0x80
\$Directory
pool: 0xffff94896093e570 | file object: 0xffff94896093e5f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896093e700 | file object: 0xffff94896093e780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896093e890 | file object: 0xffff94896093e910 | offsetby: 0x80
\$Directory
pool: 0xffff94896093ea20 | file object: 0xffff94896093eaa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896093ebb0 | file object: 0xffff94896093ec30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896093ed40 | file object: 0xffff94896093edc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896093f060 | file object: 0xffff94896093f0e0 | offsetby: 0x80
\Windows\Globalization\ICU\icudtl.dat
pool: 0xffff94896093f1f0 | file object: 0xffff94896093f270 | offsetby: 0x80
\$Directory
pool: 0xffff94896093f380 | file object: 0xffff94896093f400 | offsetby: 0x80
\$Directory
pool: 0xffff94896093f510 | file object: 0xffff94896093f590 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896093f6a0 | file object: 0xffff94896093f720 | offsetby: 0x80
\$Directory
pool: 0xffff94896093f830 | file object: 0xffff94896093f8b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896093f9c0 | file object: 0xffff94896093fa40 | offsetby: 0x80
\$Directory
pool: 0xffff94896093fb50 | file object: 0xffff94896093fbd0 | offsetby: 0x80
\$Directory
pool: 0xffff94896093fce0 | file object: 0xffff94896093fd60 | offsetby: 0x80
\$Directory
pool: 0xffff94896093fe70 | file object: 0xffff94896093fef0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960940000 | file object: 0xffff948960940080 | offsetby: 0x80
\$Directory
pool: 0xffff948960940190 | file object: 0xffff948960940210 | offsetby: 0x80
\$Directory
pool: 0xffff948960940320 | file object: 0xffff9489609403a0 | offsetby: 0x80
\Windows\Globalization\ICU\timezoneTypes.res
pool: 0xffff9489609404b0 | file object: 0xffff948960940530 | offsetby: 0x80
\$Directory
pool: 0xffff948960940640 | file object: 0xffff9489609406c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609407d0 | file object: 0xffff948960940850 | offsetby: 0x80
\$Directory
pool: 0xffff948960940960 | file object: 0xffff9489609409e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960940af0 | file object: 0xffff948960940b70 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\Indexed DB\IndexedDB.edb
pool: 0xffff948960940c80 | file object: 0xffff948960940d00 | offsetby: 0x80
\$Directory
pool: 0xffff948960940e10 | file object: 0xffff948960940e90 | offsetby: 0x80
€誛舎￿Āﷰ寗钉￿
pool: 0xffff948960941130 | file object: 0xffff9489609411b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489609412c0 | file object: 0xffff948960941340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960941450 | file object: 0xffff9489609414d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489609415e0 | file object: 0xffff948960941660 | offsetby: 0x80
\$Directory
pool: 0xffff948960941770 | file object: 0xffff9489609417f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960941900 | file object: 0xffff948960941980 | offsetby: 0x80
\$Directory
pool: 0xffff948960941a90 | file object: 0xffff948960941b10 | offsetby: 0x80
ഏ㞇硸蝶舎￿&㍻㙄㐴㥃
pool: 0xffff948960941c20 | file object: 0xffff948960941ca0 | offsetby: 0x80
\$Directory
pool: 0xffff948960941db0 | file object: 0xffff948960941e30 | offsetby: 0x80
\$Directory
pool: 0xffff948960a02160 | file object: 0xffff948960a021e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\EnvelopeFactory-a0b71115546690a2344f4726dabf4611.code
pool: 0xffff948960a022f0 | file object: 0xffff948960a02370 | offsetby: 0x80
\Windows\Fonts\palab.ttf
pool: 0xffff948960a02480 | file object: 0xffff948960a02500 | offsetby: 0x80
\$Directory
pool: 0xffff948960a02610 | file object: 0xffff948960a02690 | offsetby: 0x80
\Windows\Fonts\palai.ttf
pool: 0xffff948960a027a0 | file object: 0xffff948960a02820 | offsetby: 0x80
\$Directory
pool: 0xffff948960a02930 | file object: 0xffff948960a029b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Context-ac076cdf062df6d359f611d8e227500f.code
pool: 0xffff948960a02ac0 | file object: 0xffff948960a02b40 | offsetby: 0x80
\$Directory
pool: 0xffff948960a02c50 | file object: 0xffff948960a02cd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a02de0 | file object: 0xffff948960a02e60 | offsetby: 0x80
\$Directory
pool: 0xffff948960a03100 | file object: 0xffff948960a03180 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960a03290 | file object: 0xffff948960a03310 | offsetby: 0x80
\Windows\Fonts\simsun.ttc
pool: 0xffff948960a03420 | file object: 0xffff948960a034a0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\polyfills-1eae96e39334733a0979be0387638acf.code
pool: 0xffff948960a035b0 | file object: 0xffff948960a03630 | offsetby: 0x80
\$Directory
pool: 0xffff948960a03740 | file object: 0xffff948960a037c0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\graceful-fs-fc2d2adcacb47cfa8f8c0b51d5722419.code
pool: 0xffff948960a038d0 | file object: 0xffff948960a03950 | offsetby: 0x80
\$Directory
pool: 0xffff948960a03a60 | file object: 0xffff948960a03ae0 | offsetby: 0x80
\Program Files\WindowsPowerShell\Modules\PSReadline\2.0.0\PSReadline.psd1
pool: 0xffff948960a03bf0 | file object: 0xffff948960a03c70 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\rust\syntaxes\rust.tmLanguage.json
pool: 0xffff948960a03d80 | file object: 0xffff948960a03e00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a040a0 | file object: 0xffff948960a04120 | offsetby: 0x80
\Windows\Fonts\palabi.ttf
pool: 0xffff948960a04230 | file object: 0xffff948960a042b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\node-c94c7d10e62dcb2e0fef5d910f475352.code
pool: 0xffff948960a043c0 | file object: 0xffff948960a04440 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-bbaffd46cdd2f803479946ee2e4cf74c.code
pool: 0xffff948960a04550 | file object: 0xffff948960a045d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a046e0 | file object: 0xffff948960a04760 | offsetby: 0x80
\$Directory
pool: 0xffff948960a04870 | file object: 0xffff948960a048f0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Config-ef12f5492c7bb6cf8d8b153e02914657.code
pool: 0xffff948960a04a00 | file object: 0xffff948960a04a80 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-6975eb4b3804ea45c6b02da8accc87ba.code
pool: 0xffff948960a04b90 | file object: 0xffff948960a04c10 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-486fefdef2adb4a74ee6660d8372b607.code
pool: 0xffff948960a04d20 | file object: 0xffff948960a04da0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a05040 | file object: 0xffff948960a050c0 | offsetby: 0x80
\Windows\Fonts\cambria.ttc
pool: 0xffff948960a051d0 | file object: 0xffff948960a05250 | offsetby: 0x80
\$Directory
pool: 0xffff948960a05360 | file object: 0xffff948960a053e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a054f0 | file object: 0xffff948960a05570 | offsetby: 0x80
\$Directory
pool: 0xffff948960a05680 | file object: 0xffff948960a05700 | offsetby: 0x80
\$Directory
pool: 0xffff948960a05810 | file object: 0xffff948960a05890 | offsetby: 0x80
\$Directory
pool: 0xffff948960a059a0 | file object: 0xffff948960a05a20 | offsetby: 0x80
\$Directory
pool: 0xffff948960a05b30 | file object: 0xffff948960a05bb0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\extension-795c3f53719a763bf00695fd186b5608.code
pool: 0xffff948960a05cc0 | file object: 0xffff948960a05d40 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\debug-auto-launch\dist\extension.js
pool: 0xffff948960a05e50 | file object: 0xffff948960a05ed0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a06170 | file object: 0xffff948960a061f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a06300 | file object: 0xffff948960a06380 | offsetby: 0x80
\$Directory
pool: 0xffff948960a06490 | file object: 0xffff948960a06510 | offsetby: 0x80
\$Directory
pool: 0xffff948960a06620 | file object: 0xffff948960a066a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\configuration-editing\package.nls.json
pool: 0xffff948960a067b0 | file object: 0xffff948960a06830 | offsetby: 0x80
\$Directory
pool: 0xffff948960a06940 | file object: 0xffff948960a069c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a06ad0 | file object: 0xffff948960a06b50 | offsetby: 0x80
\$Directory
pool: 0xffff948960a06c60 | file object: 0xffff948960a06ce0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a06df0 | file object: 0xffff948960a06e70 | offsetby: 0x80
\$Directory
pool: 0xffff948960a07110 | file object: 0xffff948960a07190 | offsetby: 0x80
\$Directory
pool: 0xffff948960a072a0 | file object: 0xffff948960a07320 | offsetby: 0x80
\$Directory
pool: 0xffff948960a07430 | file object: 0xffff948960a074b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a075c0 | file object: 0xffff948960a07640 | offsetby: 0x80
\$Directory
pool: 0xffff948960a07750 | file object: 0xffff948960a077d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\rust\language-configuration.json
pool: 0xffff948960a078e0 | file object: 0xffff948960a07960 | offsetby: 0x80
\$Directory
pool: 0xffff948960a07a70 | file object: 0xffff948960a07af0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a07c00 | file object: 0xffff948960a07c80 | offsetby: 0x80
\Windows\System32\pnrpnsp.dll
pool: 0xffff948960a07d90 | file object: 0xffff948960a07e10 | offsetby: 0x80
\$Directory
pool: 0xffff948960a080b0 | file object: 0xffff948960a08130 | offsetby: 0x80
\$Directory
pool: 0xffff948960a08240 | file object: 0xffff948960a082c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\vscode-oniguruma\release\onig.wasm
pool: 0xffff948960a083d0 | file object: 0xffff948960a08450 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a08560 | file object: 0xffff948960a085e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a086f0 | file object: 0xffff948960a08770 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\bat\package.nls.json
pool: 0xffff948960a08880 | file object: 0xffff948960a08900 | offsetby: 0x80
\$Directory
pool: 0xffff948960a08a10 | file object: 0xffff948960a08a90 | offsetby: 0x80
\$Directory
pool: 0xffff948960a08ba0 | file object: 0xffff948960a08c20 | offsetby: 0x80
\$Directory
pool: 0xffff948960a08d30 | file object: 0xffff948960a08db0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a09050 | file object: 0xffff948960a090d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\clojure\package.json
pool: 0xffff948960a091e0 | file object: 0xffff948960a09260 | offsetby: 0x80
\Program Files\WindowsPowerShell\Modules\PSReadline\2.0.0\PSReadline.psm1
pool: 0xffff948960a09370 | file object: 0xffff948960a093f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a09500 | file object: 0xffff948960a09580 | offsetby: 0x80
\$Directory
pool: 0xffff948960a09690 | file object: 0xffff948960a09710 | offsetby: 0x80
\$Directory
pool: 0xffff948960a09820 | file object: 0xffff948960a098a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a099b0 | file object: 0xffff948960a09a30 | offsetby: 0x80
\$Directory
pool: 0xffff948960a09b40 | file object: 0xffff948960a09bc0 | offsetby: 0x80
\Windows\SystemApps\Microsoft.Windows.Cortana_cw5n1h2txyewy\CortanaApi.ProxyStub.dll
pool: 0xffff948960a09cd0 | file object: 0xffff948960a09d50 | offsetby: 0x80
\$Directory
pool: 0xffff948960a09e60 | file object: 0xffff948960a09ee0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Azure.DataLake.Tools.SDK.Compiler,version=10.0.16299.1,chip=neutral\_package.json
pool: 0xffff948960a0a180 | file object: 0xffff948960a0a200 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0a310 | file object: 0xffff948960a0a390 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Azure.Waverton.Projects,version=2.9.20200212.1\_package.json
pool: 0xffff948960a0a4a0 | file object: 0xffff948960a0a520 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\debug-auto-launch\dist\nls.metadata.header.json
pool: 0xffff948960a0a630 | file object: 0xffff948960a0a6b0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\emmet\dist\extension.js
pool: 0xffff948960a0a7c0 | file object: 0xffff948960a0a840 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Net.CoreSDK.50,version=1.0.23909\_package.json
pool: 0xffff948960a0a950 | file object: 0xffff948960a0a9d0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Azure.Waverton.BuildTools,version=2.9.20200212.1\_package.json
pool: 0xffff948960a0aae0 | file object: 0xffff948960a0ab60 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0ac70 | file object: 0xffff948960a0acf0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0ae00 | file object: 0xffff948960a0ae80 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0b120 | file object: 0xffff948960a0b1a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0b2b0 | file object: 0xffff948960a0b330 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0b440 | file object: 0xffff948960a0b4c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0b5d0 | file object: 0xffff948960a0b650 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0b760 | file object: 0xffff948960a0b7e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0b8f0 | file object: 0xffff948960a0b970 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.Dskx.Resources,version=16.6.30027.235,language=en-US\_package.json
pool: 0xffff948960a0ba80 | file object: 0xffff948960a0bb00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0bc10 | file object: 0xffff948960a0bc90 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.Dskx,version=16.5.29721.120\_package.json
pool: 0xffff948960a0bda0 | file object: 0xffff948960a0be20 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Azure.ResourceManager.Tools,version=3.0.20200221.1\_package.json
pool: 0xffff948960a0c0c0 | file object: 0xffff948960a0c140 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0c250 | file object: 0xffff948960a0c2d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0c3e0 | file object: 0xffff948960a0c460 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0c570 | file object: 0xffff948960a0c5f0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Azure.PowerShellNew,version=16.0.28621.142,chip=x64\_package.json
pool: 0xffff948960a0c700 | file object: 0xffff948960a0c780 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.Core.VCProjectEngine.Resources,version=16.0.28315.86,language=en-US\_package.json
pool: 0xffff948960a0c890 | file object: 0xffff948960a0c910 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.Core.VCProjectEngine,version=16.6.30014.66\_package.json
pool: 0xffff948960a0ca20 | file object: 0xffff948960a0caa0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0cbb0 | file object: 0xffff948960a0cc30 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.ProjectSystem.Resources,version=16.6.30014.66,language=en-US\_package.json
pool: 0xffff948960a0cd40 | file object: 0xffff948960a0cdc0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.Base,version=16.6.30014.66\_package.json
pool: 0xffff948960a0d060 | file object: 0xffff948960a0d0e0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.LanguageService.Resources,version=16.6.30105.148,language=en-US\_package.json
pool: 0xffff948960a0d1f0 | file object: 0xffff948960a0d270 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.VCPkgDatabase,version=16.0.28516.191\_package.json
pool: 0xffff948960a0d380 | file object: 0xffff948960a0d400 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Llvm.Base,version=16.6.30013.169\_package.json
pool: 0xffff948960a0d510 | file object: 0xffff948960a0d590 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0d6a0 | file object: 0xffff948960a0d720 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.LanguageService,version=16.6.30128.74\_package.json
pool: 0xffff948960a0d830 | file object: 0xffff948960a0d8b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0d9c0 | file object: 0xffff948960a0da40 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0db50 | file object: 0xffff948960a0dbd0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.Base.Resources,version=16.6.30014.187,language=en-US\_package.json
pool: 0xffff948960a0dce0 | file object: 0xffff948960a0dd60 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0de70 | file object: 0xffff948960a0def0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Package.Azure.ServiceFabric.Tools,version=16.0.20200423.1\_package.json
pool: 0xffff948960a0e000 | file object: 0xffff948960a0e080 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0e190 | file object: 0xffff948960a0e210 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.ProjectSystem,version=16.6.30028.132\_package.json
pool: 0xffff948960a0e320 | file object: 0xffff948960a0e3a0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Kubernetes.Tools.16.0,version=16.0.2004.1601\_package.json
pool: 0xffff948960a0e4b0 | file object: 0xffff948960a0e530 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0e640 | file object: 0xffff948960a0e6c0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.Core,version=16.6.30013.169\_package.json
pool: 0xffff948960a0e7d0 | file object: 0xffff948960a0e850 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0e960 | file object: 0xffff948960a0e9e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0eaf0 | file object: 0xffff948960a0eb70 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.MSBuild.ARM.v142,version=16.6.30027.235\_package.json
pool: 0xffff948960a0ec80 | file object: 0xffff948960a0ed00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0ee10 | file object: 0xffff948960a0ee90 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.MSBuild.Base,version=16.6.30028.119\_package.json
pool: 0xffff948960a0f130 | file object: 0xffff948960a0f1b0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.MSBuild.x86.v142,version=16.6.30027.235\_package.json
pool: 0xffff948960a0f2c0 | file object: 0xffff948960a0f340 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0f450 | file object: 0xffff948960a0f4d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0f5e0 | file object: 0xffff948960a0f660 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.MSBuild.Base.Resources,version=16.6.30027.235,language=en-US\_package.json
pool: 0xffff948960a0f770 | file object: 0xffff948960a0f7f0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.MSBuild.X86,version=16.6.30027.235\_package.json
pool: 0xffff948960a0f900 | file object: 0xffff948960a0f980 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.WinXPlus,version=16.0.28320.50\_package.json
pool: 0xffff948960a0fa90 | file object: 0xffff948960a0fb10 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0fc20 | file object: 0xffff948960a0fca0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a0fdb0 | file object: 0xffff948960a0fe30 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VS.VC.MSBuild.X64.Resources,version=16.5.29514.35,language=en-US\_package.json
pool: 0xffff948960a100d0 | file object: 0xffff948960a10150 | offsetby: 0x80
\$Directory
pool: 0xffff948960a10260 | file object: 0xffff948960a102e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a103f0 | file object: 0xffff948960a10470 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.MSBuild.X64,version=16.6.30027.235\_package.json
pool: 0xffff948960a10580 | file object: 0xffff948960a10600 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.x64,version=16.6.30013.169,chip=x64\_package.json
pool: 0xffff948960a10710 | file object: 0xffff948960a10790 | offsetby: 0x80
\$Directory
pool: 0xffff948960a108a0 | file object: 0xffff948960a10920 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.MSBuild.X64.v142,version=16.6.30027.235\_package.json
pool: 0xffff948960a10a30 | file object: 0xffff948960a10ab0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Templates.Pro,version=16.5.29721.120\_package.json
pool: 0xffff948960a10bc0 | file object: 0xffff948960a10c40 | offsetby: 0x80
\$Directory
pool: 0xffff948960a10d50 | file object: 0xffff948960a10dd0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Templates.Pro.Resources,version=16.5.29721.120,language=en-US\_package.json
pool: 0xffff948960a11070 | file object: 0xffff948960a110f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a11200 | file object: 0xffff948960a11280 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.Pro,version=16.0.28320.50\_package.json
pool: 0xffff948960a11390 | file object: 0xffff948960a11410 | offsetby: 0x80
\$Directory
pool: 0xffff948960a11520 | file object: 0xffff948960a115a0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Items.Pro,version=16.5.29721.120\_package.json
pool: 0xffff948960a116b0 | file object: 0xffff948960a11730 | offsetby: 0x80
\$Directory
pool: 0xffff948960a11840 | file object: 0xffff948960a118c0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.Pro.Resources,version=16.5.29515.21,language=en-US\_package.json
pool: 0xffff948960a119d0 | file object: 0xffff948960a11a50 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.MSBuild.ARM,version=16.6.30027.235\_package.json
pool: 0xffff948960a11b60 | file object: 0xffff948960a11be0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Redist.14.Latest,version=14.26.28720,chip=x86\_package.json
pool: 0xffff948960a11cf0 | file object: 0xffff948960a11d70 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Graphics.Analyzer,version=16.4.29411.138\_package.json
pool: 0xffff948960a12010 | file object: 0xffff948960a12090 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Graphics.Appid.Resources,version=16.6.30020.68,language=en-US\_package.json
pool: 0xffff948960a121a0 | file object: 0xffff948960a12220 | offsetby: 0x80
\$Directory
pool: 0xffff948960a12330 | file object: 0xffff948960a123b0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Graphics.Analyzer.Targeted,version=16.0.28315.86,chip=x64\_package.json
pool: 0xffff948960a124c0 | file object: 0xffff948960a12540 | offsetby: 0x80
\$Directory
pool: 0xffff948960a12650 | file object: 0xffff948960a126d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a127e0 | file object: 0xffff948960a12860 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Graphics.Viewers.Resources,version=16.5.29721.120,language=en-US\_package.json
pool: 0xffff948960a12970 | file object: 0xffff948960a129f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a12b00 | file object: 0xffff948960a12b80 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.Headers,version=14.26.28806\_package.json
pool: 0xffff948960a12c90 | file object: 0xffff948960a12d10 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Graphics.Msi,version=16.4.29411.138,chip=x86\_package.json
pool: 0xffff948960a12e20 | file object: 0xffff948960a12ea0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a13140 | file object: 0xffff948960a131c0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Graphics.Msi,version=16.4.29411.25,chip=x64\_package.json
pool: 0xffff948960a132d0 | file object: 0xffff948960a13350 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Redist.14.Latest,version=14.26.28720,chip=x64\_package.json
pool: 0xffff948960a13460 | file object: 0xffff948960a134e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a135f0 | file object: 0xffff948960a13670 | offsetby: 0x80
\$Directory
pool: 0xffff948960a13780 | file object: 0xffff948960a13800 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.RuntimeDebug.14,version=14.26.28720,chip=x86\_package.json
pool: 0xffff948960a13910 | file object: 0xffff948960a13990 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.RuntimeDebug.14,version=14.26.28720,chip=x64\_package.json
pool: 0xffff948960a13aa0 | file object: 0xffff948960a13b20 | offsetby: 0x80
\$Directory
pool: 0xffff948960a13c30 | file object: 0xffff948960a13cb0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Graphics.Analyzer.Resources,version=16.5.29814.53,language=en-US\_package.json
pool: 0xffff948960a13dc0 | file object: 0xffff948960a13e40 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Graphics.Appid,version=16.6.30014.187\_package.json
pool: 0xffff948960a140e0 | file object: 0xffff948960a14160 | offsetby: 0x80
\$Directory
pool: 0xffff948960a14270 | file object: 0xffff948960a142f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a14400 | file object: 0xffff948960a14480 | offsetby: 0x80
\$Directory
pool: 0xffff948960a14590 | file object: 0xffff948960a14610 | offsetby: 0x80
\$Directory
pool: 0xffff948960a14720 | file object: 0xffff948960a147a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a148b0 | file object: 0xffff948960a14930 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Graphics.EnableTools,version=16.0.28315.86\_package.json
pool: 0xffff948960a14a40 | file object: 0xffff948960a14ac0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a14bd0 | file object: 0xffff948960a14c50 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Graphics.Viewers,version=16.3.29209.152\_package.json
pool: 0xffff948960a14d60 | file object: 0xffff948960a14de0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.x64.Store,version=14.26.28803\_package.json
pool: 0xffff948960a15080 | file object: 0xffff948960a15100 | offsetby: 0x80
\$Directory
pool: 0xffff948960a15210 | file object: 0xffff948960a15290 | offsetby: 0x80
\$Directory
pool: 0xffff948960a153a0 | file object: 0xffff948960a15420 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.DIA.SDK,version=14.26.28803\_package.json
pool: 0xffff948960a15530 | file object: 0xffff948960a155b0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.Source,version=14.26.28803\_package.json
pool: 0xffff948960a156c0 | file object: 0xffff948960a15740 | offsetby: 0x80
\$Directory
pool: 0xffff948960a15850 | file object: 0xffff948960a158d0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Tools.HostX86.TargetX86,version=14.26.28806\_package.json
pool: 0xffff948960a159e0 | file object: 0xffff948960a15a60 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.Redist.X86,version=14.26.28720\_package.json
pool: 0xffff948960a15b70 | file object: 0xffff948960a15bf0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Tools.Hostx86.Targetx64.Resources,version=14.26.28806,language=en-US\_package.json
pool: 0xffff948960a15d00 | file object: 0xffff948960a15d80 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.Redist.x64.OneCore.Desktop,version=14.26.28720\_package.json
pool: 0xffff948960a16020 | file object: 0xffff948960a160a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a161b0 | file object: 0xffff948960a16230 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Tools.HostX86.TargetX64,version=14.26.28806\_package.json
pool: 0xffff948960a16340 | file object: 0xffff948960a163c0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Tools.HostX86.TargetX86.Resources,version=14.26.28806,language=en-US\_package.json
pool: 0xffff948960a164d0 | file object: 0xffff948960a16550 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.x86.OneCore.Desktop,version=14.26.28803\_package.json
pool: 0xffff948960a16660 | file object: 0xffff948960a166e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a167f0 | file object: 0xffff948960a16870 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.x64.Desktop,version=14.26.28803\_package.json
pool: 0xffff948960a16980 | file object: 0xffff948960a16a00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a16b10 | file object: 0xffff948960a16b90 | offsetby: 0x80
\$Directory
pool: 0xffff948960a16ca0 | file object: 0xffff948960a16d20 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Tools.Core.x86,version=14.26.28803\_package.json
pool: 0xffff948960a16e30 | file object: 0xffff948960a16eb0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.x86.Store,version=14.26.28803\_package.json
pool: 0xffff948960a17150 | file object: 0xffff948960a171d0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.Redist.Resources,version=14.26.28720,language=en-US\_package.json
pool: 0xffff948960a172e0 | file object: 0xffff948960a17360 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Tools.Core.Resources,version=14.26.28803,language=en-US\_package.json
pool: 0xffff948960a17470 | file object: 0xffff948960a174f0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.Redist.X64,version=14.26.28720\_package.json
pool: 0xffff948960a17600 | file object: 0xffff948960a17680 | offsetby: 0x80
\$Directory
pool: 0xffff948960a17790 | file object: 0xffff948960a17810 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.x64.OneCore.Desktop,version=14.26.28803\_package.json
pool: 0xffff948960a17920 | file object: 0xffff948960a179a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a17ab0 | file object: 0xffff948960a17b30 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.Redist.x86.OneCore.Desktop,version=14.26.28720\_package.json
pool: 0xffff948960a17c40 | file object: 0xffff948960a17cc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a17dd0 | file object: 0xffff948960a17e50 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.x86.Desktop,version=14.26.28803\_package.json
pool: 0xffff948960a180f0 | file object: 0xffff948960a18170 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Premium.Tools.HostX64.TargetX86,version=14.26.28803,chip=x64\_package.json
pool: 0xffff948960a18280 | file object: 0xffff948960a18300 | offsetby: 0x80
\$Directory
pool: 0xffff948960a18410 | file object: 0xffff948960a18490 | offsetby: 0x80
\$Directory
pool: 0xffff948960a185a0 | file object: 0xffff948960a18620 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.PGO.X64,version=14.26.28803\_package.json
pool: 0xffff948960a18730 | file object: 0xffff948960a187b0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Premium.Tools.HostX64.TargetX64,version=14.26.28803,chip=x64\_package.json
pool: 0xffff948960a188c0 | file object: 0xffff948960a18940 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Tools.HostX64.TargetX86.Resources,version=14.26.28806,chip=x64,language=en-US\_package.json
pool: 0xffff948960a18a50 | file object: 0xffff948960a18ad0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a18be0 | file object: 0xffff948960a18c60 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Premium.Tools.HostX64.TargetX64.Resources,version=14.26.28803,chip=x64,language=en-US\_package.json
pool: 0xffff948960a18d70 | file object: 0xffff948960a18df0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.PGO.X86,version=14.26.28803\_package.json
pool: 0xffff948960a19090 | file object: 0xffff948960a19110 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.PGO.Headers,version=14.26.28803\_package.json
pool: 0xffff948960a19220 | file object: 0xffff948960a192a0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Premium.Tools.HostX64.TargetX86.Resources,version=14.26.28803,chip=x64,language=en-US\_package.json
pool: 0xffff948960a193b0 | file object: 0xffff948960a19430 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Premium.Tools.HostX86.TargetX86,version=14.26.28803\_package.json
pool: 0xffff948960a19540 | file object: 0xffff948960a195c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a196d0 | file object: 0xffff948960a19750 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Premium.Tools.Hostx86.Targetx64.Resources,version=14.26.28803,language=en-US\_package.json
pool: 0xffff948960a19860 | file object: 0xffff948960a198e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a199f0 | file object: 0xffff948960a19a70 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Premium.Tools.HostX86.TargetX86.Resources,version=14.26.28803,language=en-US\_package.json
pool: 0xffff948960a19b80 | file object: 0xffff948960a19c00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a19d10 | file object: 0xffff948960a19d90 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1a030 | file object: 0xffff948960a1a0b0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Premium.Tools.HostX86.TargetX64,version=14.26.28803\_package.json
pool: 0xffff948960a1a1c0 | file object: 0xffff948960a1a240 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1a350 | file object: 0xffff948960a1a3d0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Tools.HostX64.TargetX64.Resources,version=14.26.28806,chip=x64,language=en-US\_package.json
pool: 0xffff948960a1a4e0 | file object: 0xffff948960a1a560 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1a670 | file object: 0xffff948960a1a6f0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Tools.HostX64.TargetX64,version=14.26.28806,chip=x64\_package.json
pool: 0xffff948960a1a800 | file object: 0xffff948960a1a880 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.Tools.HostX64.TargetX86,version=14.26.28806,chip=x64\_package.json
pool: 0xffff948960a1a990 | file object: 0xffff948960a1aa10 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1ab20 | file object: 0xffff948960a1aba0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1acb0 | file object: 0xffff948960a1ad30 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CodeAnalysis.ConcurrencyCheck.X64.Resources,version=14.26.28803,chip=x64,language=en-US\_package.json
pool: 0xffff948960a1ae40 | file object: 0xffff948960a1aec0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1b160 | file object: 0xffff948960a1b1e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1b2f0 | file object: 0xffff948960a1b370 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1b480 | file object: 0xffff948960a1b500 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1b610 | file object: 0xffff948960a1b690 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CodeAnalysis.Extensions.X86,version=14.26.28803\_package.json
pool: 0xffff948960a1b7a0 | file object: 0xffff948960a1b820 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Templates.VB.Winforms,version=16.6.30013.169,language=en-US\_package.json
pool: 0xffff948960a1b930 | file object: 0xffff948960a1b9b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1bac0 | file object: 0xffff948960a1bb40 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Templates.CS.Winforms,version=16.4.29313.120,language=en-US\_package.json
pool: 0xffff948960a1bc50 | file object: 0xffff948960a1bcd0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CodeAnalysis.ConcurrencyCheck.X86,version=14.26.28803\_package.json
pool: 0xffff948960a1bde0 | file object: 0xffff948960a1be60 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CodeAnalysis.ConcurrencyCheck.X86.Resources,version=14.26.28803,language=en-US\_package.json
pool: 0xffff948960a1c100 | file object: 0xffff948960a1c180 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CodeAnalysis.Extensions.X86.Resources,version=14.26.28803,language=en-US\_package.json
pool: 0xffff948960a1c290 | file object: 0xffff948960a1c310 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Templates.VB.Wpf.Resources,version=16.6.30013.169,language=en-US\_package.json
pool: 0xffff948960a1c420 | file object: 0xffff948960a1c4a0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Templates.VB.Wpf,version=16.2.28915.88\_package.json
pool: 0xffff948960a1c5b0 | file object: 0xffff948960a1c630 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Blend,version=16.6.30128.74\_package.json
pool: 0xffff948960a1c740 | file object: 0xffff948960a1c7c0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CodeAnalysis.Extensions,version=16.4.29313.120\_package.json
pool: 0xffff948960a1c8d0 | file object: 0xffff948960a1c950 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1ca60 | file object: 0xffff948960a1cae0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1cbf0 | file object: 0xffff948960a1cc70 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1cd80 | file object: 0xffff948960a1ce00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1d0a0 | file object: 0xffff948960a1d120 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CodeAnalysis.ConcurrencyCheck.X64,version=14.26.28803,chip=x64\_package.json
pool: 0xffff948960a1d230 | file object: 0xffff948960a1d2b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1d3c0 | file object: 0xffff948960a1d440 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Win10SDK_10.0.18362,version=10.0.18362.0\_package.json
pool: 0xffff948960a1d550 | file object: 0xffff948960a1d5d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1d6e0 | file object: 0xffff948960a1d760 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1d870 | file object: 0xffff948960a1d8f0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Templates.CS.Wpf,version=16.2.28915.88\_package.json
pool: 0xffff948960a1da00 | file object: 0xffff948960a1da80 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CodeAnalysis.Extensions.X64,version=14.26.28803,chip=x64\_package.json
pool: 0xffff948960a1db90 | file object: 0xffff948960a1dc10 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1dd20 | file object: 0xffff948960a1dda0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1e040 | file object: 0xffff948960a1e0c0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CodeAnalysis.Extensions.X64.Resources,version=14.26.28803,chip=x64,language=en-US\_package.json
pool: 0xffff948960a1e1d0 | file object: 0xffff948960a1e250 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1e360 | file object: 0xffff948960a1e3e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1e4f0 | file object: 0xffff948960a1e570 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Blend.Msi,version=16.0.28329.73\_package.json
pool: 0xffff948960a1e680 | file object: 0xffff948960a1e700 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1e810 | file object: 0xffff948960a1e890 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.JustInTime.Msi,version=16.6.30013.169,chip=x64\_package.json
pool: 0xffff948960a1e9a0 | file object: 0xffff948960a1ea20 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.JustInTime,version=16.2.28915.88\_package.json
pool: 0xffff948960a1eb30 | file object: 0xffff948960a1ebb0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Windows.Tools.Resources,version=16.6.30114.105,language=en-US\_package.json
pool: 0xffff948960a1ecc0 | file object: 0xffff948960a1ed40 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1ee50 | file object: 0xffff948960a1eed0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.CoreClr.arm,version=16.0.28315.86\_package.json
pool: 0xffff948960a1f170 | file object: 0xffff948960a1f1f0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.Concord.OneCore.arm.Resources,version=16.6.30020.46,language=en-US\_package.json
pool: 0xffff948960a1f300 | file object: 0xffff948960a1f380 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1f490 | file object: 0xffff948960a1f510 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1f620 | file object: 0xffff948960a1f6a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1f7b0 | file object: 0xffff948960a1f830 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.OneCore.arm64.Resources,version=16.6.30013.169,language=en-US\_package.json
pool: 0xffff948960a1f940 | file object: 0xffff948960a1f9c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1fad0 | file object: 0xffff948960a1fb50 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1fc60 | file object: 0xffff948960a1fce0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a1fdf0 | file object: 0xffff948960a1fe70 | offsetby: 0x80
\$Directory
pool: 0xffff948960a20110 | file object: 0xffff948960a20190 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.OneCore.arm,version=16.6.30020.184\_package.json
pool: 0xffff948960a202a0 | file object: 0xffff948960a20320 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Windows.Build.Resources,version=16.6.30014.161,language=en-US\_package.json
pool: 0xffff948960a20430 | file object: 0xffff948960a204b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a205c0 | file object: 0xffff948960a20640 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Net.CoreUWP,version=1.1.52\_package.json
pool: 0xffff948960a20750 | file object: 0xffff948960a207d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a208e0 | file object: 0xffff948960a20960 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.ImmersiveActivateHelper.Msi,version=16.6.30013.169\_package.json
pool: 0xffff948960a20a70 | file object: 0xffff948960a20af0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a20c00 | file object: 0xffff948960a20c80 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.OneCore.arm.Resources,version=16.6.30013.169,language=en-US\_package.json
pool: 0xffff948960a20d90 | file object: 0xffff948960a20e10 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.Concord.OneCore.arm,version=16.6.30020.46\_package.json
pool: 0xffff948960a210b0 | file object: 0xffff948960a21130 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Windows.Build,version=16.6.30027.235\_package.json
pool: 0xffff948960a21240 | file object: 0xffff948960a212c0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Blend.Resources,version=16.6.30020.68,language=en-US\_package.json
pool: 0xffff948960a213d0 | file object: 0xffff948960a21450 | offsetby: 0x80
\$Directory
pool: 0xffff948960a21560 | file object: 0xffff948960a215e0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.UnitTest.UAP.Build.Core,version=16.0.30013.169\_package.json
pool: 0xffff948960a216f0 | file object: 0xffff948960a21770 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.Concord.OneCore.x86.Resources,version=16.6.30020.46,language=en-US\_package.json
pool: 0xffff948960a21880 | file object: 0xffff948960a21900 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Windows.Tools.Msi.16,version=16.6.30014.187\_package.json
pool: 0xffff948960a21a10 | file object: 0xffff948960a21a90 | offsetby: 0x80
\$Directory
pool: 0xffff948960a21ba0 | file object: 0xffff948960a21c20 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.DesktopBridge.Build,version=16.6.30014.66\_package.json
pool: 0xffff948960a21d30 | file object: 0xffff948960a21db0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.OneCore.x86,version=16.6.30020.184\_package.json
pool: 0xffff948960a22050 | file object: 0xffff948960a220d0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.Concord.OneCore.arm64,version=16.6.30020.46\_package.json
pool: 0xffff948960a221e0 | file object: 0xffff948960a22260 | offsetby: 0x80
\$Directory
pool: 0xffff948960a22370 | file object: 0xffff948960a223f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a22500 | file object: 0xffff948960a22580 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.CoreClr.arm64,version=16.3.29207.166\_package.json
pool: 0xffff948960a22690 | file object: 0xffff948960a22710 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.OneCore.arm64,version=16.6.30020.184\_package.json
pool: 0xffff948960a22820 | file object: 0xffff948960a228a0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Windows.Tools,version=16.6.30114.105\_package.json
pool: 0xffff948960a229b0 | file object: 0xffff948960a22a30 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.Concord.OneCore.arm64.Resources,version=16.6.30020.46,language=en-US\_package.json
pool: 0xffff948960a22b40 | file object: 0xffff948960a22bc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a22cd0 | file object: 0xffff948960a22d50 | offsetby: 0x80
\$Directory
pool: 0xffff948960a22e60 | file object: 0xffff948960a22ee0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.DesktopBridge.Build.Resources,version=16.6.30014.161,language=en-US\_package.json
pool: 0xffff948960a23180 | file object: 0xffff948960a23200 | offsetby: 0x80
\$Directory
pool: 0xffff948960a23310 | file object: 0xffff948960a23390 | offsetby: 0x80
\$Directory
pool: 0xffff948960a234a0 | file object: 0xffff948960a23520 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.Appx.Resources.Msi,version=14.26.28803,language=en-US\_package.json
pool: 0xffff948960a23630 | file object: 0xffff948960a236b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a237c0 | file object: 0xffff948960a23840 | offsetby: 0x80
\$Directory
pool: 0xffff948960a23950 | file object: 0xffff948960a239d0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.Concord.OneCore.x86,version=16.6.30020.46\_package.json
pool: 0xffff948960a23ae0 | file object: 0xffff948960a23b60 | offsetby: 0x80
\$Directory
pool: 0xffff948960a23c70 | file object: 0xffff948960a23cf0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a23e00 | file object: 0xffff948960a23e80 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.CoreClr.x86,version=16.0.28315.86\_package.json
pool: 0xffff948960a24120 | file object: 0xffff948960a241a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a242b0 | file object: 0xffff948960a24330 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Debugger.OneCore.x86.Resources,version=16.6.30013.169,language=en-US\_package.json
pool: 0xffff948960a24440 | file object: 0xffff948960a244c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a245d0 | file object: 0xffff948960a24650 | offsetby: 0x80
\$Directory
pool: 0xffff948960a24760 | file object: 0xffff948960a247e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a248f0 | file object: 0xffff948960a24970 | offsetby: 0x80
\$Directory
pool: 0xffff948960a24a80 | file object: 0xffff948960a24b00 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.Appx.Desktop.140.Msi,version=14.26.28803\_package.json
pool: 0xffff948960a24c10 | file object: 0xffff948960a24c90 | offsetby: 0x80
\$Directory
pool: 0xffff948960a24da0 | file object: 0xffff948960a24e20 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Windows.Tools.Ide.Resources,version=16.6.30028.132,language=en-US\_package.json
pool: 0xffff948960a250c0 | file object: 0xffff948960a25140 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Windows.Tools.Ide,version=16.6.30021.99\_package.json
pool: 0xffff948960a25250 | file object: 0xffff948960a252d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a253e0 | file object: 0xffff948960a25460 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.Appx.Universal.120.Msi,version=14.26.28803\_package.json
pool: 0xffff948960a25570 | file object: 0xffff948960a255f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a25700 | file object: 0xffff948960a25780 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Windows.UniversalDebugger.Resources,version=16.6.30013.169,language=en-US\_package.json
pool: 0xffff948960a25890 | file object: 0xffff948960a25910 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Windows.UniversalDebugger,version=16.6.30014.66\_package.json
pool: 0xffff948960a25a20 | file object: 0xffff948960a25aa0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a25bb0 | file object: 0xffff948960a25c30 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.Appx.Desktop.110.Msi,version=14.26.28803\_package.json
pool: 0xffff948960a25d40 | file object: 0xffff948960a25dc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a26060 | file object: 0xffff948960a260e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a261f0 | file object: 0xffff948960a26270 | offsetby: 0x80
\$Directory
pool: 0xffff948960a26380 | file object: 0xffff948960a26400 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Windows.Tools.Executables,version=16.6.30128.74\_package.json
pool: 0xffff948960a26510 | file object: 0xffff948960a26590 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.DesktopBridge.Tools.Resources,version=16.6.30014.161,language=en-US\_package.json
pool: 0xffff948960a266a0 | file object: 0xffff948960a26720 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.Appx.Msi,version=14.26.28803\_package.json
pool: 0xffff948960a26830 | file object: 0xffff948960a268b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a269c0 | file object: 0xffff948960a26a40 | offsetby: 0x80
\$Directory
pool: 0xffff948960a26b50 | file object: 0xffff948960a26bd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a26ce0 | file object: 0xffff948960a26d60 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.DesktopBridge.Tools,version=16.6.30014.66\_package.json
pool: 0xffff948960a26e70 | file object: 0xffff948960a26ef0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a27000 | file object: 0xffff948960a27080 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.Appx.ARM64.Msi,version=14.26.28803\_package.json
pool: 0xffff948960a27190 | file object: 0xffff948960a27210 | offsetby: 0x80
\$Directory
pool: 0xffff948960a27320 | file object: 0xffff948960a273a0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Templates.Desktop,version=16.6.30013.169\_package.json
pool: 0xffff948960a274b0 | file object: 0xffff948960a27530 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.arm.OneCore.Desktop,version=14.26.28803\_package.json
pool: 0xffff948960a27640 | file object: 0xffff948960a276c0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Windows.Tools.Overview,version=16.2.28930.63\_package.json
pool: 0xffff948960a277d0 | file object: 0xffff948960a27850 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.CRT.Appx.Desktop.120.Msi,version=14.26.28803\_package.json
pool: 0xffff948960a27960 | file object: 0xffff948960a279e0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.CMake.Project,version=16.6.30014.187\_package.json
pool: 0xffff948960a27af0 | file object: 0xffff948960a27b70 | offsetby: 0x80
\$Directory
pool: 0xffff948960a27c80 | file object: 0xffff948960a27d00 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.TestAdapterForBoostTest,version=1.0.8.6\_package.json
pool: 0xffff948960a27e10 | file object: 0xffff948960a27e90 | offsetby: 0x80
\$Directory
pool: 0xffff948960a28130 | file object: 0xffff948960a281b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a282c0 | file object: 0xffff948960a28340 | offsetby: 0x80
\$Directory
pool: 0xffff948960a28450 | file object: 0xffff948960a284d0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Templates.UnitTest.Resources,version=16.6.30014.66,language=en-US\_package.json
pool: 0xffff948960a285e0 | file object: 0xffff948960a28660 | offsetby: 0x80
\$Directory
pool: 0xffff948960a28770 | file object: 0xffff948960a287f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a28900 | file object: 0xffff948960a28980 | offsetby: 0x80
\$Directory
pool: 0xffff948960a28a90 | file object: 0xffff948960a28b10 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.ATL.Source,version=14.26.28803\_package.json
pool: 0xffff948960a28c20 | file object: 0xffff948960a28ca0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.ATL.X86,version=14.26.28803\_package.json
pool: 0xffff948960a28db0 | file object: 0xffff948960a28e30 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.ATL.Headers,version=14.26.28803\_package.json
pool: 0xffff948960a290d0 | file object: 0xffff948960a29150 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.CMake,version=16.6.30013.169\_package.json
pool: 0xffff948960a29260 | file object: 0xffff948960a292e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a293f0 | file object: 0xffff948960a29470 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.ExternalBuildFramework,version=16.6.30014.187\_package.json
pool: 0xffff948960a29580 | file object: 0xffff948960a29600 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.TestAdapterForGoogleTest,version=0.10.1.12\_package.json
pool: 0xffff948960a29710 | file object: 0xffff948960a29790 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.ASAN.X86,version=14.26.28803\_package.json
pool: 0xffff948960a298a0 | file object: 0xffff948960a29920 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.DotNetNative.ILC,version=16.5.29514.165\_package.json
pool: 0xffff948960a29a30 | file object: 0xffff948960a29ab0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.DotNetNative.Core,version=16.5.29721.120\_package.json
pool: 0xffff948960a29bc0 | file object: 0xffff948960a29c40 | offsetby: 0x80
\$Directory
pool: 0xffff948960a29d50 | file object: 0xffff948960a29dd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2a070 | file object: 0xffff948960a2a0f0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.UnitTest.Desktop.Build.Core,version=16.0.30013.169\_package.json
pool: 0xffff948960a2a200 | file object: 0xffff948960a2a280 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.ATL.Resources,version=16.5.29515.21,language=en-US\_package.json
pool: 0xffff948960a2a390 | file object: 0xffff948960a2a410 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Templates.UnitTest,version=16.6.30013.169\_package.json
pool: 0xffff948960a2a520 | file object: 0xffff948960a2a5a0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualCpp.ATL.X64,version=14.26.28803\_package.json
pool: 0xffff948960a2a6b0 | file object: 0xffff948960a2a730 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.VC.Ide.ATL,version=16.6.30014.66\_package.json
pool: 0xffff948960a2a840 | file object: 0xffff948960a2a8c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2a9d0 | file object: 0xffff948960a2aa50 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.TestTools.TestPlatform.V1.CPP,version=16.6.30014.66\_package.json
pool: 0xffff948960a2ab60 | file object: 0xffff948960a2abe0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Windows.Simulator.Package,version=16.0.28522.59\_package.json
pool: 0xffff948960a2acf0 | file object: 0xffff948960a2ad70 | offsetby: 0x80
\Windows\SysWOW64\spp.dll
pool: 0xffff948960a2b010 | file object: 0xffff948960a2b090 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.AppAnalysis.Resources,version=16.6.30014.66,language=en-US\_package.json
pool: 0xffff948960a2b1a0 | file object: 0xffff948960a2b220 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2b330 | file object: 0xffff948960a2b3b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2b4c0 | file object: 0xffff948960a2b540 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Templates.UWP,version=16.0.28315.86\_package.json
pool: 0xffff948960a2b650 | file object: 0xffff948960a2b6d0 | offsetby: 0x80
\Windows\SysWOW64\vssapi.dll
pool: 0xffff948960a2b7e0 | file object: 0xffff948960a2b860 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.AppAnalysis.Targeted,version=16.6.30013.169,chip=x64\_package.json
pool: 0xffff948960a2b970 | file object: 0xffff948960a2b9f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2bb00 | file object: 0xffff948960a2bb80 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.ServiceProcess\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.ServiceProcess.dll
pool: 0xffff948960a2bc90 | file object: 0xffff948960a2bd10 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha\target\release\print_pdb.exe
pool: 0xffff948960a2be20 | file object: 0xffff948960a2bea0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2c140 | file object: 0xffff948960a2c1c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2c2d0 | file object: 0xffff948960a2c350 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Templates.UWP.Resources,version=16.6.30013.169,language=en-US\_package.json
pool: 0xffff948960a2c460 | file object: 0xffff948960a2c4e0 | offsetby: 0x80
\Windows\Prefetch\DLLHOST.EXE-B2EB1806.pf
pool: 0xffff948960a2c5f0 | file object: 0xffff948960a2c670 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Windows.Simulator.Package.Resources,version=16.0.28522.59\_package.json
pool: 0xffff948960a2c780 | file object: 0xffff948960a2c800 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.SmartDevice.Connectivity.CoreRuntime,version=16.0.28315.86\_package.json
pool: 0xffff948960a2c910 | file object: 0xffff948960a2c990 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2caa0 | file object: 0xffff948960a2cb20 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2cc30 | file object: 0xffff948960a2ccb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2cdc0 | file object: 0xffff948960a2ce40 | offsetby: 0x80
\Windows\System32\sxproxy.dll
pool: 0xffff948960a2d0e0 | file object: 0xffff948960a2d160 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2d270 | file object: 0xffff948960a2d2f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2d400 | file object: 0xffff948960a2d480 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2d590 | file object: 0xffff948960a2d610 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.DotNetNative.CoreRuntime,version=16.0.28315.86\_package.json
pool: 0xffff948960a2d720 | file object: 0xffff948960a2d7a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2d8b0 | file object: 0xffff948960a2d930 | offsetby: 0x80
\Windows\SysWOW64\srclient.dll
pool: 0xffff948960a2da40 | file object: 0xffff948960a2dac0 | offsetby: 0x80
\Windows\SysWOW64\vsstrace.dll
pool: 0xffff948960a2dbd0 | file object: 0xffff948960a2dc50 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.AppAnalysis,version=16.6.30014.66\_package.json
pool: 0xffff948960a2dd60 | file object: 0xffff948960a2dde0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a2e080 | file object: 0xffff948960a2e100 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a2e210 | file object: 0xffff948960a2e290 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a2e3a0 | file object: 0xffff948960a2e420 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a2e530 | file object: 0xffff948960a2e5b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2e6c0 | file object: 0xffff948960a2e740 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a2e850 | file object: 0xffff948960a2e8d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a2e9e0 | file object: 0xffff948960a2ea60 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2eb70 | file object: 0xffff948960a2ebf0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2ed00 | file object: 0xffff948960a2ed80 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe
pool: 0xffff948960a2f020 | file object: 0xffff948960a2f0a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2f1b0 | file object: 0xffff948960a2f230 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2f340 | file object: 0xffff948960a2f3c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a2f4d0 | file object: 0xffff948960a2f550 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a2f660 | file object: 0xffff948960a2f6e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a2f7f0 | file object: 0xffff948960a2f870 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a2f980 | file object: 0xffff948960a2fa00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a2fb10 | file object: 0xffff948960a2fb90 | offsetby: 0x80
\$Directory
pool: 0xffff948960a2fca0 | file object: 0xffff948960a2fd20 | offsetby: 0x80
\Windows\Fonts\timesi.ttf
pool: 0xffff948960a2fe30 | file object: 0xffff948960a2feb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a30150 | file object: 0xffff948960a301d0 | offsetby: 0x80
\Windows\SysWOW64\sxproxy.dll
pool: 0xffff948960a302e0 | file object: 0xffff948960a30360 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a30470 | file object: 0xffff948960a304f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a30600 | file object: 0xffff948960a30680 | offsetby: 0x80
\Windows\System32\sxproxy.dll
pool: 0xffff948960a30790 | file object: 0xffff948960a30810 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a30920 | file object: 0xffff948960a309a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a30ab0 | file object: 0xffff948960a30b30 | offsetby: 0x80
\Windows\SysWOW64\taskschd.dll
pool: 0xffff948960a30c40 | file object: 0xffff948960a30cc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a30dd0 | file object: 0xffff948960a30e50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a310f0 | file object: 0xffff948960a31170 | offsetby: 0x80
\$Directory
pool: 0xffff948960a31280 | file object: 0xffff948960a31300 | offsetby: 0x80
\$Directory
pool: 0xffff948960a31410 | file object: 0xffff948960a31490 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a315a0 | file object: 0xffff948960a31620 | offsetby: 0x80
\$Directory
pool: 0xffff948960a31730 | file object: 0xffff948960a317b0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V2e6c59d9#\16031b176f1a3be96c4a577ea4ae5706\Microsoft.VisualStudio.Project.VisualC.VCProjectEngine.ni.dll.aux
pool: 0xffff948960a318c0 | file object: 0xffff948960a31940 | offsetby: 0x80
\$Directory
pool: 0xffff948960a31a50 | file object: 0xffff948960a31ad0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a31be0 | file object: 0xffff948960a31c60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a31d70 | file object: 0xffff948960a31df0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a32090 | file object: 0xffff948960a32110 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a32220 | file object: 0xffff948960a322a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960a323b0 | file object: 0xffff948960a32430 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a32540 | file object: 0xffff948960a325c0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvc.dll
pool: 0xffff948960a326d0 | file object: 0xffff948960a32750 | offsetby: 0x80
\$Directory
pool: 0xffff948960a32860 | file object: 0xffff948960a328e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a329f0 | file object: 0xffff948960a32a70 | offsetby: 0x80
\Windows\SysWOW64\ole32.dll
pool: 0xffff948960a32b80 | file object: 0xffff948960a32c00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a32d10 | file object: 0xffff948960a32d90 | offsetby: 0x80
\Windows\Fonts\ariblk.ttf
pool: 0xffff948960a33030 | file object: 0xffff948960a330b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a331c0 | file object: 0xffff948960a33240 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a33350 | file object: 0xffff948960a333d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a334e0 | file object: 0xffff948960a33560 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a33670 | file object: 0xffff948960a336f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a33800 | file object: 0xffff948960a33880 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a33990 | file object: 0xffff948960a33a10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a33b20 | file object: 0xffff948960a33ba0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a33cb0 | file object: 0xffff948960a33d30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a33e40 | file object: 0xffff948960a33ec0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.exe
pool: 0xffff948960a34160 | file object: 0xffff948960a341e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a342f0 | file object: 0xffff948960a34370 | offsetby: 0x80
\$Directory
pool: 0xffff948960a34480 | file object: 0xffff948960a34500 | offsetby: 0x80
\$Directory
pool: 0xffff948960a34610 | file object: 0xffff948960a34690 | offsetby: 0x80
\$Directory
pool: 0xffff948960a347a0 | file object: 0xffff948960a34820 | offsetby: 0x80
\$Directory
pool: 0xffff948960a34930 | file object: 0xffff948960a349b0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.exe
pool: 0xffff948960a34ac0 | file object: 0xffff948960a34b40 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvc.dll
pool: 0xffff948960a34c50 | file object: 0xffff948960a34cd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a34de0 | file object: 0xffff948960a34e60 | offsetby: 0x80
\$Directory
pool: 0xffff948960a35100 | file object: 0xffff948960a35180 | offsetby: 0x80
\$Directory
pool: 0xffff948960a35290 | file object: 0xffff948960a35310 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\fusion.dll
pool: 0xffff948960a35420 | file object: 0xffff948960a354a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a355b0 | file object: 0xffff948960a35630 | offsetby: 0x80
\$Directory
pool: 0xffff948960a35740 | file object: 0xffff948960a357c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a358d0 | file object: 0xffff948960a35950 | offsetby: 0x80
\$Directory
pool: 0xffff948960a35a60 | file object: 0xffff948960a35ae0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960a35bf0 | file object: 0xffff948960a35c70 | offsetby: 0x80
\$Directory
pool: 0xffff948960a35d80 | file object: 0xffff948960a35e00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a360a0 | file object: 0xffff948960a36120 | offsetby: 0x80
\$Directory
pool: 0xffff948960a36230 | file object: 0xffff948960a362b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a363c0 | file object: 0xffff948960a36440 | offsetby: 0x80
\$Directory
pool: 0xffff948960a36550 | file object: 0xffff948960a365d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a366e0 | file object: 0xffff948960a36760 | offsetby: 0x80
\$Directory
pool: 0xffff948960a36870 | file object: 0xffff948960a368f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a36a00 | file object: 0xffff948960a36a80 | offsetby: 0x80
\$Directory
pool: 0xffff948960a36b90 | file object: 0xffff948960a36c10 | offsetby: 0x80
\$Directory
pool: 0xffff948960a36d20 | file object: 0xffff948960a36da0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a37040 | file object: 0xffff948960a370c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a371d0 | file object: 0xffff948960a37250 | offsetby: 0x80
\$Directory
pool: 0xffff948960a37360 | file object: 0xffff948960a373e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a374f0 | file object: 0xffff948960a37570 | offsetby: 0x80
\$Directory
pool: 0xffff948960a37680 | file object: 0xffff948960a37700 | offsetby: 0x80
\$Directory
pool: 0xffff948960a37810 | file object: 0xffff948960a37890 | offsetby: 0x80
\$Directory
pool: 0xffff948960a379a0 | file object: 0xffff948960a37a20 | offsetby: 0x80
\$Directory
pool: 0xffff948960a37b30 | file object: 0xffff948960a37bb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a37cc0 | file object: 0xffff948960a37d40 | offsetby: 0x80
\$Directory
pool: 0xffff948960a37e50 | file object: 0xffff948960a37ed0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a38170 | file object: 0xffff948960a381f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a38300 | file object: 0xffff948960a38380 | offsetby: 0x80
\$Directory
pool: 0xffff948960a38490 | file object: 0xffff948960a38510 | offsetby: 0x80
\$Directory
pool: 0xffff948960a38620 | file object: 0xffff948960a386a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a387b0 | file object: 0xffff948960a38830 | offsetby: 0x80
\$Directory
pool: 0xffff948960a38940 | file object: 0xffff948960a389c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a38ad0 | file object: 0xffff948960a38b50 | offsetby: 0x80
\$Directory
pool: 0xffff948960a38c60 | file object: 0xffff948960a38ce0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a38df0 | file object: 0xffff948960a38e70 | offsetby: 0x80
\$Directory
pool: 0xffff948960a39110 | file object: 0xffff948960a39190 | offsetby: 0x80
\$Directory
pool: 0xffff948960a392a0 | file object: 0xffff948960a39320 | offsetby: 0x80
\$Directory
pool: 0xffff948960a39430 | file object: 0xffff948960a394b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a395c0 | file object: 0xffff948960a39640 | offsetby: 0x80
\$Directory
pool: 0xffff948960a39750 | file object: 0xffff948960a397d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a398e0 | file object: 0xffff948960a39960 | offsetby: 0x80
\$Directory
pool: 0xffff948960a39a70 | file object: 0xffff948960a39af0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a39c00 | file object: 0xffff948960a39c80 | offsetby: 0x80
\$Directory
pool: 0xffff948960a39d90 | file object: 0xffff948960a39e10 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3a0b0 | file object: 0xffff948960a3a130 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3a240 | file object: 0xffff948960a3a2c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3a3d0 | file object: 0xffff948960a3a450 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3a560 | file object: 0xffff948960a3a5e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3a6f0 | file object: 0xffff948960a3a770 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3a880 | file object: 0xffff948960a3a900 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3aa10 | file object: 0xffff948960a3aa90 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3aba0 | file object: 0xffff948960a3ac20 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3ad30 | file object: 0xffff948960a3adb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3b050 | file object: 0xffff948960a3b0d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3b1e0 | file object: 0xffff948960a3b260 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3b370 | file object: 0xffff948960a3b3f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3b500 | file object: 0xffff948960a3b580 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3b690 | file object: 0xffff948960a3b710 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3b820 | file object: 0xffff948960a3b8a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3b9b0 | file object: 0xffff948960a3ba30 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3bb40 | file object: 0xffff948960a3bbc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3bcd0 | file object: 0xffff948960a3bd50 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3be60 | file object: 0xffff948960a3bee0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3c180 | file object: 0xffff948960a3c200 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3c310 | file object: 0xffff948960a3c390 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3c4a0 | file object: 0xffff948960a3c520 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3c630 | file object: 0xffff948960a3c6b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3c7c0 | file object: 0xffff948960a3c840 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3c950 | file object: 0xffff948960a3c9d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3cae0 | file object: 0xffff948960a3cb60 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3cc70 | file object: 0xffff948960a3ccf0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3ce00 | file object: 0xffff948960a3ce80 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3d120 | file object: 0xffff948960a3d1a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3d2b0 | file object: 0xffff948960a3d330 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3d440 | file object: 0xffff948960a3d4c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3d5d0 | file object: 0xffff948960a3d650 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3d760 | file object: 0xffff948960a3d7e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3d8f0 | file object: 0xffff948960a3d970 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3da80 | file object: 0xffff948960a3db00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3dc10 | file object: 0xffff948960a3dc90 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3dda0 | file object: 0xffff948960a3de20 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3e0c0 | file object: 0xffff948960a3e140 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3e250 | file object: 0xffff948960a3e2d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3e3e0 | file object: 0xffff948960a3e460 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3e570 | file object: 0xffff948960a3e5f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3e700 | file object: 0xffff948960a3e780 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3e890 | file object: 0xffff948960a3e910 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3ea20 | file object: 0xffff948960a3eaa0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3ebb0 | file object: 0xffff948960a3ec30 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3ed40 | file object: 0xffff948960a3edc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3f060 | file object: 0xffff948960a3f0e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3f1f0 | file object: 0xffff948960a3f270 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3f380 | file object: 0xffff948960a3f400 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3f510 | file object: 0xffff948960a3f590 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3f6a0 | file object: 0xffff948960a3f720 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3f830 | file object: 0xffff948960a3f8b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3f9c0 | file object: 0xffff948960a3fa40 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3fb50 | file object: 0xffff948960a3fbd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3fce0 | file object: 0xffff948960a3fd60 | offsetby: 0x80
\$Directory
pool: 0xffff948960a3fe70 | file object: 0xffff948960a3fef0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a40000 | file object: 0xffff948960a40080 | offsetby: 0x80
\$Directory
pool: 0xffff948960a40190 | file object: 0xffff948960a40210 | offsetby: 0x80
\$Directory
pool: 0xffff948960a40320 | file object: 0xffff948960a403a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a404b0 | file object: 0xffff948960a40530 | offsetby: 0x80
\$Directory
pool: 0xffff948960a40640 | file object: 0xffff948960a406c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a407d0 | file object: 0xffff948960a40850 | offsetby: 0x80
\$Directory
pool: 0xffff948960a40960 | file object: 0xffff948960a409e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960a40af0 | file object: 0xffff948960a40b70 | offsetby: 0x80
\$Directory
pool: 0xffff948960a40c80 | file object: 0xffff948960a40d00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a40e10 | file object: 0xffff948960a40e90 | offsetby: 0x80
\$Directory
pool: 0xffff948960a41130 | file object: 0xffff948960a411b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a412c0 | file object: 0xffff948960a41340 | offsetby: 0x80
\$Directory
pool: 0xffff948960a41450 | file object: 0xffff948960a414d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a415e0 | file object: 0xffff948960a41660 | offsetby: 0x80
\$Directory
pool: 0xffff948960a41770 | file object: 0xffff948960a417f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a41900 | file object: 0xffff948960a41980 | offsetby: 0x80
\$Directory
pool: 0xffff948960a41a90 | file object: 0xffff948960a41b10 | offsetby: 0x80
\$Directory
pool: 0xffff948960a41c20 | file object: 0xffff948960a41ca0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a41db0 | file object: 0xffff948960a41e30 | offsetby: 0x80
\$Directory
pool: 0xffff948960a84160 | file object: 0xffff948960a841e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a842f0 | file object: 0xffff948960a84370 | offsetby: 0x80
\$Directory
pool: 0xffff948960a84480 | file object: 0xffff948960a84500 | offsetby: 0x80
\$Directory
pool: 0xffff948960a84610 | file object: 0xffff948960a84690 | offsetby: 0x80
\$Directory
pool: 0xffff948960a847a0 | file object: 0xffff948960a84820 | offsetby: 0x80
\$Directory
pool: 0xffff948960a84930 | file object: 0xffff948960a849b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a84ac0 | file object: 0xffff948960a84b40 | offsetby: 0x80
\$Directory
pool: 0xffff948960a84c50 | file object: 0xffff948960a84cd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a84de0 | file object: 0xffff948960a84e60 | offsetby: 0x80
\$Directory
pool: 0xffff948960a85100 | file object: 0xffff948960a85180 | offsetby: 0x80
\$Directory
pool: 0xffff948960a85290 | file object: 0xffff948960a85310 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\search-result\dist\extension.json.jssononn
pool: 0xffff948960a85420 | file object: 0xffff948960a854a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a855b0 | file object: 0xffff948960a85630 | offsetby: 0x80
\$Directory
pool: 0xffff948960a85740 | file object: 0xffff948960a857c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a858d0 | file object: 0xffff948960a85950 | offsetby: 0x80
\$Directory
pool: 0xffff948960a85a60 | file object: 0xffff948960a85ae0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a85bf0 | file object: 0xffff948960a85c70 | offsetby: 0x80
\$Directory
pool: 0xffff948960a85d80 | file object: 0xffff948960a85e00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a860a0 | file object: 0xffff948960a86120 | offsetby: 0x80
\$Directory
pool: 0xffff948960a86230 | file object: 0xffff948960a862b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a863c0 | file object: 0xffff948960a86440 | offsetby: 0x80
\$Directory
pool: 0xffff948960a86550 | file object: 0xffff948960a865d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a866e0 | file object: 0xffff948960a86760 | offsetby: 0x80
\$Directory
pool: 0xffff948960a86870 | file object: 0xffff948960a868f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a86a00 | file object: 0xffff948960a86a80 | offsetby: 0x80
\$Directory
pool: 0xffff948960a86b90 | file object: 0xffff948960a86c10 | offsetby: 0x80
\$Directory
pool: 0xffff948960a86d20 | file object: 0xffff948960a86da0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a87040 | file object: 0xffff948960a870c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a871d0 | file object: 0xffff948960a87250 | offsetby: 0x80
\$Directory
pool: 0xffff948960a87360 | file object: 0xffff948960a873e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a874f0 | file object: 0xffff948960a87570 | offsetby: 0x80
\$Directory
pool: 0xffff948960a87680 | file object: 0xffff948960a87700 | offsetby: 0x80
\$Directory
pool: 0xffff948960a87810 | file object: 0xffff948960a87890 | offsetby: 0x80
\$Directory
pool: 0xffff948960a879a0 | file object: 0xffff948960a87a20 | offsetby: 0x80
\$Directory
pool: 0xffff948960a87b30 | file object: 0xffff948960a87bb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a87cc0 | file object: 0xffff948960a87d40 | offsetby: 0x80
\$Directory
pool: 0xffff948960a87e50 | file object: 0xffff948960a87ed0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a88170 | file object: 0xffff948960a881f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a88300 | file object: 0xffff948960a88380 | offsetby: 0x80
\$Directory
pool: 0xffff948960a88490 | file object: 0xffff948960a88510 | offsetby: 0x80
\$Directory
pool: 0xffff948960a88620 | file object: 0xffff948960a886a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a887b0 | file object: 0xffff948960a88830 | offsetby: 0x80
\$Directory
pool: 0xffff948960a88940 | file object: 0xffff948960a889c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a88ad0 | file object: 0xffff948960a88b50 | offsetby: 0x80
\$Directory
pool: 0xffff948960a88c60 | file object: 0xffff948960a88ce0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a88df0 | file object: 0xffff948960a88e70 | offsetby: 0x80
\$Directory
pool: 0xffff948960a89110 | file object: 0xffff948960a89190 | offsetby: 0x80
\$Directory
pool: 0xffff948960a892a0 | file object: 0xffff948960a89320 | offsetby: 0x80
\$Directory
pool: 0xffff948960a89430 | file object: 0xffff948960a894b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a895c0 | file object: 0xffff948960a89640 | offsetby: 0x80
\$Directory
pool: 0xffff948960a89750 | file object: 0xffff948960a897d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a898e0 | file object: 0xffff948960a89960 | offsetby: 0x80
\$Directory
pool: 0xffff948960a89a70 | file object: 0xffff948960a89af0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a89c00 | file object: 0xffff948960a89c80 | offsetby: 0x80
\$Directory
pool: 0xffff948960a89d90 | file object: 0xffff948960a89e10 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8a0b0 | file object: 0xffff948960a8a130 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8a240 | file object: 0xffff948960a8a2c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8a3d0 | file object: 0xffff948960a8a450 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8a560 | file object: 0xffff948960a8a5e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8a6f0 | file object: 0xffff948960a8a770 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8a880 | file object: 0xffff948960a8a900 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8aa10 | file object: 0xffff948960a8aa90 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8aba0 | file object: 0xffff948960a8ac20 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8ad30 | file object: 0xffff948960a8adb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8b050 | file object: 0xffff948960a8b0d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8b1e0 | file object: 0xffff948960a8b260 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8b370 | file object: 0xffff948960a8b3f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8b500 | file object: 0xffff948960a8b580 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8b690 | file object: 0xffff948960a8b710 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8b820 | file object: 0xffff948960a8b8a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8b9b0 | file object: 0xffff948960a8ba30 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8bb40 | file object: 0xffff948960a8bbc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8bcd0 | file object: 0xffff948960a8bd50 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8be60 | file object: 0xffff948960a8bee0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8c180 | file object: 0xffff948960a8c200 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8c310 | file object: 0xffff948960a8c390 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8c4a0 | file object: 0xffff948960a8c520 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8c630 | file object: 0xffff948960a8c6b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8c7c0 | file object: 0xffff948960a8c840 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8c950 | file object: 0xffff948960a8c9d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8cae0 | file object: 0xffff948960a8cb60 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8cc70 | file object: 0xffff948960a8ccf0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8ce00 | file object: 0xffff948960a8ce80 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8d120 | file object: 0xffff948960a8d1a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8d2b0 | file object: 0xffff948960a8d330 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8d440 | file object: 0xffff948960a8d4c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8d5d0 | file object: 0xffff948960a8d650 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8d760 | file object: 0xffff948960a8d7e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8d8f0 | file object: 0xffff948960a8d970 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8da80 | file object: 0xffff948960a8db00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8dc10 | file object: 0xffff948960a8dc90 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8dda0 | file object: 0xffff948960a8de20 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8e0c0 | file object: 0xffff948960a8e140 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8e250 | file object: 0xffff948960a8e2d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8e3e0 | file object: 0xffff948960a8e460 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8e570 | file object: 0xffff948960a8e5f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8e700 | file object: 0xffff948960a8e780 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8e890 | file object: 0xffff948960a8e910 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8ea20 | file object: 0xffff948960a8eaa0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8ebb0 | file object: 0xffff948960a8ec30 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8ed40 | file object: 0xffff948960a8edc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8f060 | file object: 0xffff948960a8f0e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8f1f0 | file object: 0xffff948960a8f270 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8f380 | file object: 0xffff948960a8f400 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8f510 | file object: 0xffff948960a8f590 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8f6a0 | file object: 0xffff948960a8f720 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8f830 | file object: 0xffff948960a8f8b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8f9c0 | file object: 0xffff948960a8fa40 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8fb50 | file object: 0xffff948960a8fbd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8fce0 | file object: 0xffff948960a8fd60 | offsetby: 0x80
\$Directory
pool: 0xffff948960a8fe70 | file object: 0xffff948960a8fef0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a90000 | file object: 0xffff948960a90080 | offsetby: 0x80
\$Directory
pool: 0xffff948960a90190 | file object: 0xffff948960a90210 | offsetby: 0x80
\$Directory
pool: 0xffff948960a90320 | file object: 0xffff948960a903a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a904b0 | file object: 0xffff948960a90530 | offsetby: 0x80
\$Directory
pool: 0xffff948960a90640 | file object: 0xffff948960a906c0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Net.ComponentGroup.DevelopmentPrerequisites,version=16.3.29207.166\_package.json
pool: 0xffff948960a907d0 | file object: 0xffff948960a90850 | offsetby: 0x80
\$Directory
pool: 0xffff948960a90960 | file object: 0xffff948960a909e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a90af0 | file object: 0xffff948960a90b70 | offsetby: 0x80
\$Directory
pool: 0xffff948960a90c80 | file object: 0xffff948960a90d00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a90e10 | file object: 0xffff948960a90e90 | offsetby: 0x80
\$Directory
pool: 0xffff948960a91130 | file object: 0xffff948960a911b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a912c0 | file object: 0xffff948960a91340 | offsetby: 0x80
\$Directory
pool: 0xffff948960a91450 | file object: 0xffff948960a914d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a915e0 | file object: 0xffff948960a91660 | offsetby: 0x80
\$Directory
pool: 0xffff948960a91770 | file object: 0xffff948960a917f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a91900 | file object: 0xffff948960a91980 | offsetby: 0x80
\$Directory
pool: 0xffff948960a91a90 | file object: 0xffff948960a91b10 | offsetby: 0x80
\$Directory
pool: 0xffff948960a91c20 | file object: 0xffff948960a91ca0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a91db0 | file object: 0xffff948960a91e30 | offsetby: 0x80
\$Directory
pool: 0xffff948960a920d0 | file object: 0xffff948960a92150 | offsetby: 0x80
\$Directory
pool: 0xffff948960a92260 | file object: 0xffff948960a922e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a923f0 | file object: 0xffff948960a92470 | offsetby: 0x80
\$Directory
pool: 0xffff948960a92580 | file object: 0xffff948960a92600 | offsetby: 0x80
\$Directory
pool: 0xffff948960a92710 | file object: 0xffff948960a92790 | offsetby: 0x80
\$Directory
pool: 0xffff948960a928a0 | file object: 0xffff948960a92920 | offsetby: 0x80
\$Directory
pool: 0xffff948960a92a30 | file object: 0xffff948960a92ab0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a92bc0 | file object: 0xffff948960a92c40 | offsetby: 0x80
\$Directory
pool: 0xffff948960a92d50 | file object: 0xffff948960a92dd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a93070 | file object: 0xffff948960a930f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a93200 | file object: 0xffff948960a93280 | offsetby: 0x80
\$Directory
pool: 0xffff948960a93390 | file object: 0xffff948960a93410 | offsetby: 0x80
\$Directory
pool: 0xffff948960a93520 | file object: 0xffff948960a935a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a936b0 | file object: 0xffff948960a93730 | offsetby: 0x80
\$Directory
pool: 0xffff948960a93840 | file object: 0xffff948960a938c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a939d0 | file object: 0xffff948960a93a50 | offsetby: 0x80
\$Directory
pool: 0xffff948960a93b60 | file object: 0xffff948960a93be0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a93cf0 | file object: 0xffff948960a93d70 | offsetby: 0x80
\$Directory
pool: 0xffff948960a94010 | file object: 0xffff948960a94090 | offsetby: 0x80
\$Directory
pool: 0xffff948960a941a0 | file object: 0xffff948960a94220 | offsetby: 0x80
\$Directory
pool: 0xffff948960a94330 | file object: 0xffff948960a943b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a944c0 | file object: 0xffff948960a94540 | offsetby: 0x80
\$Directory
pool: 0xffff948960a94650 | file object: 0xffff948960a946d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a947e0 | file object: 0xffff948960a94860 | offsetby: 0x80
\$Directory
pool: 0xffff948960a94970 | file object: 0xffff948960a949f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a94b00 | file object: 0xffff948960a94b80 | offsetby: 0x80
\$Directory
pool: 0xffff948960a94c90 | file object: 0xffff948960a94d10 | offsetby: 0x80
\$Directory
pool: 0xffff948960a94e20 | file object: 0xffff948960a94ea0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a95140 | file object: 0xffff948960a951c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a952d0 | file object: 0xffff948960a95350 | offsetby: 0x80
\$Directory
pool: 0xffff948960a95460 | file object: 0xffff948960a954e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a955f0 | file object: 0xffff948960a95670 | offsetby: 0x80
\$Directory
pool: 0xffff948960a95780 | file object: 0xffff948960a95800 | offsetby: 0x80
\$Directory
pool: 0xffff948960a95910 | file object: 0xffff948960a95990 | offsetby: 0x80
\$Directory
pool: 0xffff948960a95aa0 | file object: 0xffff948960a95b20 | offsetby: 0x80
\$Directory
pool: 0xffff948960a95c30 | file object: 0xffff948960a95cb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a95dc0 | file object: 0xffff948960a95e40 | offsetby: 0x80
\$Directory
pool: 0xffff948960a960e0 | file object: 0xffff948960a96160 | offsetby: 0x80
\$Directory
pool: 0xffff948960a96270 | file object: 0xffff948960a962f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a96400 | file object: 0xffff948960a96480 | offsetby: 0x80
\$Directory
pool: 0xffff948960a96590 | file object: 0xffff948960a96610 | offsetby: 0x80
\$Directory
pool: 0xffff948960a96720 | file object: 0xffff948960a967a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a968b0 | file object: 0xffff948960a96930 | offsetby: 0x80
\$Directory
pool: 0xffff948960a96a40 | file object: 0xffff948960a96ac0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a96bd0 | file object: 0xffff948960a96c50 | offsetby: 0x80
\$Directory
pool: 0xffff948960a96d60 | file object: 0xffff948960a96de0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a97080 | file object: 0xffff948960a97100 | offsetby: 0x80
\$Directory
pool: 0xffff948960a97210 | file object: 0xffff948960a97290 | offsetby: 0x80
\$Directory
pool: 0xffff948960a973a0 | file object: 0xffff948960a97420 | offsetby: 0x80
\$Directory
pool: 0xffff948960a97530 | file object: 0xffff948960a975b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a976c0 | file object: 0xffff948960a97740 | offsetby: 0x80
\$Directory
pool: 0xffff948960a97850 | file object: 0xffff948960a978d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a979e0 | file object: 0xffff948960a97a60 | offsetby: 0x80
\$Directory
pool: 0xffff948960a97b70 | file object: 0xffff948960a97bf0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a97d00 | file object: 0xffff948960a97d80 | offsetby: 0x80
\$Directory
pool: 0xffff948960a98020 | file object: 0xffff948960a980a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a981b0 | file object: 0xffff948960a98230 | offsetby: 0x80
\$Directory
pool: 0xffff948960a98340 | file object: 0xffff948960a983c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a984d0 | file object: 0xffff948960a98550 | offsetby: 0x80
\$Directory
pool: 0xffff948960a98660 | file object: 0xffff948960a986e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a987f0 | file object: 0xffff948960a98870 | offsetby: 0x80
\$Directory
pool: 0xffff948960a98980 | file object: 0xffff948960a98a00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a98b10 | file object: 0xffff948960a98b90 | offsetby: 0x80
\$Directory
pool: 0xffff948960a98ca0 | file object: 0xffff948960a98d20 | offsetby: 0x80
\$Directory
pool: 0xffff948960a98e30 | file object: 0xffff948960a98eb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a99150 | file object: 0xffff948960a991d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a992e0 | file object: 0xffff948960a99360 | offsetby: 0x80
\$Directory
pool: 0xffff948960a99470 | file object: 0xffff948960a994f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a99600 | file object: 0xffff948960a99680 | offsetby: 0x80
\$Directory
pool: 0xffff948960a99790 | file object: 0xffff948960a99810 | offsetby: 0x80
\$Directory
pool: 0xffff948960a99920 | file object: 0xffff948960a999a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a99ab0 | file object: 0xffff948960a99b30 | offsetby: 0x80
\$Directory
pool: 0xffff948960a99c40 | file object: 0xffff948960a99cc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a99dd0 | file object: 0xffff948960a99e50 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9a0f0 | file object: 0xffff948960a9a170 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9a280 | file object: 0xffff948960a9a300 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9a410 | file object: 0xffff948960a9a490 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9a5a0 | file object: 0xffff948960a9a620 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9a730 | file object: 0xffff948960a9a7b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9a8c0 | file object: 0xffff948960a9a940 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9aa50 | file object: 0xffff948960a9aad0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9abe0 | file object: 0xffff948960a9ac60 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9ad70 | file object: 0xffff948960a9adf0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9b090 | file object: 0xffff948960a9b110 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9b220 | file object: 0xffff948960a9b2a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9b3b0 | file object: 0xffff948960a9b430 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9b540 | file object: 0xffff948960a9b5c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9b6d0 | file object: 0xffff948960a9b750 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9b860 | file object: 0xffff948960a9b8e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9b9f0 | file object: 0xffff948960a9ba70 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9bb80 | file object: 0xffff948960a9bc00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9bd10 | file object: 0xffff948960a9bd90 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9c030 | file object: 0xffff948960a9c0b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9c1c0 | file object: 0xffff948960a9c240 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9c350 | file object: 0xffff948960a9c3d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9c4e0 | file object: 0xffff948960a9c560 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9c670 | file object: 0xffff948960a9c6f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9c800 | file object: 0xffff948960a9c880 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9c990 | file object: 0xffff948960a9ca10 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9cb20 | file object: 0xffff948960a9cba0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9ccb0 | file object: 0xffff948960a9cd30 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9ce40 | file object: 0xffff948960a9cec0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9d160 | file object: 0xffff948960a9d1e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9d2f0 | file object: 0xffff948960a9d370 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9d480 | file object: 0xffff948960a9d500 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9d610 | file object: 0xffff948960a9d690 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9d7a0 | file object: 0xffff948960a9d820 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9d930 | file object: 0xffff948960a9d9b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9dac0 | file object: 0xffff948960a9db40 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9dc50 | file object: 0xffff948960a9dcd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9dde0 | file object: 0xffff948960a9de60 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9e100 | file object: 0xffff948960a9e180 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9e290 | file object: 0xffff948960a9e310 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9e420 | file object: 0xffff948960a9e4a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9e5b0 | file object: 0xffff948960a9e630 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9e740 | file object: 0xffff948960a9e7c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9e8d0 | file object: 0xffff948960a9e950 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9ea60 | file object: 0xffff948960a9eae0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9ebf0 | file object: 0xffff948960a9ec70 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9ed80 | file object: 0xffff948960a9ee00 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9f0a0 | file object: 0xffff948960a9f120 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9f230 | file object: 0xffff948960a9f2b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9f3c0 | file object: 0xffff948960a9f440 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9f550 | file object: 0xffff948960a9f5d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9f6e0 | file object: 0xffff948960a9f760 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9f870 | file object: 0xffff948960a9f8f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9fa00 | file object: 0xffff948960a9fa80 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9fb90 | file object: 0xffff948960a9fc10 | offsetby: 0x80
\$Directory
pool: 0xffff948960a9fd20 | file object: 0xffff948960a9fda0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa0040 | file object: 0xffff948960aa00c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa01d0 | file object: 0xffff948960aa0250 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa0360 | file object: 0xffff948960aa03e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa04f0 | file object: 0xffff948960aa0570 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa0680 | file object: 0xffff948960aa0700 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa0810 | file object: 0xffff948960aa0890 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa09a0 | file object: 0xffff948960aa0a20 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa0b30 | file object: 0xffff948960aa0bb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa0cc0 | file object: 0xffff948960aa0d40 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa0e50 | file object: 0xffff948960aa0ed0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa1170 | file object: 0xffff948960aa11f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa1300 | file object: 0xffff948960aa1380 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa1490 | file object: 0xffff948960aa1510 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa1620 | file object: 0xffff948960aa16a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa17b0 | file object: 0xffff948960aa1830 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa1940 | file object: 0xffff948960aa19c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa1ad0 | file object: 0xffff948960aa1b50 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa1c60 | file object: 0xffff948960aa1ce0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa1df0 | file object: 0xffff948960aa1e70 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa2110 | file object: 0xffff948960aa2190 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa22a0 | file object: 0xffff948960aa2320 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa2430 | file object: 0xffff948960aa24b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa25c0 | file object: 0xffff948960aa2640 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa2750 | file object: 0xffff948960aa27d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa28e0 | file object: 0xffff948960aa2960 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa2a70 | file object: 0xffff948960aa2af0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa2c00 | file object: 0xffff948960aa2c80 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa2d90 | file object: 0xffff948960aa2e10 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa30b0 | file object: 0xffff948960aa3130 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa3240 | file object: 0xffff948960aa32c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa33d0 | file object: 0xffff948960aa3450 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa3560 | file object: 0xffff948960aa35e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa36f0 | file object: 0xffff948960aa3770 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa3880 | file object: 0xffff948960aa3900 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa3a10 | file object: 0xffff948960aa3a90 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa3ba0 | file object: 0xffff948960aa3c20 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa3d30 | file object: 0xffff948960aa3db0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa4050 | file object: 0xffff948960aa40d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa41e0 | file object: 0xffff948960aa4260 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa4370 | file object: 0xffff948960aa43f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa4500 | file object: 0xffff948960aa4580 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa4690 | file object: 0xffff948960aa4710 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa4820 | file object: 0xffff948960aa48a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa49b0 | file object: 0xffff948960aa4a30 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa4b40 | file object: 0xffff948960aa4bc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa4cd0 | file object: 0xffff948960aa4d50 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa4e60 | file object: 0xffff948960aa4ee0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa5180 | file object: 0xffff948960aa5200 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa5310 | file object: 0xffff948960aa5390 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa54a0 | file object: 0xffff948960aa5520 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa5630 | file object: 0xffff948960aa56b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa57c0 | file object: 0xffff948960aa5840 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa5950 | file object: 0xffff948960aa59d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa5ae0 | file object: 0xffff948960aa5b60 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa5c70 | file object: 0xffff948960aa5cf0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa5e00 | file object: 0xffff948960aa5e80 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa6120 | file object: 0xffff948960aa61a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa62b0 | file object: 0xffff948960aa6330 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa6440 | file object: 0xffff948960aa64c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa65d0 | file object: 0xffff948960aa6650 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa6760 | file object: 0xffff948960aa67e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa68f0 | file object: 0xffff948960aa6970 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa6a80 | file object: 0xffff948960aa6b00 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa6c10 | file object: 0xffff948960aa6c90 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa6da0 | file object: 0xffff948960aa6e20 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa70c0 | file object: 0xffff948960aa7140 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa7250 | file object: 0xffff948960aa72d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa73e0 | file object: 0xffff948960aa7460 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa7570 | file object: 0xffff948960aa75f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa7700 | file object: 0xffff948960aa7780 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa7890 | file object: 0xffff948960aa7910 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa7a20 | file object: 0xffff948960aa7aa0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa7bb0 | file object: 0xffff948960aa7c30 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa7d40 | file object: 0xffff948960aa7dc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa8060 | file object: 0xffff948960aa80e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa81f0 | file object: 0xffff948960aa8270 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa8380 | file object: 0xffff948960aa8400 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa8510 | file object: 0xffff948960aa8590 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa86a0 | file object: 0xffff948960aa8720 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa8830 | file object: 0xffff948960aa88b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa89c0 | file object: 0xffff948960aa8a40 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa8b50 | file object: 0xffff948960aa8bd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa8ce0 | file object: 0xffff948960aa8d60 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa8e70 | file object: 0xffff948960aa8ef0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa9000 | file object: 0xffff948960aa9080 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa9190 | file object: 0xffff948960aa9210 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa9320 | file object: 0xffff948960aa93a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa94b0 | file object: 0xffff948960aa9530 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa9640 | file object: 0xffff948960aa96c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa97d0 | file object: 0xffff948960aa9850 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa9960 | file object: 0xffff948960aa99e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa9af0 | file object: 0xffff948960aa9b70 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa9c80 | file object: 0xffff948960aa9d00 | offsetby: 0x80
\$Directory
pool: 0xffff948960aa9e10 | file object: 0xffff948960aa9e90 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaa130 | file object: 0xffff948960aaa1b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaa2c0 | file object: 0xffff948960aaa340 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaa450 | file object: 0xffff948960aaa4d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaa5e0 | file object: 0xffff948960aaa660 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaa770 | file object: 0xffff948960aaa7f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaa900 | file object: 0xffff948960aaa980 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaaa90 | file object: 0xffff948960aaab10 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaac20 | file object: 0xffff948960aaaca0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaadb0 | file object: 0xffff948960aaae30 | offsetby: 0x80
\$Directory
pool: 0xffff948960aab0d0 | file object: 0xffff948960aab150 | offsetby: 0x80
\$Directory
pool: 0xffff948960aab260 | file object: 0xffff948960aab2e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aab3f0 | file object: 0xffff948960aab470 | offsetby: 0x80
\$Directory
pool: 0xffff948960aab580 | file object: 0xffff948960aab600 | offsetby: 0x80
\$Directory
pool: 0xffff948960aab710 | file object: 0xffff948960aab790 | offsetby: 0x80
\$Directory
pool: 0xffff948960aab8a0 | file object: 0xffff948960aab920 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaba30 | file object: 0xffff948960aabab0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aabbc0 | file object: 0xffff948960aabc40 | offsetby: 0x80
\$Directory
pool: 0xffff948960aabd50 | file object: 0xffff948960aabdd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aac070 | file object: 0xffff948960aac0f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aac200 | file object: 0xffff948960aac280 | offsetby: 0x80
\$Directory
pool: 0xffff948960aac390 | file object: 0xffff948960aac410 | offsetby: 0x80
\$Directory
pool: 0xffff948960aac520 | file object: 0xffff948960aac5a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aac6b0 | file object: 0xffff948960aac730 | offsetby: 0x80
\$Directory
pool: 0xffff948960aac840 | file object: 0xffff948960aac8c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aac9d0 | file object: 0xffff948960aaca50 | offsetby: 0x80
\$Directory
pool: 0xffff948960aacb60 | file object: 0xffff948960aacbe0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaccf0 | file object: 0xffff948960aacd70 | offsetby: 0x80
\$Directory
pool: 0xffff948960aad010 | file object: 0xffff948960aad090 | offsetby: 0x80
\$Directory
pool: 0xffff948960aad1a0 | file object: 0xffff948960aad220 | offsetby: 0x80
\$Directory
pool: 0xffff948960aad330 | file object: 0xffff948960aad3b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aad4c0 | file object: 0xffff948960aad540 | offsetby: 0x80
\$Directory
pool: 0xffff948960aad650 | file object: 0xffff948960aad6d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aad7e0 | file object: 0xffff948960aad860 | offsetby: 0x80
\$Directory
pool: 0xffff948960aad970 | file object: 0xffff948960aad9f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aadb00 | file object: 0xffff948960aadb80 | offsetby: 0x80
\$Directory
pool: 0xffff948960aadc90 | file object: 0xffff948960aadd10 | offsetby: 0x80
\$Directory
pool: 0xffff948960aade20 | file object: 0xffff948960aadea0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aae140 | file object: 0xffff948960aae1c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aae2d0 | file object: 0xffff948960aae350 | offsetby: 0x80
\$Directory
pool: 0xffff948960aae460 | file object: 0xffff948960aae4e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aae5f0 | file object: 0xffff948960aae670 | offsetby: 0x80
\$Directory
pool: 0xffff948960aae780 | file object: 0xffff948960aae800 | offsetby: 0x80
\$Directory
pool: 0xffff948960aae910 | file object: 0xffff948960aae990 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaeaa0 | file object: 0xffff948960aaeb20 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaec30 | file object: 0xffff948960aaecb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaedc0 | file object: 0xffff948960aaee40 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaf0e0 | file object: 0xffff948960aaf160 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaf270 | file object: 0xffff948960aaf2f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaf400 | file object: 0xffff948960aaf480 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaf590 | file object: 0xffff948960aaf610 | offsetby: 0x80
\$Directory
pool: 0xffff948960aaf720 | file object: 0xffff948960aaf7a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\icudtl.dat
pool: 0xffff948960aaf8b0 | file object: 0xffff948960aaf930 | offsetby: 0x80
\$Directory
pool: 0xffff948960aafa40 | file object: 0xffff948960aafac0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aafbd0 | file object: 0xffff948960aafc50 | offsetby: 0x80
\$Directory
pool: 0xffff948960aafd60 | file object: 0xffff948960aafde0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab0080 | file object: 0xffff948960ab0100 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab0210 | file object: 0xffff948960ab0290 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab03a0 | file object: 0xffff948960ab0420 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab0530 | file object: 0xffff948960ab05b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab06c0 | file object: 0xffff948960ab0740 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab0850 | file object: 0xffff948960ab08d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab09e0 | file object: 0xffff948960ab0a60 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab0b70 | file object: 0xffff948960ab0bf0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab0d00 | file object: 0xffff948960ab0d80 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\mscorlib\2fd365eef9c2999c233994057e037e6b\mscorlib.ni.dll.aux
pool: 0xffff948960ab1020 | file object: 0xffff948960ab10a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab11b0 | file object: 0xffff948960ab1230 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab1340 | file object: 0xffff948960ab13c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab14d0 | file object: 0xffff948960ab1550 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab1660 | file object: 0xffff948960ab16e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab17f0 | file object: 0xffff948960ab1870 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab1980 | file object: 0xffff948960ab1a00 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab1b10 | file object: 0xffff948960ab1b90 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab1ca0 | file object: 0xffff948960ab1d20 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab1e30 | file object: 0xffff948960ab1eb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab2150 | file object: 0xffff948960ab21d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab22e0 | file object: 0xffff948960ab2360 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab2470 | file object: 0xffff948960ab24f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab2600 | file object: 0xffff948960ab2680 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab2790 | file object: 0xffff948960ab2810 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab2920 | file object: 0xffff948960ab29a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab2ab0 | file object: 0xffff948960ab2b30 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab2c40 | file object: 0xffff948960ab2cc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab2dd0 | file object: 0xffff948960ab2e50 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab30f0 | file object: 0xffff948960ab3170 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab3280 | file object: 0xffff948960ab3300 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab3410 | file object: 0xffff948960ab3490 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab35a0 | file object: 0xffff948960ab3620 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab3730 | file object: 0xffff948960ab37b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab38c0 | file object: 0xffff948960ab3940 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab3a50 | file object: 0xffff948960ab3ad0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab3be0 | file object: 0xffff948960ab3c60 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab3d70 | file object: 0xffff948960ab3df0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab4090 | file object: 0xffff948960ab4110 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab4220 | file object: 0xffff948960ab42a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab43b0 | file object: 0xffff948960ab4430 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab4540 | file object: 0xffff948960ab45c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab46d0 | file object: 0xffff948960ab4750 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab4860 | file object: 0xffff948960ab48e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab49f0 | file object: 0xffff948960ab4a70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960ab4b80 | file object: 0xffff948960ab4c00 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.JavaScript.Language,version=16.0.28516.191\_package.json
pool: 0xffff948960ab4d10 | file object: 0xffff948960ab4d90 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.ComponentGroup.Blend,version=16.0.28315.86\_package.json
pool: 0xffff948960ab5030 | file object: 0xffff948960ab50b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab51c0 | file object: 0xffff948960ab5240 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960ab5350 | file object: 0xffff948960ab53d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960ab54e0 | file object: 0xffff948960ab5560 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\VisualBasic\Cloud\1033\CloudService\cloudservice.ico
pool: 0xffff948960ab5670 | file object: 0xffff948960ab56f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab5800 | file object: 0xffff948960ab5880 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab5990 | file object: 0xffff948960ab5a10 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.Azure.Waverton.BuildTools,version=16.3.29207.166\_package.json
pool: 0xffff948960ab5b20 | file object: 0xffff948960ab5ba0 | offsetby: 0x80
rs\User\AppData\Local\Packagś{6D809377-6AF0-444B-8957-A3773F02200E}_Microsoft SDKs_Az
pool: 0xffff948960ab5cb0 | file object: 0xffff948960ab5d30 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab5e40 | file object: 0xffff948960ab5ec0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960ab6160 | file object: 0xffff948960ab61e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Shell.Interop.9.0.dll
pool: 0xffff948960ab62f0 | file object: 0xffff948960ab6370 | offsetby: 0x80
\Windows\Fonts\timesbi.ttf
pool: 0xffff948960ab6480 | file object: 0xffff948960ab6500 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-PowerShell%4Operational.evtx
pool: 0xffff948960ab6610 | file object: 0xffff948960ab6690 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Language.GenerateType.dll
pool: 0xffff948960ab67a0 | file object: 0xffff948960ab6820 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab6930 | file object: 0xffff948960ab69b0 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha
pool: 0xffff948960ab6ac0 | file object: 0xffff948960ab6b40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.OnlineLicensing.dll
pool: 0xffff948960ab6c50 | file object: 0xffff948960ab6cd0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Component.Azure.Waverton,version=16.4.29409.204\_package.json
pool: 0xffff948960ab6de0 | file object: 0xffff948960ab6e60 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Component.Microsoft.VisualStudio.RazorExtension,version=16.0.28714.129\_package.json
pool: 0xffff948960ab7100 | file object: 0xffff948960ab7180 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab7290 | file object: 0xffff948960ab7310 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.ConsoleHost\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.ConsoleHost.dll
pool: 0xffff948960ab7420 | file object: 0xffff948960ab74a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.Azure.Management.ResourceManager.dll
pool: 0xffff948960ab75b0 | file object: 0xffff948960ab7630 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab7740 | file object: 0xffff948960ab77c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\VSLangProj90.dll
pool: 0xffff948960ab78d0 | file object: 0xffff948960ab7950 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\VSLangProj2.dll
pool: 0xffff948960ab7a60 | file object: 0xffff948960ab7ae0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960ab7bf0 | file object: 0xffff948960ab7c70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\VisualBasic\Cloud\1033\Resource Manager\ResourceManagerProjectTemplateVB.ico
pool: 0xffff948960ab7d80 | file object: 0xffff948960ab7e00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960ab80a0 | file object: 0xffff948960ab8120 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.DesignTools.XamlDesignerHost.dll
pool: 0xffff948960ab8230 | file object: 0xffff948960ab82b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Storm (HDInsight)\StormProject\StormProject.png
pool: 0xffff948960ab83c0 | file object: 0xffff948960ab8440 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab8550 | file object: 0xffff948960ab85d0 | offsetby: 0x80
\Windows\Fonts\times.ttf
pool: 0xffff948960ab86e0 | file object: 0xffff948960ab8760 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe
pool: 0xffff948960ab8870 | file object: 0xffff948960ab88f0 | offsetby: 0x80
\Windows\SysWOW64\d3d9.dll
pool: 0xffff948960ab8a00 | file object: 0xffff948960ab8a80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\FSharp\FSharp.Editor.dll
pool: 0xffff948960ab8b90 | file object: 0xffff948960ab8c10 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\code\electron-browser\sharedProcess\sharedProcess.js
pool: 0xffff948960ab8d20 | file object: 0xffff948960ab8da0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960ab9040 | file object: 0xffff948960ab90c0 | offsetby: 0x80
\Windows\Fonts\timesbd.ttf
pool: 0xffff948960ab91d0 | file object: 0xffff948960ab9250 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.Mf49f6405#\634f52e7ab2a274689942d4783065e6e\Microsoft.Management.Infrastructure.ni.dll.aux
pool: 0xffff948960ab9360 | file object: 0xffff948960ab93e0 | offsetby: 0x80
C:\Users\User\AppData\Local\ű{6D809377-6AF0-444B-8957-A3773F02200E}_Oracle_VirtualBox Guest Additions_Oracle VM VirtualBox Guest Additions_urlA
pool: 0xffff948960ab94f0 | file object: 0xffff948960ab9570 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960ab9680 | file object: 0xffff948960ab9700 | offsetby: 0x80
\$Directory
pool: 0xffff948960ab9810 | file object: 0xffff948960ab9890 | offsetby: 0x80
\Windows\System32\en-US\winnlsres.dll.mui
pool: 0xffff948960ab99a0 | file object: 0xffff948960ab9a20 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\shaderlab\package.jsonsonkage.json.jsonon
pool: 0xffff948960ab9b30 | file object: 0xffff948960ab9bb0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-243542a48f73a80bc7b32b157dd253f7.code
pool: 0xffff948960ab9cc0 | file object: 0xffff948960ab9d40 | offsetby: 0x80
\Windows\SysWOW64\coloradapterclient.dll
pool: 0xffff948960ab9e50 | file object: 0xffff948960ab9ed0 | offsetby: 0x80
Ɛrs\User\Desktop\lpus-0.3-alpfile_object_scan.exe.Manifestscan.exeonsᴆ἟἟἟἟἟἟἟἟἟἟恞ꭩ፿߱㦰늹ث(Kernel-Bra
pool: 0xffff948960aba170 | file object: 0xffff948960aba1f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960aba300 | file object: 0xffff948960aba380 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960aba490 | file object: 0xffff948960aba510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960aba620 | file object: 0xffff948960aba6a0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Management\e40e5dfbda2461704b289f4dd7c99033\System.Management.ni.dll.aux
pool: 0xffff948960aba7b0 | file object: 0xffff948960aba830 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\sbcs-codec-86b919f89fe3f227d1a90fe128c02189.code
pool: 0xffff948960aba940 | file object: 0xffff948960aba9c0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.TeamExplorer.Common,version=16.6.30126.96\_package.json
pool: 0xffff948960abaad0 | file object: 0xffff948960abab50 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.MinShell.Interop,version=16.0.28315.86\_package.json
pool: 0xffff948960abac60 | file object: 0xffff948960abace0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\v8_context_snapshot.bin
pool: 0xffff948960abadf0 | file object: 0xffff948960abae70 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\FSharp.Editor\e1ad0fe29765044dfa7ed610659666a4\FSharp.Editor.ni.dll.aux
pool: 0xffff948960abb110 | file object: 0xffff948960abb190 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\windows-process-tree\build\Release\windows_process_tree.node
pool: 0xffff948960abb2a0 | file object: 0xffff948960abb320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960abb430 | file object: 0xffff948960abb4b0 | offsetby: 0x80
㊠澫￿䄀澫￿针逾舎￿䏰惺钉￿砠膃舎￿⺨誌舎￿㉰怄钉￿⻘誌舎￿⻘誌舎￿⻨誌舎￿⻨誌舎￿⻸誌舎￿⻸誌舎￿䢨怄钉￿䢨怄钉￿⼘誌舎￿⼘誌舎￿⼨誌舎￿⼨誌舎￿༘諠惌钉￿ݘ譮舎￿ݘ譮舎￿⽰誌舎￿⽰誌舎￿
pool: 0xffff948960abb5c0 | file object: 0xffff948960abb640 | offsetby: 0x80
\$Directory
pool: 0xffff948960abb750 | file object: 0xffff948960abb7d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\code\electron-browser\sharedProcess\sharedProcessMain.nls.js
pool: 0xffff948960abb8e0 | file object: 0xffff948960abb960 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar
pool: 0xffff948960abba70 | file object: 0xffff948960abbaf0 | offsetby: 0x80
\Registry\Machine\System\CurrentControlSet\Control\StateSeparation\RedirectionMap\Keys34-73a32824fd2c}FxProperties078
pool: 0xffff948960abbc00 | file object: 0xffff948960abbc80 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar
pool: 0xffff948960abbd90 | file object: 0xffff948960abbe10 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\semver-umd-fe26b64db4bd96a9db297bca2bebee37.code
pool: 0xffff948960abc0b0 | file object: 0xffff948960abc130 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\streams-34af569280a4e7124de230bd4d532cd3.code
pool: 0xffff948960abc240 | file object: 0xffff948960abc2c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960abc3d0 | file object: 0xffff948960abc450 | offsetby: 0x80
\Windows\SysWOW64\mscms.dll
pool: 0xffff948960abc560 | file object: 0xffff948960abc5e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960abc6f0 | file object: 0xffff948960abc770 | offsetby: 0x80
\$Directory
pool: 0xffff948960abc880 | file object: 0xffff948960abc900 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\utils-50c33a41bdf843bbc1ca5920f2ffa423.code
pool: 0xffff948960abca10 | file object: 0xffff948960abca90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960abcba0 | file object: 0xffff948960abcc20 | offsetby: 0x80
ԁԀ鄑샋狀먔믢꙼ϩāက ԁԀ鄑샋狀먔믢꙼ȁԁԀ鄑샋狀먔믢꙼ϩԁԀ鄑샋狀먔믢꙼ȁ\$ကԁԀ鄑샋狀먔믢꙼ϩကāԀꀀ́Ԁȁa
pool: 0xffff948960abcd30 | file object: 0xffff948960abcdb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960abd050 | file object: 0xffff948960abd0d0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.P521220ea#\b833f008aeb9a346af4a723faad01923\Microsoft.PowerShell.Commands.Utility.ni.dll.aux
pool: 0xffff948960abd1e0 | file object: 0xffff948960abd260 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\json-language-features\package.nls.json.json
pool: 0xffff948960abd370 | file object: 0xffff948960abd3f0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Exceptions-9ba7a01801c9803994bc1e853959f011.code
pool: 0xffff948960abd500 | file object: 0xffff948960abd580 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960abd690 | file object: 0xffff948960abd710 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-abyss\package.json.jsonb\package.jsonjson
pool: 0xffff948960abd820 | file object: 0xffff948960abd8a0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.P6f792626#\ec4232fa1d5e0574ea8d68790706afaa\Microsoft.PowerShell.Security.ni.dll.aux
pool: 0xffff948960abd9b0 | file object: 0xffff948960abda30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960abdb40 | file object: 0xffff948960abdbc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960abdcd0 | file object: 0xffff948960abdd50 | offsetby: 0x80
\Windows\System32\Windows.StateReposito
pool: 0xffff948960abde60 | file object: 0xffff948960abdee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960abe180 | file object: 0xffff948960abe200 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960abe310 | file object: 0xffff948960abe390 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\Assets\MicrosoftEdgeFile.targetsize-16.png8bbwe%5Cresources.priE6
pool: 0xffff948960abe4a0 | file object: 0xffff948960abe520 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Transactions\e73720f27017195d342aff407d9504ef\System.Transactions.ni.dll.aux
pool: 0xffff948960abe630 | file object: 0xffff948960abe6b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960abe7c0 | file object: 0xffff948960abe840 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960abe950 | file object: 0xffff948960abe9d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\shaderlab\package.nls.json5.86\_package.json
pool: 0xffff948960abeae0 | file object: 0xffff948960abeb60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960abec70 | file object: 0xffff948960abecf0 | offsetby: 0x80
\Users\User\AppData\Local\nganhkhoa\lpus\ntkrnlmp.pdb\E7477A03A7078050CB7936455CE346B5\1\ntkrnlmp.pdbCE346B5\1\ntkrnlmp.pdbs
pool: 0xffff948960abee00 | file object: 0xffff948960abee80 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.Component.NetFX.Native,version=16.5.29515.121\_package.json
pool: 0xffff948960abf120 | file object: 0xffff948960abf1a0 | offsetby: 0x80
gram Files\WindowsPowerShellīindex-bcea1323291a66c7808e6b9f71f32aa7.c
pool: 0xffff948960abf2b0 | file object: 0xffff948960abf330 | offsetby: 0x80
\$Directory
pool: 0xffff948960abf440 | file object: 0xffff948960abf4c0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\PowerShell\ModuleAnalysisCache
pool: 0xffff948960abf5d0 | file object: 0xffff948960abf650 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960abf760 | file object: 0xffff948960abf7e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960abf8f0 | file object: 0xffff948960abf970 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960abfa80 | file object: 0xffff948960abfb00 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\python\package.json5\_package.json
pool: 0xffff948960abfc10 | file object: 0xffff948960abfc90 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Confe64a9051#\db14181143f09a81576d6aaee8456d8d\System.Configuration.Install.ni.dll.aux
pool: 0xffff948960abfda0 | file object: 0xffff948960abfe20 | offsetby: 0x80
\$Directory
pool: 0xffff948960ac00c0 | file object: 0xffff948960ac0140 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Platform.AppDomainManager.dll
pool: 0xffff948960ac0250 | file object: 0xffff948960ac02d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960ac03e0 | file object: 0xffff948960ac0460 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VSFinalizerDependencies\Msal\Microsoft.Identity.Client.Extensions.Msal.dll
pool: 0xffff948960ac0570 | file object: 0xffff948960ac05f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\MSBuild\Current\Bin\Microsoft.Build.dll
pool: 0xffff948960ac0700 | file object: 0xffff948960ac0780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960ac0890 | file object: 0xffff948960ac0910 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcpackages\1033\vcpkgui.dll
pool: 0xffff948960ac0a20 | file object: 0xffff948960ac0aa0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Threading.16.0\Microsoft.VisualStudio.Threading.dll
pool: 0xffff948960ac0bb0 | file object: 0xffff948960ac0c30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Utilities.Internal.dll
pool: 0xffff948960ac0d40 | file object: 0xffff948960ac0dc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\Authentication\Microsoft.VisualStudio.Authentication.ConnectedServices.dll
pool: 0xffff948960ac1060 | file object: 0xffff948960ac10e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\Authentication\Microsoft.VisualStudio.Authentication.ConnectedServices.dll
pool: 0xffff948960ac11f0 | file object: 0xffff948960ac1270 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960ac1380 | file object: 0xffff948960ac1400 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.CallHierarchy.Package.Implementation.dll
pool: 0xffff948960ac1510 | file object: 0xffff948960ac1590 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\Microsoft.VisualStudio.Azure.Fabric.ApplicationProject.dll
pool: 0xffff948960ac16a0 | file object: 0xffff948960ac1720 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Microsoft.VisualStudio.Data.Tools.DataCompare.dll
pool: 0xffff948960ac1830 | file object: 0xffff948960ac18b0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V43ea1027#\d479772453f697d70b50e6be1905026c\Microsoft.VisualStudio.IntelliCode.ni.dll.aux
pool: 0xffff948960ac19c0 | file object: 0xffff948960ac1a40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Microsoft.VisualStudio.Data.Tools.DataCompare.dll
pool: 0xffff948960ac1b50 | file object: 0xffff948960ac1bd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Vsix\Microsoft.VisualStudio.Data.Tools.SQLPDWExtensions.dll
pool: 0xffff948960ac1ce0 | file object: 0xffff948960ac1d60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960ac1e70 | file object: 0xffff948960ac1ef0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Vsix\Microsoft.VisualStudio.Data.Tools.SQLPDWExtensions.dll
pool: 0xffff948960ac2000 | file object: 0xffff948960ac2080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960ac2190 | file object: 0xffff948960ac2210 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\1033\Microsoft.VisualStudio.QualityTools.Tips.TuipPackageUI.dll
pool: 0xffff948960ac2320 | file object: 0xffff948960ac23a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960ac24b0 | file object: 0xffff948960ac2530 | offsetby: 0x80
\$Directory
pool: 0xffff948960ac2640 | file object: 0xffff948960ac26c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\IntelliCode\Microsoft.VisualStudio.IntelliCode.dll
pool: 0xffff948960ac27d0 | file object: 0xffff948960ac2850 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.VisualStudio.LanguageServices.CSharp.dll
pool: 0xffff948960ac2960 | file object: 0xffff948960ac29e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960ac2af0 | file object: 0xffff948960ac2b70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\MDD\Debugger\Microsoft.Kofe.Package.dll
pool: 0xffff948960ac2c80 | file object: 0xffff948960ac2d00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960ac2e10 | file object: 0xffff948960ac2e90 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vdbbc1be9#\b2eb557630f4abaed399426ff01e1a73\Microsoft.VisualStudio.LanguageServices.ni.dll.aux
pool: 0xffff948960ac3130 | file object: 0xffff948960ac31b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960ac32c0 | file object: 0xffff948960ac3340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960ac3450 | file object: 0xffff948960ac34d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.DesignTools.XamlDesignerHost.dll
pool: 0xffff948960ac35e0 | file object: 0xffff948960ac3660 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Project\Microsoft.VisualStudio.ProjectSystem.dll
pool: 0xffff948960ac3770 | file object: 0xffff948960ac37f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960ac3900 | file object: 0xffff948960ac3980 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960ac3a90 | file object: 0xffff948960ac3b10 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.PackageGroup.CommunityCore,version=16.0.28315.86\_package.json
pool: 0xffff948960ac3c20 | file object: 0xffff948960ac3ca0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Package Management\Microsoft.WebTools.PackageManagement.dll
pool: 0xffff948960ac3db0 | file object: 0xffff948960ac3e30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d02160 | file object: 0xffff948960d021e0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\diasymreader.dll
pool: 0xffff948960d022f0 | file object: 0xffff948960d02370 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\html-language-features\package.json
pool: 0xffff948960d02480 | file object: 0xffff948960d02500 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\search-result\dist\extension.js
pool: 0xffff948960d02610 | file object: 0xffff948960d02690 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d027a0 | file object: 0xffff948960d02820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d02930 | file object: 0xffff948960d029b0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\github-authentication\dist\nls.metadata.header.json
pool: 0xffff948960d02ac0 | file object: 0xffff948960d02b40 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\html\package.nls.json
pool: 0xffff948960d02c50 | file object: 0xffff948960d02cd0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\ini\package.nls.json
pool: 0xffff948960d02de0 | file object: 0xffff948960d02e60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\qlbscfin.1er\ProjectTemplates\templateManifest1.1033.vstman
pool: 0xffff948960d03100 | file object: 0xffff948960d03180 | offsetby: 0x80
\$Directory
pool: 0xffff948960d03290 | file object: 0xffff948960d03310 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\rust\package.json
pool: 0xffff948960d03420 | file object: 0xffff948960d034a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\image-preview\package.nls.json
pool: 0xffff948960d035b0 | file object: 0xffff948960d03630 | offsetby: 0x80
\$Directory
pool: 0xffff948960d03740 | file object: 0xffff948960d037c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d038d0 | file object: 0xffff948960d03950 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\json\package.json
pool: 0xffff948960d03a60 | file object: 0xffff948960d03ae0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\json\package.nls.json
pool: 0xffff948960d03bf0 | file object: 0xffff948960d03c70 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\6332EF8BBDB37EF2CA5EA9175CD80A6A_91913F7190C31BE48CF507F030E1ABBD
pool: 0xffff948960d03d80 | file object: 0xffff948960d03e00 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\json-language-features\package.json
pool: 0xffff948960d040a0 | file object: 0xffff948960d04120 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\hlsl\package.json
pool: 0xffff948960d04230 | file object: 0xffff948960d042b0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\hlsl\package.nls.json
pool: 0xffff948960d043c0 | file object: 0xffff948960d04440 | offsetby: 0x80
\$Directory
pool: 0xffff948960d04550 | file object: 0xffff948960d045d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d046e0 | file object: 0xffff948960d04760 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d04870 | file object: 0xffff948960d048f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d04a00 | file object: 0xffff948960d04a80 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\html\package.json
pool: 0xffff948960d04b90 | file object: 0xffff948960d04c10 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\ini\package.json
pool: 0xffff948960d04d20 | file object: 0xffff948960d04da0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\image-preview\package.json
pool: 0xffff948960d05040 | file object: 0xffff948960d050c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\html-language-features\package.nls.json
pool: 0xffff948960d051d0 | file object: 0xffff948960d05250 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.Identity.Client.dll
pool: 0xffff948960d05360 | file object: 0xffff948960d053e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\templateManifest1.noloc.vstman
pool: 0xffff948960d054f0 | file object: 0xffff948960d05570 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\markdown-language-features\package.json
pool: 0xffff948960d05680 | file object: 0xffff948960d05700 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d05810 | file object: 0xffff948960d05890 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\python\package.json
pool: 0xffff948960d059a0 | file object: 0xffff948960d05a20 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\search-result\package.json
pool: 0xffff948960d05b30 | file object: 0xffff948960d05bb0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\sql\package.json
pool: 0xffff948960d05cc0 | file object: 0xffff948960d05d40 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\vscode-account\dist\extension.js
pool: 0xffff948960d05e50 | file object: 0xffff948960d05ed0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d06170 | file object: 0xffff948960d061f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\markdown-basics\package.json
pool: 0xffff948960d06300 | file object: 0xffff948960d06380 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\r\package.json
pool: 0xffff948960d06490 | file object: 0xffff948960d06510 | offsetby: 0x80
\$Directory
pool: 0xffff948960d06620 | file object: 0xffff948960d066a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d067b0 | file object: 0xffff948960d06830 | offsetby: 0x80
\$Directory
pool: 0xffff948960d06940 | file object: 0xffff948960d069c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d06ad0 | file object: 0xffff948960d06b50 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\scss\package.json
pool: 0xffff948960d06c60 | file object: 0xffff948960d06ce0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d06df0 | file object: 0xffff948960d06e70 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\jake\package.nls.json
pool: 0xffff948960d07110 | file object: 0xffff948960d07190 | offsetby: 0x80
\$Directory
pool: 0xffff948960d072a0 | file object: 0xffff948960d07320 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\jake\package.json
pool: 0xffff948960d07430 | file object: 0xffff948960d074b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d075c0 | file object: 0xffff948960d07640 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d07750 | file object: 0xffff948960d077d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d078e0 | file object: 0xffff948960d07960 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.CSharp\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.CSharp.dll
pool: 0xffff948960d07a70 | file object: 0xffff948960d07af0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\markdown-language-features\package.nls.json
pool: 0xffff948960d07c00 | file object: 0xffff948960d07c80 | offsetby: 0x80
\$Directory
pool: 0xffff948960d07d90 | file object: 0xffff948960d07e10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d080b0 | file object: 0xffff948960d08130 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\r\package.nls.json
pool: 0xffff948960d08240 | file object: 0xffff948960d082c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\markdown-basics\package.nls.json
pool: 0xffff948960d083d0 | file object: 0xffff948960d08450 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d08560 | file object: 0xffff948960d085e0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Da9845d5e#\24a386b35f87e0b50fc0a7def3c30bf9\Microsoft.Diagnostics.Tracing.EventSource.ni.dll
pool: 0xffff948960d086f0 | file object: 0xffff948960d08770 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\_Instances\0f5aa209\components.json
pool: 0xffff948960d08880 | file object: 0xffff948960d08900 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\log\package.json
pool: 0xffff948960d08a10 | file object: 0xffff948960d08a90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d08ba0 | file object: 0xffff948960d08c20 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\log\package.nls.json
pool: 0xffff948960d08d30 | file object: 0xffff948960d08db0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\json-language-features\package.nls.json
pool: 0xffff948960d09050 | file object: 0xffff948960d090d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\lua\package.json
pool: 0xffff948960d091e0 | file object: 0xffff948960d09260 | offsetby: 0x80
\$Directory
pool: 0xffff948960d09370 | file object: 0xffff948960d093f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d09500 | file object: 0xffff948960d09580 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\eftools.en-us.Item..vstman
pool: 0xffff948960d09690 | file object: 0xffff948960d09710 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\lua\package.nls.json
pool: 0xffff948960d09820 | file object: 0xffff948960d098a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\EntityFrameworkTools.1031.item.vstman
pool: 0xffff948960d099b0 | file object: 0xffff948960d09a30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d09b40 | file object: 0xffff948960d09bc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\EntityFrameworkTools.1033.item.vstman
pool: 0xffff948960d09cd0 | file object: 0xffff948960d09d50 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\0176FF8CC1DB1ABBF832BE1F1EE707D3
pool: 0xffff948960d09e60 | file object: 0xffff948960d09ee0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\EntityFrameworkTools.1034.item.vstman
pool: 0xffff948960d0a180 | file object: 0xffff948960d0a200 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\EntityFrameworkTools.1036.item.vstman
pool: 0xffff948960d0a310 | file object: 0xffff948960d0a390 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\EntityFrameworkTools.1040.item.vstman
pool: 0xffff948960d0a4a0 | file object: 0xffff948960d0a520 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\EntityFrameworkTools.2052.item.vstman
pool: 0xffff948960d0a630 | file object: 0xffff948960d0a6b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\EntityFrameworkTools.1028.item.vstman
pool: 0xffff948960d0a7c0 | file object: 0xffff948960d0a840 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.Diagnostics.Tracing.EventSource.dll
pool: 0xffff948960d0a950 | file object: 0xffff948960d0a9d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\EntityFrameworkTools.1042.item.vstman
pool: 0xffff948960d0aae0 | file object: 0xffff948960d0ab60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\EntityFrameworkTools.1041.item.vstman
pool: 0xffff948960d0ac70 | file object: 0xffff948960d0acf0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\java\package.json
pool: 0xffff948960d0ae00 | file object: 0xffff948960d0ae80 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\java\package.nls.json
pool: 0xffff948960d0b120 | file object: 0xffff948960d0b1a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\EntityFrameworkTools.1049.item.vstman
pool: 0xffff948960d0b2b0 | file object: 0xffff948960d0b330 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d0b440 | file object: 0xffff948960d0b4c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\less\package.json
pool: 0xffff948960d0b5d0 | file object: 0xffff948960d0b650 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\less\package.nls.json
pool: 0xffff948960d0b760 | file object: 0xffff948960d0b7e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.VC.Ide.ATL.Item..vstman
pool: 0xffff948960d0b8f0 | file object: 0xffff948960d0b970 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Templates.CS.ManagedCore.Resources.en-US.Item..vstman
pool: 0xffff948960d0ba80 | file object: 0xffff948960d0bb00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Templates.VB.Wpf.Item..vstman
pool: 0xffff948960d0bc10 | file object: 0xffff948960d0bc90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.DesktopBridge.Tools.Resources.en-US.Item..vstman
pool: 0xffff948960d0bda0 | file object: 0xffff948960d0be20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Templates.CS.ManagedWeb.Resources.en-US.Item..vstman
pool: 0xffff948960d0c0c0 | file object: 0xffff948960d0c140 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Templates.VB.ManagedCore.Resources.en-US.Item..vstman
pool: 0xffff948960d0c250 | file object: 0xffff948960d0c2d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Templates.UWP.Resources.en-US.Item..vstman
pool: 0xffff948960d0c3e0 | file object: 0xffff948960d0c460 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Templates.VB.Winforms.en-US.Item..vstman
pool: 0xffff948960d0c570 | file object: 0xffff948960d0c5f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Templates.VB.Shared.Resources.en-US.Item..vstman
pool: 0xffff948960d0c700 | file object: 0xffff948960d0c780 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.TestTools.Templates.Managed.Resources.en-US.Item..vstman
pool: 0xffff948960d0c890 | file object: 0xffff948960d0c910 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Templates.CS.Winforms.en-US.Item..vstman
pool: 0xffff948960d0ca20 | file object: 0xffff948960d0caa0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.TextTemplating.Integration.Item..vstman
pool: 0xffff948960d0cbb0 | file object: 0xffff948960d0cc30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Azure.Waverton.Projects.Item..vstman
pool: 0xffff948960d0cd40 | file object: 0xffff948960d0cdc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Templates.VB.ManagedWeb.Resources.en-US.Item..vstman
pool: 0xffff948960d0d060 | file object: 0xffff948960d0d0e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Community.Item..vstman
pool: 0xffff948960d0d1f0 | file object: 0xffff948960d0d270 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Templates.CS.Wpf.Item..vstman
pool: 0xffff948960d0d380 | file object: 0xffff948960d0d400 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Templates.CS.Wpf.Resources.en-US.Item..vstman
pool: 0xffff948960d0d510 | file object: 0xffff948960d0d590 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Templates.VB.Wpf.Resources.en-US.Item..vstman
pool: 0xffff948960d0d6a0 | file object: 0xffff948960d0d720 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.TestTools.TestPlatform.Legacy.Core.Resources.en-US.Item..vstman
pool: 0xffff948960d0d830 | file object: 0xffff948960d0d8b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.VC.Templates.Pro.Item..vstman
pool: 0xffff948960d0d9c0 | file object: 0xffff948960d0da40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.VC.Templates.Pro.Resources.en-US.Item..vstman
pool: 0xffff948960d0db50 | file object: 0xffff948960d0dbd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Templates.VB.Shared.Item..vstman
pool: 0xffff948960d0dce0 | file object: 0xffff948960d0dd60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.TestTools.Templates.Managed.Item..vstman
pool: 0xffff948960d0de70 | file object: 0xffff948960d0def0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.VC.Templates.UnitTest.Resources.en-US.Item..vstman
pool: 0xffff948960d0e000 | file object: 0xffff948960d0e080 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Windows.Tools.Ide.Item..vstman
pool: 0xffff948960d0e190 | file object: 0xffff948960d0e210 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.WebTools.Azure.Templates.Item..vstman
pool: 0xffff948960d0e320 | file object: 0xffff948960d0e3a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.VC.Templates.UnitTest.Item..vstman
pool: 0xffff948960d0e4b0 | file object: 0xffff948960d0e530 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Templates.CS.Shared.Resources.en-US.Item..vstman
pool: 0xffff948960d0e640 | file object: 0xffff948960d0e6c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.Templates.UWP.Item..vstman
pool: 0xffff948960d0e7d0 | file object: 0xffff948960d0e850 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.VisualStudio.VC.CMake.Project.Item..vstman
pool: 0xffff948960d0e960 | file object: 0xffff948960d0e9e0 | offsetby: 0x80
\Windows\System32\duser.dll
pool: 0xffff948960d0eaf0 | file object: 0xffff948960d0eb70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\SSDT.Item..vstman
pool: 0xffff948960d0ec80 | file object: 0xffff948960d0ed00 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\07CEF2F654E3ED6050FFC9B6EB844250_3431D4C539FB2CFCB781821E9902850D
pool: 0xffff948960d0ee10 | file object: 0xffff948960d0ee90 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\07CEF2F654E3ED6050FFC9B6EB844250_5F5269AC0D922158A5B542020448A2D3
pool: 0xffff948960d0f130 | file object: 0xffff948960d0f1b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d0f2c0 | file object: 0xffff948960d0f340 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\powershell\package.nls.json
pool: 0xffff948960d0f450 | file object: 0xffff948960d0f4d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-monokai\package.json
pool: 0xffff948960d0f5e0 | file object: 0xffff948960d0f660 | offsetby: 0x80
\$Directory
pool: 0xffff948960d0f770 | file object: 0xffff948960d0f7f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d0f900 | file object: 0xffff948960d0f980 | offsetby: 0x80
\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\Search\Index\SXRlbSB0ZW1wbGF0ZXMgc291cmNlIHByb3ZpZGVy.blob
pool: 0xffff948960d0fa90 | file object: 0xffff948960d0fb10 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-monokai-dimmed\package.json
pool: 0xffff948960d0fc20 | file object: 0xffff948960d0fca0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\6332EF8BBDB37EF2CA5EA9175CD80A6A_C2A24306A7CBC218443E752F3A010AA6
pool: 0xffff948960d0fdb0 | file object: 0xffff948960d0fe30 | offsetby: 0x80
\$Directory
pool: 0xffff948960d100d0 | file object: 0xffff948960d10150 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.WebTools.DotNet.ItemTemplates.Item..vstman
pool: 0xffff948960d10260 | file object: 0xffff948960d102e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\em3ozjcu.15r\ItemTemplates\templateManifest0.1033.vstman
pool: 0xffff948960d103f0 | file object: 0xffff948960d10470 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\RulesetTemplates.vstman
pool: 0xffff948960d10580 | file object: 0xffff948960d10600 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d10710 | file object: 0xffff948960d10790 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Portable Library Tools\Microsoft.VisualStudio.PortableLibrary.dll
pool: 0xffff948960d108a0 | file object: 0xffff948960d10920 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Portable Library Tools\Microsoft.VisualStudio.PortableLibrary.dll
pool: 0xffff948960d10a30 | file object: 0xffff948960d10ab0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d10bc0 | file object: 0xffff948960d10c40 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff948960d10d50 | file object: 0xffff948960d10dd0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-kimbie-dark\package.json
pool: 0xffff948960d11070 | file object: 0xffff948960d110f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Templates.Editorconfig.SolutionFile.Setup.Item..vstman
pool: 0xffff948960d11200 | file object: 0xffff948960d11280 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\TypeScript.Tools.Item..vstman
pool: 0xffff948960d11390 | file object: 0xffff948960d11410 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d11520 | file object: 0xffff948960d115a0 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff948960d116b0 | file object: 0xffff948960d11730 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\swift\package.json
pool: 0xffff948960d11840 | file object: 0xffff948960d118c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\Microsoft.WebTools.ItemTemplates.Item..vstman
pool: 0xffff948960d119d0 | file object: 0xffff948960d11a50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ItemTemplates\netfx.Item.vstman
pool: 0xffff948960d11b60 | file object: 0xffff948960d11be0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d11cf0 | file object: 0xffff948960d11d70 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-seti\package.json
pool: 0xffff948960d12010 | file object: 0xffff948960d12090 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ItemTemplates\templateManifest23.1049.vstman
pool: 0xffff948960d121a0 | file object: 0xffff948960d12220 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ItemTemplates\templateManifest25.1046.vstman
pool: 0xffff948960d12330 | file object: 0xffff948960d123b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ItemTemplates\templateManifest26.1045.vstman
pool: 0xffff948960d124c0 | file object: 0xffff948960d12540 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d12650 | file object: 0xffff948960d126d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-red\package.json
pool: 0xffff948960d127e0 | file object: 0xffff948960d12860 | offsetby: 0x80
\$Directory
pool: 0xffff948960d12970 | file object: 0xffff948960d129f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ItemTemplates\templateManifest22.1042.vstman
pool: 0xffff948960d12b00 | file object: 0xffff948960d12b80 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-quietlight\package.json
pool: 0xffff948960d12c90 | file object: 0xffff948960d12d10 | offsetby: 0x80
\$Directory
pool: 0xffff948960d12e20 | file object: 0xffff948960d12ea0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ItemTemplates\templateManifest17.1031.vstman
pool: 0xffff948960d13140 | file object: 0xffff948960d131c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ItemTemplates\templateManifest18.3082.vstman
pool: 0xffff948960d132d0 | file object: 0xffff948960d13350 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ItemTemplates\templateManifest21.1041.vstman
pool: 0xffff948960d13460 | file object: 0xffff948960d134e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ItemTemplates\templateManifest20.1040.vstman
pool: 0xffff948960d135f0 | file object: 0xffff948960d13670 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d13780 | file object: 0xffff948960d13800 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ItemTemplates\templateManifest16.1028.vstman
pool: 0xffff948960d13910 | file object: 0xffff948960d13990 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ItemTemplates\templateManifest2.1033.vstman
pool: 0xffff948960d13aa0 | file object: 0xffff948960d13b20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ItemTemplates\templateManifest14.1033.vstman
pool: 0xffff948960d13c30 | file object: 0xffff948960d13cb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ItemTemplates\templateManifest24.1029.vstman
pool: 0xffff948960d13dc0 | file object: 0xffff948960d13e40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\qlbscfin.1er\ItemTemplates\templateManifest0.1033.vstman
pool: 0xffff948960d140e0 | file object: 0xffff948960d14160 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ItemTemplates\templateManifest15.2052.vstman
pool: 0xffff948960d14270 | file object: 0xffff948960d142f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ItemTemplates\templateManifest19.1036.vstman
pool: 0xffff948960d14400 | file object: 0xffff948960d14480 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ItemTemplates\templateManifest0.noloc.vstman
pool: 0xffff948960d14590 | file object: 0xffff948960d14610 | offsetby: 0x80
\$Directory
pool: 0xffff948960d14720 | file object: 0xffff948960d147a0 | offsetby: 0x80
\Windows\SystemResources\shell32.dll.mun
pool: 0xffff948960d148b0 | file object: 0xffff948960d14930 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ItemTemplates\templateManifest27.1055.vstman
pool: 0xffff948960d14a40 | file object: 0xffff948960d14ac0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d14bd0 | file object: 0xffff948960d14c50 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\merge-conflict\dist\extension.js
pool: 0xffff948960d14d60 | file object: 0xffff948960d14de0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\UserScripts\PreDeploymentScript.vsdir
pool: 0xffff948960d15080 | file object: 0xffff948960d15100 | offsetby: 0x80
\$Directory
pool: 0xffff948960d15210 | file object: 0xffff948960d15290 | offsetby: 0x80
\$Directory
pool: 0xffff948960d153a0 | file object: 0xffff948960d15420 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\UserScripts\Create Script.vsdir
pool: 0xffff948960d15530 | file object: 0xffff948960d155b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_1B3EFF27403242475551659A99D51D03
pool: 0xffff948960d156c0 | file object: 0xffff948960d15740 | offsetby: 0x80
\Windows\SystemResources\ExplorerFrame.dll.mun
pool: 0xffff948960d15850 | file object: 0xffff948960d158d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d159e0 | file object: 0xffff948960d15a60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\SqlServer.vsdir
pool: 0xffff948960d15b70 | file object: 0xffff948960d15bf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create ColumnStore Index.vsdir
pool: 0xffff948960d15d00 | file object: 0xffff948960d15d80 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-solarized-dark\package.json
pool: 0xffff948960d16020 | file object: 0xffff948960d160a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d161b0 | file object: 0xffff948960d16230 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\UserScripts\Create Script Build.vsdir
pool: 0xffff948960d16340 | file object: 0xffff948960d163c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-solarized-light\package.json
pool: 0xffff948960d164d0 | file object: 0xffff948960d16550 | offsetby: 0x80
\$Directory
pool: 0xffff948960d16660 | file object: 0xffff948960d166e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\UserScripts\PostDeploymentScript.vsdir
pool: 0xffff948960d167f0 | file object: 0xffff948960d16870 | offsetby: 0x80
\$Directory
pool: 0xffff948960d16980 | file object: 0xffff948960d16a00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\FSharp\ItemTemplates\templateManifest0.1033.vstman
pool: 0xffff948960d16b10 | file object: 0xffff948960d16b90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Default Constraint.vsdir
pool: 0xffff948960d16ca0 | file object: 0xffff948960d16d20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create External Data Source (RDBMS).vsdir
pool: 0xffff948960d16e30 | file object: 0xffff948960d16eb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create External Data Source.vsdir
pool: 0xffff948960d17150 | file object: 0xffff948960d171d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create External Data Source (Sharded).vsdir
pool: 0xffff948960d172e0 | file object: 0xffff948960d17360 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d17470 | file object: 0xffff948960d174f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d17600 | file object: 0xffff948960d17680 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create External File Format.vsdir
pool: 0xffff948960d17790 | file object: 0xffff948960d17810 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create External Table (Elastic Query RDBMS).vsdir
pool: 0xffff948960d17920 | file object: 0xffff948960d179a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d17ab0 | file object: 0xffff948960d17b30 | offsetby: 0x80
\$Directory
pool: 0xffff948960d17c40 | file object: 0xffff948960d17cc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Search\en\Microsoft.VisualStudio.Platform.SearchProviders.resources.dll
pool: 0xffff948960d17dd0 | file object: 0xffff948960d17e50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Check Constraint.vsdir
pool: 0xffff948960d180f0 | file object: 0xffff948960d18170 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create FileTable.vsdir
pool: 0xffff948960d18280 | file object: 0xffff948960d18300 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Storage\Create Full Text Stoplist.vsdir
pool: 0xffff948960d18410 | file object: 0xffff948960d18490 | offsetby: 0x80
\$Directory
pool: 0xffff948960d185a0 | file object: 0xffff948960d18620 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Spatial Index.vsdir
pool: 0xffff948960d18730 | file object: 0xffff948960d187b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Storage\Create Fulltext Catalog.vsdir
pool: 0xffff948960d188c0 | file object: 0xffff948960d18940 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Storage\Create Log File.vsdir
pool: 0xffff948960d18a50 | file object: 0xffff948960d18ad0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Index.vsdir
pool: 0xffff948960d18be0 | file object: 0xffff948960d18c60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Storage\Create FileGroup MemOpt.vsdir
pool: 0xffff948960d18d70 | file object: 0xffff948960d18df0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Statistics.vsdir
pool: 0xffff948960d19090 | file object: 0xffff948960d19110 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create External Table (Elastic Query Sharded).vsdir
pool: 0xffff948960d19220 | file object: 0xffff948960d192a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Fulltext Index.vsdir
pool: 0xffff948960d193b0 | file object: 0xffff948960d19430 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Table MemOpt.vsdir
pool: 0xffff948960d19540 | file object: 0xffff948960d195c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Table SysVersioned.vsdir
pool: 0xffff948960d196d0 | file object: 0xffff948960d19750 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Table DW.vsdir
pool: 0xffff948960d19860 | file object: 0xffff948960d198e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Table MemOpt with Filegroup.vsdir
pool: 0xffff948960d199f0 | file object: 0xffff948960d19a70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Trigger.vsdir
pool: 0xffff948960d19b80 | file object: 0xffff948960d19c00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create External Table.vsdir
pool: 0xffff948960d19d10 | file object: 0xffff948960d19d90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Foreign Key.vsdir
pool: 0xffff948960d1a030 | file object: 0xffff948960d1a0b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Selective XML Index.vsdir
pool: 0xffff948960d1a1c0 | file object: 0xffff948960d1a240 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Unique Key.vsdir
pool: 0xffff948960d1a350 | file object: 0xffff948960d1a3d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create View.vsdir
pool: 0xffff948960d1a4e0 | file object: 0xffff948960d1a560 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create XML Index.vsdir
pool: 0xffff948960d1a670 | file object: 0xffff948960d1a6f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Instead Of Trigger.vsdir
pool: 0xffff948960d1a800 | file object: 0xffff948960d1a880 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Table.vsdir
pool: 0xffff948960d1a990 | file object: 0xffff948960d1aa10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Storage\Create File.vsdir
pool: 0xffff948960d1ab20 | file object: 0xffff948960d1aba0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Storage\Create FileGroup With Filestream.vsdir
pool: 0xffff948960d1acb0 | file object: 0xffff948960d1ad30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\TablesViews\Create Primary Key.vsdir
pool: 0xffff948960d1ae40 | file object: 0xffff948960d1aec0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Storage\Create FileGroup.vsdir
pool: 0xffff948960d1b160 | file object: 0xffff948960d1b1e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\CSSqlClr\CSSqlAssemblyInfo.vsdir
pool: 0xffff948960d1b2f0 | file object: 0xffff948960d1b370 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\CSSqlClr\CSSqlAggregate.vsdir
pool: 0xffff948960d1b480 | file object: 0xffff948960d1b500 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\CSSqlClr\CSSqlClassFile.vsdir
pool: 0xffff948960d1b610 | file object: 0xffff948960d1b690 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\CSSqlClr\CSSqlCodeFile.vsdir
pool: 0xffff948960d1b7a0 | file object: 0xffff948960d1b820 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\CSSqlClr\CSSqlFunction.vsdir
pool: 0xffff948960d1b930 | file object: 0xffff948960d1b9b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\CSSqlClr\CSSqlStoredProcedure.vsdir
pool: 0xffff948960d1bac0 | file object: 0xffff948960d1bb40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\SQL CLR\Create Aggregate.vsdir
pool: 0xffff948960d1bc50 | file object: 0xffff948960d1bcd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\SQL CLR\Create Assembly.vsdir
pool: 0xffff948960d1bde0 | file object: 0xffff948960d1be60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\VBSqlClr\VBSqlAssemblyInfo.vsdir
pool: 0xffff948960d1c100 | file object: 0xffff948960d1c180 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Storage\Create Partition Scheme.vsdir
pool: 0xffff948960d1c290 | file object: 0xffff948960d1c310 | offsetby: 0x80
\$Directory
pool: 0xffff948960d1c420 | file object: 0xffff948960d1c4a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\VBSqlClr\VBSqlCodeFile.vsdir
pool: 0xffff948960d1c5b0 | file object: 0xffff948960d1c630 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\VBSqlClr\VBSqlFunction.vsdir
pool: 0xffff948960d1c740 | file object: 0xffff948960d1c7c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d1c8d0 | file object: 0xffff948960d1c950 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\CSSqlClr\CSSqlTrigger.vsdir
pool: 0xffff948960d1ca60 | file object: 0xffff948960d1cae0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\SQL CLR\Create CLR Procedure.vsdir
pool: 0xffff948960d1cbf0 | file object: 0xffff948960d1cc70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\SQL CLR\Create CLR Database Trigger.vsdir
pool: 0xffff948960d1cd80 | file object: 0xffff948960d1ce00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\SQL CLR\Create CLR Instead Of Trigger.vsdir
pool: 0xffff948960d1d0a0 | file object: 0xffff948960d1d120 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\SQL CLR\Create CLR Scalar Function.vsdir
pool: 0xffff948960d1d230 | file object: 0xffff948960d1d2b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\SQL CLR\Create CLR Server Trigger.vsdir
pool: 0xffff948960d1d3c0 | file object: 0xffff948960d1d440 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\CSSqlClr\CSSqlUserDefinedType.vsdir
pool: 0xffff948960d1d550 | file object: 0xffff948960d1d5d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d1d6e0 | file object: 0xffff948960d1d760 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Storage\Create Partition Function.vsdir
pool: 0xffff948960d1d870 | file object: 0xffff948960d1d8f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\VBSqlClr\VBSqlAggregate.vsdir
pool: 0xffff948960d1da00 | file object: 0xffff948960d1da80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Storage\Create Search Property List.vsdir
pool: 0xffff948960d1db90 | file object: 0xffff948960d1dc10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\VBSqlClr\VBSqlTrigger.vsdir
pool: 0xffff948960d1dd20 | file object: 0xffff948960d1dda0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\VBSqlClr\VBSqlClassFile.vsdir
pool: 0xffff948960d1e040 | file object: 0xffff948960d1e0c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\VBSqlClr\VBSqlStoredProcedure.vsdir
pool: 0xffff948960d1e1d0 | file object: 0xffff948960d1e250 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\VBSqlClr\VBSqlUserDefinedType.vsdir
pool: 0xffff948960d1e360 | file object: 0xffff948960d1e3e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Asymmetric Key.vsdir
pool: 0xffff948960d1e4f0 | file object: 0xffff948960d1e570 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\ServerObjects\Create Event Session.vsdir
pool: 0xffff948960d1e680 | file object: 0xffff948960d1e700 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Certificate.vsdir
pool: 0xffff948960d1e810 | file object: 0xffff948960d1e890 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\ServiceBroker\Create Remote Service Binding.vsdir
pool: 0xffff948960d1e9a0 | file object: 0xffff948960d1ea20 | offsetby: 0x80
\$Directory
pool: 0xffff948960d1eb30 | file object: 0xffff948960d1ebb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\ServiceBroker\Create Queue.vsdir
pool: 0xffff948960d1ecc0 | file object: 0xffff948960d1ed40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Application Role.vsdir
pool: 0xffff948960d1ee50 | file object: 0xffff948960d1eed0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Column Encryption Key.vsdir
pool: 0xffff948960d1f170 | file object: 0xffff948960d1f1f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d1f300 | file object: 0xffff948960d1f380 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Column Master Key.vsdir
pool: 0xffff948960d1f490 | file object: 0xffff948960d1f510 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\ServerObjects\Create Linked Server.vsdir
pool: 0xffff948960d1f620 | file object: 0xffff948960d1f6a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d1f7b0 | file object: 0xffff948960d1f830 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\ServerObjects\Create Custom Message.vsdir
pool: 0xffff948960d1f940 | file object: 0xffff948960d1f9c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\ServiceBroker\Create Event Notification.vsdir
pool: 0xffff948960d1fad0 | file object: 0xffff948960d1fb50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Credential.vsdir
pool: 0xffff948960d1fc60 | file object: 0xffff948960d1fce0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Cryptographic Provider.vsdir
pool: 0xffff948960d1fdf0 | file object: 0xffff948960d1fe70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Database Audit Specification.vsdir
pool: 0xffff948960d20110 | file object: 0xffff948960d20190 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Database Encryption Key.vsdir
pool: 0xffff948960d202a0 | file object: 0xffff948960d20320 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Database Role.vsdir
pool: 0xffff948960d20430 | file object: 0xffff948960d204b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\SQL CLR\Create CLR Trigger.vsdir
pool: 0xffff948960d205c0 | file object: 0xffff948960d20640 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\ServiceBroker\Create Endpoint (SOAP over HTTP).vsdir
pool: 0xffff948960d20750 | file object: 0xffff948960d207d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\ServiceBroker\Create Contract.vsdir
pool: 0xffff948960d208e0 | file object: 0xffff948960d20960 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\ServiceBroker\Create Message Type.vsdir
pool: 0xffff948960d20a70 | file object: 0xffff948960d20af0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\ServiceBroker\Create Endpoint (ServiceBroker over TCP).vsdir
pool: 0xffff948960d20c00 | file object: 0xffff948960d20c80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\ServiceBroker\Create Route.vsdir
pool: 0xffff948960d20d90 | file object: 0xffff948960d20e10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\ServiceBroker\Create Service.vsdir
pool: 0xffff948960d210b0 | file object: 0xffff948960d21130 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\SQL CLR\Create User-defined Type.vsdir
pool: 0xffff948960d21240 | file object: 0xffff948960d212c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\SQL CLR\Create CLR Table Function.vsdir
pool: 0xffff948960d213d0 | file object: 0xffff948960d21450 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\ServiceBroker\Create Broker Priority.vsdir
pool: 0xffff948960d21560 | file object: 0xffff948960d215e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Server Audit.vsdir
pool: 0xffff948960d216f0 | file object: 0xffff948960d21770 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Master Key.vsdir
pool: 0xffff948960d21880 | file object: 0xffff948960d21900 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create Sequence.vsdir
pool: 0xffff948960d21a10 | file object: 0xffff948960d21a90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create Inline Function.vsdir
pool: 0xffff948960d21ba0 | file object: 0xffff948960d21c20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create Server Trigger.vsdir
pool: 0xffff948960d21d30 | file object: 0xffff948960d21db0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create Table Function.vsdir
pool: 0xffff948960d22050 | file object: 0xffff948960d220d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create Rule.vsdir
pool: 0xffff948960d221e0 | file object: 0xffff948960d22260 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Linked Server Login.vsdir
pool: 0xffff948960d22370 | file object: 0xffff948960d223f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Login SqlServer.vsdir
pool: 0xffff948960d22500 | file object: 0xffff948960d22580 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create Default.vsdir
pool: 0xffff948960d22690 | file object: 0xffff948960d22710 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create Procedure NativeComp.vsdir
pool: 0xffff948960d22820 | file object: 0xffff948960d228a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Svr Role Membership.vsdir
pool: 0xffff948960d229b0 | file object: 0xffff948960d22a30 | offsetby: 0x80
\$Directory
pool: 0xffff948960d22b40 | file object: 0xffff948960d22bc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create User.vsdir
pool: 0xffff948960d22cd0 | file object: 0xffff948960d22d50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create User with Password.vsdir
pool: 0xffff948960d22e60 | file object: 0xffff948960d22ee0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create Database Trigger.vsdir
pool: 0xffff948960d23180 | file object: 0xffff948960d23200 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Server Audit Specification.vsdir
pool: 0xffff948960d23310 | file object: 0xffff948960d23390 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create Procedure DW.vsdir
pool: 0xffff948960d234a0 | file object: 0xffff948960d23520 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create Scalar Function.vsdir
pool: 0xffff948960d23630 | file object: 0xffff948960d236b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Database Scoped Credential.vsdir
pool: 0xffff948960d237c0 | file object: 0xffff948960d23840 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Security Policy.vsdir
pool: 0xffff948960d23950 | file object: 0xffff948960d239d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create Synonym.vsdir
pool: 0xffff948960d23ae0 | file object: 0xffff948960d23b60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Schema.vsdir
pool: 0xffff948960d23c70 | file object: 0xffff948960d23cf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Signature.vsdir
pool: 0xffff948960d23e00 | file object: 0xffff948960d23e80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Server Role.vsdir
pool: 0xffff948960d24120 | file object: 0xffff948960d241a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create Extended Property.vsdir
pool: 0xffff948960d242b0 | file object: 0xffff948960d24330 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Login.vsdir
pool: 0xffff948960d24440 | file object: 0xffff948960d244c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Security\Create Symmetric Key.vsdir
pool: 0xffff948960d245d0 | file object: 0xffff948960d24650 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create Procedure.vsdir
pool: 0xffff948960d24760 | file object: 0xffff948960d247e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d248f0 | file object: 0xffff948960d24970 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create User Defined Table Type.vsdir
pool: 0xffff948960d24a80 | file object: 0xffff948960d24b00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcprojectitems\Code\code.vsdir
pool: 0xffff948960d24c10 | file object: 0xffff948960d24c90 | offsetby: 0x80
\$Directory
pool: 0xffff948960d24da0 | file object: 0xffff948960d24e20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\NewFileItems\NewCSharpFileItems.vsdir
pool: 0xffff948960d250c0 | file object: 0xffff948960d25140 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create XML Schema Collection (xsd).vsdir
pool: 0xffff948960d25250 | file object: 0xffff948960d252d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\ItemTemplates\Stylesheet.vsdir
pool: 0xffff948960d253e0 | file object: 0xffff948960d25460 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\ItemTemplates\TextTemplate.vsdir
pool: 0xffff948960d25570 | file object: 0xffff948960d255f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web\Mvc\Microsoft.VisualStudio.Web.Mvc.5.0.dll
pool: 0xffff948960d25700 | file object: 0xffff948960d25780 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\NewFileItems\NewEditorconfigFileItem.vsdir
pool: 0xffff948960d25890 | file object: 0xffff948960d25910 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\NewFileItems\NewFileItems.vsdir
pool: 0xffff948960d25a20 | file object: 0xffff948960d25aa0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\ItemTemplates\htmlpage.vsdir
pool: 0xffff948960d25bb0 | file object: 0xffff948960d25c30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\NewFileItems\NewCAFileItems.vsdir
pool: 0xffff948960d25d40 | file object: 0xffff948960d25dc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\NewFileItems\NewFileItemsEX.VSDIR
pool: 0xffff948960d26060 | file object: 0xffff948960d260e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\NewFileItems\NewFile_SqlServerDeveloperTools.vsdir
pool: 0xffff948960d261f0 | file object: 0xffff948960d26270 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\ItemTemplates\XMLSchema.vsdir
pool: 0xffff948960d26380 | file object: 0xffff948960d26400 | offsetby: 0x80
\$Directory
pool: 0xffff948960d26510 | file object: 0xffff948960d26590 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\ItemTemplates\XSLTFile.vsdir
pool: 0xffff948960d266a0 | file object: 0xffff948960d26720 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web\Mvc\Microsoft.VisualStudio.Web.Mvc.5.0.dll
pool: 0xffff948960d26830 | file object: 0xffff948960d268b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\NewFileItems\NewFSharpFileItems.vsdir
pool: 0xffff948960d269c0 | file object: 0xffff948960d26a40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create Type.vsdir
pool: 0xffff948960d26b50 | file object: 0xffff948960d26bd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\ItemTemplates\XMLFile.vsdir
pool: 0xffff948960d26ce0 | file object: 0xffff948960d26d60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editorconfig\Wizard\Microsoft.VisualStudio.Templates.Editorconfig.Wizard.Setup.dll
pool: 0xffff948960d26e70 | file object: 0xffff948960d26ef0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editorconfig\Wizard\Microsoft.VisualStudio.Templates.Editorconfig.Wizard.Setup.dll
pool: 0xffff948960d27000 | file object: 0xffff948960d27080 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\ItemTemplates\TextFile.vsdir
pool: 0xffff948960d27190 | file object: 0xffff948960d27210 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_27BB25EAFF8363030E1763E7B43C8DF6
pool: 0xffff948960d27320 | file object: 0xffff948960d273a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\F6F92FBF4E8096C9272B135AF6140AA8_78C1A1361BCCDCFFBE9AEB275BA5FE1D
pool: 0xffff948960d274b0 | file object: 0xffff948960d27530 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create User Defined Table Type MemOpt.vsdir
pool: 0xffff948960d27640 | file object: 0xffff948960d276c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Extensions\SqlServer\ItemTemplates\Programmability\Create XML Schema Collection.vsdir
pool: 0xffff948960d277d0 | file object: 0xffff948960d27850 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\ItemTemplates\TextTemplateSql.vsdir
pool: 0xffff948960d27960 | file object: 0xffff948960d279e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d27af0 | file object: 0xffff948960d27b70 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\F6F92FBF4E8096C9272B135AF6140AA8_969F149A004031886DAD715A8E23A31D
pool: 0xffff948960d27c80 | file object: 0xffff948960d27d00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcprojectitems\PropertySheets\propertysheets.vsdir
pool: 0xffff948960d27e10 | file object: 0xffff948960d27e90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcprojectitems\Web\VCWebItems.vsdir
pool: 0xffff948960d28130 | file object: 0xffff948960d281b0 | offsetby: 0x80
\Windows\System32\drivers\winquic.sys
pool: 0xffff948960d282c0 | file object: 0xffff948960d28340 | offsetby: 0x80
\$Directory
pool: 0xffff948960d28450 | file object: 0xffff948960d284d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d285e0 | file object: 0xffff948960d28660 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcprojectitems\Resource\resource.vsdir
pool: 0xffff948960d28770 | file object: 0xffff948960d287f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d28900 | file object: 0xffff948960d28980 | offsetby: 0x80
\$Directory
pool: 0xffff948960d28a90 | file object: 0xffff948960d28b10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\VC#\CSharpProjectItems\Windows Forms\CSharpItems.vsdir
pool: 0xffff948960d28c20 | file object: 0xffff948960d28ca0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d28db0 | file object: 0xffff948960d28e30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcprojectitems\Utility\VCUtilityItems.vsdir
pool: 0xffff948960d290d0 | file object: 0xffff948960d29150 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\VsGraphics\Templates\addnewitems.vsdir
pool: 0xffff948960d29260 | file object: 0xffff948960d292e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Team Tools\Testing Tools\TestProjectCommon\WizardFiles\TestSettings\TestSettings.vsdir
pool: 0xffff948960d293f0 | file object: 0xffff948960d29470 | offsetby: 0x80
\Program Files\WindowsPowerShell\Modules\PSReadline\2.0.0\Microsoft.PowerShell.PSReadline.dll
pool: 0xffff948960d29580 | file object: 0xffff948960d29600 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d29710 | file object: 0xffff948960d29790 | offsetby: 0x80
\$Directory
pool: 0xffff948960d298a0 | file object: 0xffff948960d29920 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\NewFileItems\NewVBFileItems.vsdir
pool: 0xffff948960d29a30 | file object: 0xffff948960d29ab0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\NewFileItems\NewVCFileItems.vsdir
pool: 0xffff948960d29bc0 | file object: 0xffff948960d29c40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcprojectitems\Data\data.vsdir
pool: 0xffff948960d29d50 | file object: 0xffff948960d29dd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d2a070 | file object: 0xffff948960d2a0f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d2a200 | file object: 0xffff948960d2a280 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcprojectitems\VCProjectItems.vsdir
pool: 0xffff948960d2a390 | file object: 0xffff948960d2a410 | offsetby: 0x80
\$Directory
pool: 0xffff948960d2a520 | file object: 0xffff948960d2a5a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d2a6b0 | file object: 0xffff948960d2a730 | offsetby: 0x80
\Windows\System32\drivers\rdbss.sys
pool: 0xffff948960d2a840 | file object: 0xffff948960d2a8c0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_idx.db
pool: 0xffff948960d2a9d0 | file object: 0xffff948960d2aa50 | offsetby: 0x80
\$Directory
pool: 0xffff948960d2ab60 | file object: 0xffff948960d2abe0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d2acf0 | file object: 0xffff948960d2ad70 | offsetby: 0x80
\$Directory
pool: 0xffff948960d2b010 | file object: 0xffff948960d2b090 | offsetby: 0x80
\Windows\System32\drivers\ntosext.sys
pool: 0xffff948960d2b1a0 | file object: 0xffff948960d2b220 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\VB\VBProjectItems\Windows Forms\vbprojectitems.vsdir
pool: 0xffff948960d2b330 | file object: 0xffff948960d2b3b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d2b4c0 | file object: 0xffff948960d2b540 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Definition Updates\{CADD1341-43E6-4F8B-836D-4B5D38F18D8A}\MpKslDrv.sys
pool: 0xffff948960d2b650 | file object: 0xffff948960d2b6d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d2b7e0 | file object: 0xffff948960d2b860 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Web\WebNewFileItems\NewFileItems.vsdir
pool: 0xffff948960d2b970 | file object: 0xffff948960d2b9f0 | offsetby: 0x80
\Windows\System32\drivers\partmgr.sys
pool: 0xffff948960d2bb00 | file object: 0xffff948960d2bb80 | offsetby: 0x80
\$Directory
pool: 0xffff948960d2bc90 | file object: 0xffff948960d2bd10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Web\WebNewFileItems\newtypescriptfileitems.vsdir
pool: 0xffff948960d2be20 | file object: 0xffff948960d2bea0 | offsetby: 0x80
\Windows\System32\ntoskrnl.exe
pool: 0xffff948960d2c140 | file object: 0xffff948960d2c1c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcprojectitemsopenfolder\VCProjectItemsOpenFolder.vsdir
pool: 0xffff948960d2c2d0 | file object: 0xffff948960d2c350 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_256.db
pool: 0xffff948960d2c460 | file object: 0xffff948960d2c4e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d2c5f0 | file object: 0xffff948960d2c670 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d2c910 | file object: 0xffff948960d2c990 | offsetby: 0x80
\Windows\System32\SearchProtocolHost.exe
pool: 0xffff948960d2caa0 | file object: 0xffff948960d2cb20 | offsetby: 0x80
\Windows\System32\drivers\volmgrx.sys
pool: 0xffff948960d2cc30 | file object: 0xffff948960d2ccb0 | offsetby: 0x80
\Windows\System32\drivers\mssecflt.sys
pool: 0xffff948960d2cdc0 | file object: 0xffff948960d2ce40 | offsetby: 0x80
\Windows\System32\drivers\mountmgr.sys
pool: 0xffff948960d2d0e0 | file object: 0xffff948960d2d160 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Themes\CachedFiles\CachedImage_1920_1015_POS4.jpg
pool: 0xffff948960d2d270 | file object: 0xffff948960d2d2f0 | offsetby: 0x80
\Windows\System32\drivers\fltMgr.sys
pool: 0xffff948960d2d400 | file object: 0xffff948960d2d480 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d2d590 | file object: 0xffff948960d2d610 | offsetby: 0x80
\Windows\System32\drivers\volmgr.sys
pool: 0xffff948960d2d720 | file object: 0xffff948960d2d7a0 | offsetby: 0x80
\Windows\System32\drivers\ntfs.sys
pool: 0xffff948960d2d8b0 | file object: 0xffff948960d2d930 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d2da40 | file object: 0xffff948960d2dac0 | offsetby: 0x80
\Windows\System32\drivers\tcpip.sys
pool: 0xffff948960d2dbd0 | file object: 0xffff948960d2dc50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcprojectitemsopenfolder\Code\code.vsdir
pool: 0xffff948960d2e210 | file object: 0xffff948960d2e290 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\NewScriptItems\NewFSharpScriptItems.vsdir
pool: 0xffff948960d2e3a0 | file object: 0xffff948960d2e420 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d2e530 | file object: 0xffff948960d2e5b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d2e6c0 | file object: 0xffff948960d2e740 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Web\WebNewFileItems\VB\VbItems.vsdir
pool: 0xffff948960d2e850 | file object: 0xffff948960d2e8d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Web\WebNewFileItems\CSharp\newtypescriptfileitems.vsdir
pool: 0xffff948960d2e9e0 | file object: 0xffff948960d2ea60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Web\WebNewFileItems\VB\newtypescriptfileitems.vsdir
pool: 0xffff948960d2eb70 | file object: 0xffff948960d2ebf0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d2ed00 | file object: 0xffff948960d2ed80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\VCNewItems\NewItems.vsdir
pool: 0xffff948960d2f020 | file object: 0xffff948960d2f0a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\NewScriptItems\NewScriptItems.vsdir
pool: 0xffff948960d2f1b0 | file object: 0xffff948960d2f230 | offsetby: 0x80
\Users\User\Desktop\desktop.iniys
pool: 0xffff948960d2f340 | file object: 0xffff948960d2f3c0 | offsetby: 0x80
\Windows\System32\drivers\disk.sys
pool: 0xffff948960d2f4d0 | file object: 0xffff948960d2f550 | offsetby: 0x80
뒀誛舎￿뒀誛舎￿Ј쇐辉舎￿
pool: 0xffff948960d2f660 | file object: 0xffff948960d2f6e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Web\WebNewFileItems\CSharp\CSharpItems.vsdir
pool: 0xffff948960d2f7f0 | file object: 0xffff948960d2f870 | offsetby: 0x80
\Windows\System32\drivers\netbios.sys
pool: 0xffff948960d2f980 | file object: 0xffff948960d2fa00 | offsetby: 0x80
\Windows\System32\drivers\kbdclass.sys
pool: 0xffff948960d2fb10 | file object: 0xffff948960d2fb90 | offsetby: 0x80
\$Directory
pool: 0xffff948960d2fca0 | file object: 0xffff948960d2fd20 | offsetby: 0x80
\Windows\System32\drivers\mouclass.sys
pool: 0xffff948960d2fe30 | file object: 0xffff948960d2feb0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d30150 | file object: 0xffff948960d301d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d302e0 | file object: 0xffff948960d30360 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d30790 | file object: 0xffff948960d30810 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d30920 | file object: 0xffff948960d309a0 | offsetby: 0x80
\Windows\System32\win32k.sys
pool: 0xffff948960d30ab0 | file object: 0xffff948960d30b30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\NewScriptItems\newtypescriptfileitems.vsdir
pool: 0xffff948960d30c40 | file object: 0xffff948960d30cc0 | offsetby: 0x80
\Windows\System32\drivers\dxgkrnl.sys
pool: 0xffff948960d30dd0 | file object: 0xffff948960d30e50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960d310f0 | file object: 0xffff948960d31170 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d31280 | file object: 0xffff948960d31300 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Azure.DevSpaces.Tools.Settings.dll
pool: 0xffff948960d31410 | file object: 0xffff948960d31490 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Azure.DevSpaces.Tools.Settings.dll
pool: 0xffff948960d315a0 | file object: 0xffff948960d31620 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\1ni0dpci.ttf\Microsoft.Asal.VisualStudio.Extension.dll
pool: 0xffff948960d31730 | file object: 0xffff948960d317b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d318c0 | file object: 0xffff948960d31940 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Linux\Linux\Microsoft.VisualStudio.Linux.ConnectionManager.dll
pool: 0xffff948960d31a50 | file object: 0xffff948960d31ad0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Linux\Linux\en\Microsoft.VisualStudio.Linux.ConnectionManager.resources.dll
pool: 0xffff948960d31be0 | file object: 0xffff948960d31c60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d31d70 | file object: 0xffff948960d31df0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d32090 | file object: 0xffff948960d32110 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ScopeStudio.VsExtension.ToolsOptions.SqlIP.dll
pool: 0xffff948960d32220 | file object: 0xffff948960d322a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d323b0 | file object: 0xffff948960d32430 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d32540 | file object: 0xffff948960d325c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Linux\Linux\Microsoft.VisualStudio.Linux.ConnectionManager.dll
pool: 0xffff948960d326d0 | file object: 0xffff948960d32750 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-tomorrow-night-blue\package.json
pool: 0xffff948960d32860 | file object: 0xffff948960d328e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d329f0 | file object: 0xffff948960d32a70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d32b80 | file object: 0xffff948960d32c00 | offsetby: 0x80
\$Directory
pool: 0xffff948960d32d10 | file object: 0xffff948960d32d90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d33030 | file object: 0xffff948960d330b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d331c0 | file object: 0xffff948960d33240 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\1ni0dpci.ttf\Microsoft.Asal.VisualStudio.Extension.dll
pool: 0xffff948960d33350 | file object: 0xffff948960d333d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d334e0 | file object: 0xffff948960d33560 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d33670 | file object: 0xffff948960d336f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.Cosmos.ScopeStudio.VsExtension.ToolsOptions.SqlIP.dll
pool: 0xffff948960d33800 | file object: 0xffff948960d33880 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d33990 | file object: 0xffff948960d33a10 | offsetby: 0x80
\$Directory
pool: 0xffff948960d33b20 | file object: 0xffff948960d33ba0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.ToolWindow.UI.dll
pool: 0xffff948960d33cb0 | file object: 0xffff948960d33d30 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\extension-cd8daaa1d7db6122306da505ab998cae.code
pool: 0xffff948960d33e40 | file object: 0xffff948960d33ec0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d34160 | file object: 0xffff948960d341e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d342f0 | file object: 0xffff948960d34370 | offsetby: 0x80
\$Directory
pool: 0xffff948960d34480 | file object: 0xffff948960d34500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d34610 | file object: 0xffff948960d34690 | offsetby: 0x80
\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\Search\Index\T3B0aW9ucyBzb3VyY2UgcHJvdmlkZXI=.blob
pool: 0xffff948960d347a0 | file object: 0xffff948960d34820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d34930 | file object: 0xffff948960d349b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d34ac0 | file object: 0xffff948960d34b40 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Reflection.Emit\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Reflection.Emit.dll
pool: 0xffff948960d34c50 | file object: 0xffff948960d34cd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\VC\Other\sharedvcxitems\shared.ico
pool: 0xffff948960d34de0 | file object: 0xffff948960d34e60 | offsetby: 0x80
\$Directory
pool: 0xffff948960d35100 | file object: 0xffff948960d35180 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Storm (HDInsight)\AzureHDInsightHBaseWriterStormApplication\AzureHDInsightHBaseWriter.png
pool: 0xffff948960d35290 | file object: 0xffff948960d35310 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d35420 | file object: 0xffff948960d354a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\typescript-basics\package.json
pool: 0xffff948960d355b0 | file object: 0xffff948960d35630 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d35740 | file object: 0xffff948960d357c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d358d0 | file object: 0xffff948960d35950 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d35a60 | file object: 0xffff948960d35ae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d35bf0 | file object: 0xffff948960d35c70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d35d80 | file object: 0xffff948960d35e00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d360a0 | file object: 0xffff948960d36120 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLEditor\Microsoft.VisualStudio.Data.Tools.SqlLanguageServices.dll
pool: 0xffff948960d36230 | file object: 0xffff948960d362b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLEditor\Microsoft.VisualStudio.Data.Tools.SqlLanguageServices.dll
pool: 0xffff948960d363c0 | file object: 0xffff948960d36440 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Reflection.Emit.ILGeneration\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Reflection.Emit.ILGeneration.dll
pool: 0xffff948960d36550 | file object: 0xffff948960d365d0 | offsetby: 0x80
\Windows\SysWOW64\config\systemprofile\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\Search\Index\UHJvamVjdCB0ZW1wbGF0ZXMgc291cmNlIHByb3ZpZGVy.blob
pool: 0xffff948960d366e0 | file object: 0xffff948960d36760 | offsetby: 0x80
\$Directory
pool: 0xffff948960d36870 | file object: 0xffff948960d368f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\VC#\VCSPackages\csproj.dll
pool: 0xffff948960d36a00 | file object: 0xffff948960d36a80 | offsetby: 0x80
\Windows\SysWOW64\IconCodecService.dll
pool: 0xffff948960d36b90 | file object: 0xffff948960d36c10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d36d20 | file object: 0xffff948960d36da0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.WindowsAzure.HDIStudio.VsExtension.HQLLanguageService.dll
pool: 0xffff948960d37040 | file object: 0xffff948960d370c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d371d0 | file object: 0xffff948960d37250 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\Microsoft.WindowsAzure.HDIStudio.VsExtension.HQLLanguageService.dll
pool: 0xffff948960d37360 | file object: 0xffff948960d373e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d374f0 | file object: 0xffff948960d37570 | offsetby: 0x80
\$Directory
pool: 0xffff948960d37680 | file object: 0xffff948960d37700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d37810 | file object: 0xffff948960d37890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d379a0 | file object: 0xffff948960d37a20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d37b30 | file object: 0xffff948960d37bb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d37cc0 | file object: 0xffff948960d37d40 | offsetby: 0x80
\$Directory
pool: 0xffff948960d37e50 | file object: 0xffff948960d37ed0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d38170 | file object: 0xffff948960d381f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d38300 | file object: 0xffff948960d38380 | offsetby: 0x80
\$Directory
pool: 0xffff948960d38490 | file object: 0xffff948960d38510 | offsetby: 0x80
\$Directory
pool: 0xffff948960d38620 | file object: 0xffff948960d386a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d387b0 | file object: 0xffff948960d38830 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d38940 | file object: 0xffff948960d389c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d38ad0 | file object: 0xffff948960d38b50 | offsetby: 0x80
\$Directory
pool: 0xffff948960d38c60 | file object: 0xffff948960d38ce0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d38df0 | file object: 0xffff948960d38e70 | offsetby: 0x80
\$Directory
pool: 0xffff948960d39110 | file object: 0xffff948960d39190 | offsetby: 0x80
\$Directory
pool: 0xffff948960d392a0 | file object: 0xffff948960d39320 | offsetby: 0x80
\$Directory
pool: 0xffff948960d39430 | file object: 0xffff948960d394b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\CSharp\Cloud\1033\CloudService\cloudservice.ico
pool: 0xffff948960d395c0 | file object: 0xffff948960d39640 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\CSharp\Cloud\1033\SolutionTemplate.ServiceSelector\SolutionTemplate.ServiceSelector.ico
pool: 0xffff948960d39750 | file object: 0xffff948960d397d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d398e0 | file object: 0xffff948960d39960 | offsetby: 0x80
\$Directory
pool: 0xffff948960d39a70 | file object: 0xffff948960d39af0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\CSharp\Cloud\1033\Resource Manager\ResourceManagerProjectTemplateCSharp.ico
pool: 0xffff948960d39c00 | file object: 0xffff948960d39c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d39d90 | file object: 0xffff948960d39e10 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3a0b0 | file object: 0xffff948960d3a130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3a240 | file object: 0xffff948960d3a2c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3a3d0 | file object: 0xffff948960d3a450 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3a560 | file object: 0xffff948960d3a5e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3a6f0 | file object: 0xffff948960d3a770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3a880 | file object: 0xffff948960d3a900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3aa10 | file object: 0xffff948960d3aa90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3aba0 | file object: 0xffff948960d3ac20 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3ad30 | file object: 0xffff948960d3adb0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3b050 | file object: 0xffff948960d3b0d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3b1e0 | file object: 0xffff948960d3b260 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3b370 | file object: 0xffff948960d3b3f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3b500 | file object: 0xffff948960d3b580 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3b690 | file object: 0xffff948960d3b710 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3b820 | file object: 0xffff948960d3b8a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3b9b0 | file object: 0xffff948960d3ba30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3bb40 | file object: 0xffff948960d3bbc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3bcd0 | file object: 0xffff948960d3bd50 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3be60 | file object: 0xffff948960d3bee0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3c180 | file object: 0xffff948960d3c200 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3c310 | file object: 0xffff948960d3c390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3c4a0 | file object: 0xffff948960d3c520 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3c630 | file object: 0xffff948960d3c6b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3c7c0 | file object: 0xffff948960d3c840 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3c950 | file object: 0xffff948960d3c9d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3cae0 | file object: 0xffff948960d3cb60 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\iconcache_idx.db
pool: 0xffff948960d3cc70 | file object: 0xffff948960d3ccf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3ce00 | file object: 0xffff948960d3ce80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3d120 | file object: 0xffff948960d3d1a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\typescript-language-features\package.json
pool: 0xffff948960d3d2b0 | file object: 0xffff948960d3d330 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3d440 | file object: 0xffff948960d3d4c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3d5d0 | file object: 0xffff948960d3d650 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3d760 | file object: 0xffff948960d3d7e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3d8f0 | file object: 0xffff948960d3d970 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3da80 | file object: 0xffff948960d3db00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3dc10 | file object: 0xffff948960d3dc90 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3dda0 | file object: 0xffff948960d3de20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3e0c0 | file object: 0xffff948960d3e140 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3e250 | file object: 0xffff948960d3e2d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3e3e0 | file object: 0xffff948960d3e460 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3e570 | file object: 0xffff948960d3e5f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3e700 | file object: 0xffff948960d3e780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3e890 | file object: 0xffff948960d3e910 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3ea20 | file object: 0xffff948960d3eaa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3ebb0 | file object: 0xffff948960d3ec30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3ed40 | file object: 0xffff948960d3edc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3f060 | file object: 0xffff948960d3f0e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3f1f0 | file object: 0xffff948960d3f270 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3f380 | file object: 0xffff948960d3f400 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3f510 | file object: 0xffff948960d3f590 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\vb\package.json
pool: 0xffff948960d3f6a0 | file object: 0xffff948960d3f720 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3f830 | file object: 0xffff948960d3f8b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3f9c0 | file object: 0xffff948960d3fa40 | offsetby: 0x80
\$Directory
pool: 0xffff948960d3fb50 | file object: 0xffff948960d3fbd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3fce0 | file object: 0xffff948960d3fd60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d3fe70 | file object: 0xffff948960d3fef0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d40000 | file object: 0xffff948960d40080 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\qlbscfin.1er\ProjectTemplates\VC\Test\1033\GoogleTest\Icon.ico
pool: 0xffff948960d40190 | file object: 0xffff948960d40210 | offsetby: 0x80
\$Directory
pool: 0xffff948960d40320 | file object: 0xffff948960d403a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d404b0 | file object: 0xffff948960d40530 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\CSharp\Windows UAP\1033\WapProj\WapProjTemplate.ico
pool: 0xffff948960d40640 | file object: 0xffff948960d406c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d407d0 | file object: 0xffff948960d40850 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d40960 | file object: 0xffff948960d409e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d40af0 | file object: 0xffff948960d40b70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d40c80 | file object: 0xffff948960d40d00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\ProjectTemplates\VisualBasic\Windows UAP\1033\WapProj\WapProjTemplate.ico
pool: 0xffff948960d40e10 | file object: 0xffff948960d40e90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d41130 | file object: 0xffff948960d411b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d412c0 | file object: 0xffff948960d41340 | offsetby: 0x80
\$Directory
pool: 0xffff948960d41450 | file object: 0xffff948960d414d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d415e0 | file object: 0xffff948960d41660 | offsetby: 0x80
\$Directory
pool: 0xffff948960d41770 | file object: 0xffff948960d417f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d41900 | file object: 0xffff948960d41980 | offsetby: 0x80
\$Directory
pool: 0xffff948960d41a90 | file object: 0xffff948960d41b10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960d41c20 | file object: 0xffff948960d41ca0 | offsetby: 0x80
\$Directory
pool: 0xffff948960d41db0 | file object: 0xffff948960d41e30 | offsetby: 0x80
\$Directory
pool: 0xffff948960e02160 | file object: 0xffff948960e021e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e022f0 | file object: 0xffff948960e02370 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e02480 | file object: 0xffff948960e02500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e02610 | file object: 0xffff948960e02690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e027a0 | file object: 0xffff948960e02820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e02930 | file object: 0xffff948960e029b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e02ac0 | file object: 0xffff948960e02b40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e02c50 | file object: 0xffff948960e02cd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e02de0 | file object: 0xffff948960e02e60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e03100 | file object: 0xffff948960e03180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e03290 | file object: 0xffff948960e03310 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e03420 | file object: 0xffff948960e034a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e035b0 | file object: 0xffff948960e03630 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e03740 | file object: 0xffff948960e037c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e038d0 | file object: 0xffff948960e03950 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e03a60 | file object: 0xffff948960e03ae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e03bf0 | file object: 0xffff948960e03c70 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\code\electron-main\main.js
pool: 0xffff948960e03d80 | file object: 0xffff948960e03e00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e040a0 | file object: 0xffff948960e04120 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e04230 | file object: 0xffff948960e042b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e043c0 | file object: 0xffff948960e04440 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e04550 | file object: 0xffff948960e045d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e046e0 | file object: 0xffff948960e04760 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e04870 | file object: 0xffff948960e048f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e04a00 | file object: 0xffff948960e04a80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e04b90 | file object: 0xffff948960e04c10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e04d20 | file object: 0xffff948960e04da0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e05040 | file object: 0xffff948960e050c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e051d0 | file object: 0xffff948960e05250 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\External\ElectronCallingApp\index.html
pool: 0xffff948960e05360 | file object: 0xffff948960e053e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960e054f0 | file object: 0xffff948960e05570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e05680 | file object: 0xffff948960e05700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e05810 | file object: 0xffff948960e05890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e059a0 | file object: 0xffff948960e05a20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e05b30 | file object: 0xffff948960e05bb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\External\ElectronCallingApp\node_modules\slimcore-4.0\lib\slimcore-private.d.ts
pool: 0xffff948960e05cc0 | file object: 0xffff948960e05d40 | offsetby: 0x80
\$Directory
pool: 0xffff948960e05e50 | file object: 0xffff948960e05ed0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e06170 | file object: 0xffff948960e061f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e06300 | file object: 0xffff948960e06380 | offsetby: 0x80
{6994ad04-93ef-11d0-a3cc-00a0c9223196}\##?#hdaudio#func_01&ven_8384&dev_7680&subsys_83847680&rev_1034#4&31e60982&0&0001#{6994ad04-93ef-11d0-a3cc-00a0c9223196}\#espeakerto
pool: 0xffff948960e06490 | file object: 0xffff948960e06510 | offsetby: 0x80
\$Directory
pool: 0xffff948960e06620 | file object: 0xffff948960e066a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e067b0 | file object: 0xffff948960e06830 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e06940 | file object: 0xffff948960e069c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e06ad0 | file object: 0xffff948960e06b50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e06c60 | file object: 0xffff948960e06ce0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e06df0 | file object: 0xffff948960e06e70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e07110 | file object: 0xffff948960e07190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e072a0 | file object: 0xffff948960e07320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e07430 | file object: 0xffff948960e074b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e075c0 | file object: 0xffff948960e07640 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e07750 | file object: 0xffff948960e077d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e078e0 | file object: 0xffff948960e07960 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e07a70 | file object: 0xffff948960e07af0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e07c00 | file object: 0xffff948960e07c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e07d90 | file object: 0xffff948960e07e10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e080b0 | file object: 0xffff948960e08130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e08240 | file object: 0xffff948960e082c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e083d0 | file object: 0xffff948960e08450 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e08560 | file object: 0xffff948960e085e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e086f0 | file object: 0xffff948960e08770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e08880 | file object: 0xffff948960e08900 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\External\ElectronCallingApp\node_modules\electron\dist\version
pool: 0xffff948960e08a10 | file object: 0xffff948960e08a90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e08ba0 | file object: 0xffff948960e08c20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e08d30 | file object: 0xffff948960e08db0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e09050 | file object: 0xffff948960e090d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e091e0 | file object: 0xffff948960e09260 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e09370 | file object: 0xffff948960e093f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e09500 | file object: 0xffff948960e09580 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e09690 | file object: 0xffff948960e09710 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e09820 | file object: 0xffff948960e098a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e099b0 | file object: 0xffff948960e09a30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e09b40 | file object: 0xffff948960e09bc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e09cd0 | file object: 0xffff948960e09d50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e09e60 | file object: 0xffff948960e09ee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0a180 | file object: 0xffff948960e0a200 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0a310 | file object: 0xffff948960e0a390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0a4a0 | file object: 0xffff948960e0a520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0a630 | file object: 0xffff948960e0a6b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0a7c0 | file object: 0xffff948960e0a840 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0a950 | file object: 0xffff948960e0a9d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0aae0 | file object: 0xffff948960e0ab60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0ac70 | file object: 0xffff948960e0acf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0ae00 | file object: 0xffff948960e0ae80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0b120 | file object: 0xffff948960e0b1a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0b2b0 | file object: 0xffff948960e0b330 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0b440 | file object: 0xffff948960e0b4c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0b5d0 | file object: 0xffff948960e0b650 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0b760 | file object: 0xffff948960e0b7e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0b8f0 | file object: 0xffff948960e0b970 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0ba80 | file object: 0xffff948960e0bb00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0bc10 | file object: 0xffff948960e0bc90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0bda0 | file object: 0xffff948960e0be20 | offsetby: 0x80
\$Directory
pool: 0xffff948960e0c0c0 | file object: 0xffff948960e0c140 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0c250 | file object: 0xffff948960e0c2d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0c3e0 | file object: 0xffff948960e0c460 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0c570 | file object: 0xffff948960e0c5f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0c700 | file object: 0xffff948960e0c780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0c890 | file object: 0xffff948960e0c910 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0ca20 | file object: 0xffff948960e0caa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0cbb0 | file object: 0xffff948960e0cc30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0cd40 | file object: 0xffff948960e0cdc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0d060 | file object: 0xffff948960e0d0e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0d1f0 | file object: 0xffff948960e0d270 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0d380 | file object: 0xffff948960e0d400 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0d510 | file object: 0xffff948960e0d590 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0d6a0 | file object: 0xffff948960e0d720 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0d830 | file object: 0xffff948960e0d8b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\External\ElectronCallingApp\node_modules\electron\package.json
pool: 0xffff948960e0d9c0 | file object: 0xffff948960e0da40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0db50 | file object: 0xffff948960e0dbd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0dce0 | file object: 0xffff948960e0dd60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0de70 | file object: 0xffff948960e0def0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0e000 | file object: 0xffff948960e0e080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0e190 | file object: 0xffff948960e0e210 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0e320 | file object: 0xffff948960e0e3a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0e4b0 | file object: 0xffff948960e0e530 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0e640 | file object: 0xffff948960e0e6c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0e7d0 | file object: 0xffff948960e0e850 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0e960 | file object: 0xffff948960e0e9e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0eaf0 | file object: 0xffff948960e0eb70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0ec80 | file object: 0xffff948960e0ed00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0ee10 | file object: 0xffff948960e0ee90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0f130 | file object: 0xffff948960e0f1b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0f2c0 | file object: 0xffff948960e0f340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0f450 | file object: 0xffff948960e0f4d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0f5e0 | file object: 0xffff948960e0f660 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0f770 | file object: 0xffff948960e0f7f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0f900 | file object: 0xffff948960e0f980 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e0fa90 | file object: 0xffff948960e0fb10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\External\ElectronCallingApp\node_modules\slimcore-4.0\package.json
pool: 0xffff948960e0fc20 | file object: 0xffff948960e0fca0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\External\ElectronCallingApp\package.json
pool: 0xffff948960e0fdb0 | file object: 0xffff948960e0fe30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e100d0 | file object: 0xffff948960e10150 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e10260 | file object: 0xffff948960e102e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\External\ElectronCallingApp\node_modules\slimcore-4.0\lib\version.d.ts
pool: 0xffff948960e103f0 | file object: 0xffff948960e10470 | offsetby: 0x80
\$Directory
pool: 0xffff948960e10580 | file object: 0xffff948960e10600 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e10710 | file object: 0xffff948960e10790 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e108a0 | file object: 0xffff948960e10920 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e10a30 | file object: 0xffff948960e10ab0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e10bc0 | file object: 0xffff948960e10c40 | offsetby: 0x80
\$Directory
pool: 0xffff948960e10d50 | file object: 0xffff948960e10dd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e11070 | file object: 0xffff948960e110f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e11200 | file object: 0xffff948960e11280 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e11390 | file object: 0xffff948960e11410 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e11520 | file object: 0xffff948960e115a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e116b0 | file object: 0xffff948960e11730 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e11840 | file object: 0xffff948960e118c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e119d0 | file object: 0xffff948960e11a50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e11b60 | file object: 0xffff948960e11be0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e11cf0 | file object: 0xffff948960e11d70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e12010 | file object: 0xffff948960e12090 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e121a0 | file object: 0xffff948960e12220 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e12330 | file object: 0xffff948960e123b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e124c0 | file object: 0xffff948960e12540 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e12650 | file object: 0xffff948960e126d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e127e0 | file object: 0xffff948960e12860 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e12970 | file object: 0xffff948960e129f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960e12b00 | file object: 0xffff948960e12b80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e12c90 | file object: 0xffff948960e12d10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e12e20 | file object: 0xffff948960e12ea0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e13140 | file object: 0xffff948960e131c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e132d0 | file object: 0xffff948960e13350 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e13460 | file object: 0xffff948960e134e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e135f0 | file object: 0xffff948960e13670 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e13780 | file object: 0xffff948960e13800 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e13910 | file object: 0xffff948960e13990 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e13aa0 | file object: 0xffff948960e13b20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e13c30 | file object: 0xffff948960e13cb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e13dc0 | file object: 0xffff948960e13e40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e140e0 | file object: 0xffff948960e14160 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e14270 | file object: 0xffff948960e142f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e14400 | file object: 0xffff948960e14480 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e14590 | file object: 0xffff948960e14610 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e14720 | file object: 0xffff948960e147a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e148b0 | file object: 0xffff948960e14930 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e14a40 | file object: 0xffff948960e14ac0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e14bd0 | file object: 0xffff948960e14c50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e14d60 | file object: 0xffff948960e14de0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e15080 | file object: 0xffff948960e15100 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e15210 | file object: 0xffff948960e15290 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e153a0 | file object: 0xffff948960e15420 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e15530 | file object: 0xffff948960e155b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e156c0 | file object: 0xffff948960e15740 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e15850 | file object: 0xffff948960e158d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e159e0 | file object: 0xffff948960e15a60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e15b70 | file object: 0xffff948960e15bf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e15d00 | file object: 0xffff948960e15d80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e16020 | file object: 0xffff948960e160a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e161b0 | file object: 0xffff948960e16230 | offsetby: 0x80
\$Directory
pool: 0xffff948960e16340 | file object: 0xffff948960e163c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e164d0 | file object: 0xffff948960e16550 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e16660 | file object: 0xffff948960e166e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e167f0 | file object: 0xffff948960e16870 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e16980 | file object: 0xffff948960e16a00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e16b10 | file object: 0xffff948960e16b90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e16ca0 | file object: 0xffff948960e16d20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e16e30 | file object: 0xffff948960e16eb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e17150 | file object: 0xffff948960e171d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e172e0 | file object: 0xffff948960e17360 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e17470 | file object: 0xffff948960e174f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e17600 | file object: 0xffff948960e17680 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e17790 | file object: 0xffff948960e17810 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e17920 | file object: 0xffff948960e179a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960e17ab0 | file object: 0xffff948960e17b30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e17c40 | file object: 0xffff948960e17cc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e17dd0 | file object: 0xffff948960e17e50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e180f0 | file object: 0xffff948960e18170 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e18280 | file object: 0xffff948960e18300 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e18410 | file object: 0xffff948960e18490 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e185a0 | file object: 0xffff948960e18620 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e18730 | file object: 0xffff948960e187b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e188c0 | file object: 0xffff948960e18940 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e18a50 | file object: 0xffff948960e18ad0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e18be0 | file object: 0xffff948960e18c60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e18d70 | file object: 0xffff948960e18df0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e19090 | file object: 0xffff948960e19110 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e19220 | file object: 0xffff948960e192a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e193b0 | file object: 0xffff948960e19430 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e19540 | file object: 0xffff948960e195c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e196d0 | file object: 0xffff948960e19750 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e19860 | file object: 0xffff948960e198e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e199f0 | file object: 0xffff948960e19a70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e19b80 | file object: 0xffff948960e19c00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e19d10 | file object: 0xffff948960e19d90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.ServiceBrokerIntegration.16.5.pkgdef
pool: 0xffff948960e1a030 | file object: 0xffff948960e1a0b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1a1c0 | file object: 0xffff948960e1a240 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1a350 | file object: 0xffff948960e1a3d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1a4e0 | file object: 0xffff948960e1a560 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1a670 | file object: 0xffff948960e1a6f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1a800 | file object: 0xffff948960e1a880 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1a990 | file object: 0xffff948960e1aa10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1ab20 | file object: 0xffff948960e1aba0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1acb0 | file object: 0xffff948960e1ad30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1ae40 | file object: 0xffff948960e1aec0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1b160 | file object: 0xffff948960e1b1e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1b2f0 | file object: 0xffff948960e1b370 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1b480 | file object: 0xffff948960e1b500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1b610 | file object: 0xffff948960e1b690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1b7a0 | file object: 0xffff948960e1b820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1b930 | file object: 0xffff948960e1b9b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1bac0 | file object: 0xffff948960e1bb40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1bc50 | file object: 0xffff948960e1bcd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1bde0 | file object: 0xffff948960e1be60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1c100 | file object: 0xffff948960e1c180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1c290 | file object: 0xffff948960e1c310 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1c420 | file object: 0xffff948960e1c4a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1c5b0 | file object: 0xffff948960e1c630 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1c740 | file object: 0xffff948960e1c7c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1c8d0 | file object: 0xffff948960e1c950 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1ca60 | file object: 0xffff948960e1cae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1cbf0 | file object: 0xffff948960e1cc70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1cd80 | file object: 0xffff948960e1ce00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1d0a0 | file object: 0xffff948960e1d120 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1d230 | file object: 0xffff948960e1d2b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1d3c0 | file object: 0xffff948960e1d440 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1d550 | file object: 0xffff948960e1d5d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1d6e0 | file object: 0xffff948960e1d760 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1d870 | file object: 0xffff948960e1d8f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1da00 | file object: 0xffff948960e1da80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1db90 | file object: 0xffff948960e1dc10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1dd20 | file object: 0xffff948960e1dda0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1e040 | file object: 0xffff948960e1e0c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e1e1d0 | file object: 0xffff948960e1e250 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1e360 | file object: 0xffff948960e1e3e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1e4f0 | file object: 0xffff948960e1e570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1e680 | file object: 0xffff948960e1e700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1e810 | file object: 0xffff948960e1e890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1e9a0 | file object: 0xffff948960e1ea20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1eb30 | file object: 0xffff948960e1ebb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1ecc0 | file object: 0xffff948960e1ed40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1ee50 | file object: 0xffff948960e1eed0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1f170 | file object: 0xffff948960e1f1f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1f300 | file object: 0xffff948960e1f380 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1f490 | file object: 0xffff948960e1f510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1f620 | file object: 0xffff948960e1f6a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1f7b0 | file object: 0xffff948960e1f830 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1f940 | file object: 0xffff948960e1f9c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1fad0 | file object: 0xffff948960e1fb50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1fc60 | file object: 0xffff948960e1fce0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e1fdf0 | file object: 0xffff948960e1fe70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e20110 | file object: 0xffff948960e20190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e202a0 | file object: 0xffff948960e20320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e20430 | file object: 0xffff948960e204b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e205c0 | file object: 0xffff948960e20640 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e20750 | file object: 0xffff948960e207d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e208e0 | file object: 0xffff948960e20960 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e20a70 | file object: 0xffff948960e20af0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e20c00 | file object: 0xffff948960e20c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e20d90 | file object: 0xffff948960e20e10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e210b0 | file object: 0xffff948960e21130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e21240 | file object: 0xffff948960e212c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e213d0 | file object: 0xffff948960e21450 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e21560 | file object: 0xffff948960e215e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e216f0 | file object: 0xffff948960e21770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e21880 | file object: 0xffff948960e21900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e21a10 | file object: 0xffff948960e21a90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e21ba0 | file object: 0xffff948960e21c20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e21d30 | file object: 0xffff948960e21db0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e22050 | file object: 0xffff948960e220d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e221e0 | file object: 0xffff948960e22260 | offsetby: 0x80
\Windows\System32\DdcComImplementationsDesktop.dll
pool: 0xffff948960e22370 | file object: 0xffff948960e223f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e22500 | file object: 0xffff948960e22580 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e22690 | file object: 0xffff948960e22710 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e22820 | file object: 0xffff948960e228a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e229b0 | file object: 0xffff948960e22a30 | offsetby: 0x80
\Windows\System32\DeviceDirectoryClient.dll
pool: 0xffff948960e22b40 | file object: 0xffff948960e22bc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e22cd0 | file object: 0xffff948960e22d50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e22e60 | file object: 0xffff948960e22ee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e23180 | file object: 0xffff948960e23200 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e23310 | file object: 0xffff948960e23390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e234a0 | file object: 0xffff948960e23520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e23630 | file object: 0xffff948960e236b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e237c0 | file object: 0xffff948960e23840 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e23950 | file object: 0xffff948960e239d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e23ae0 | file object: 0xffff948960e23b60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e23c70 | file object: 0xffff948960e23cf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e23e00 | file object: 0xffff948960e23e80 | offsetby: 0x80
\$Directory
pool: 0xffff948960e24120 | file object: 0xffff948960e241a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e242b0 | file object: 0xffff948960e24330 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e24440 | file object: 0xffff948960e244c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e245d0 | file object: 0xffff948960e24650 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e24760 | file object: 0xffff948960e247e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e248f0 | file object: 0xffff948960e24970 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e24a80 | file object: 0xffff948960e24b00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e24c10 | file object: 0xffff948960e24c90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e24da0 | file object: 0xffff948960e24e20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e250c0 | file object: 0xffff948960e25140 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e25250 | file object: 0xffff948960e252d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e253e0 | file object: 0xffff948960e25460 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e25570 | file object: 0xffff948960e255f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e25700 | file object: 0xffff948960e25780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e25890 | file object: 0xffff948960e25910 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e25a20 | file object: 0xffff948960e25aa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e25bb0 | file object: 0xffff948960e25c30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e25d40 | file object: 0xffff948960e25dc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e26060 | file object: 0xffff948960e260e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960e261f0 | file object: 0xffff948960e26270 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e26380 | file object: 0xffff948960e26400 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e26510 | file object: 0xffff948960e26590 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e266a0 | file object: 0xffff948960e26720 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e26830 | file object: 0xffff948960e268b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e269c0 | file object: 0xffff948960e26a40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e26b50 | file object: 0xffff948960e26bd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e26ce0 | file object: 0xffff948960e26d60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e26e70 | file object: 0xffff948960e26ef0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e27000 | file object: 0xffff948960e27080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e27190 | file object: 0xffff948960e27210 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e27320 | file object: 0xffff948960e273a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e274b0 | file object: 0xffff948960e27530 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e27640 | file object: 0xffff948960e276c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e277d0 | file object: 0xffff948960e27850 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e27960 | file object: 0xffff948960e279e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e27af0 | file object: 0xffff948960e27b70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e27c80 | file object: 0xffff948960e27d00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\ToolWindows\Content\HTML\gettingStartedWrapper.html
pool: 0xffff948960e27e10 | file object: 0xffff948960e27e90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e28130 | file object: 0xffff948960e281b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e282c0 | file object: 0xffff948960e28340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e28450 | file object: 0xffff948960e284d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e285e0 | file object: 0xffff948960e28660 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e28770 | file object: 0xffff948960e287f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e28900 | file object: 0xffff948960e28980 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e28a90 | file object: 0xffff948960e28b10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e28c20 | file object: 0xffff948960e28ca0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e28db0 | file object: 0xffff948960e28e30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e290d0 | file object: 0xffff948960e29150 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e29260 | file object: 0xffff948960e292e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e293f0 | file object: 0xffff948960e29470 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e29580 | file object: 0xffff948960e29600 | offsetby: 0x80
\$Directory
pool: 0xffff948960e29710 | file object: 0xffff948960e29790 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e298a0 | file object: 0xffff948960e29920 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e29a30 | file object: 0xffff948960e29ab0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e29bc0 | file object: 0xffff948960e29c40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e29d50 | file object: 0xffff948960e29dd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960e2a070 | file object: 0xffff948960e2a0f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2a200 | file object: 0xffff948960e2a280 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2a390 | file object: 0xffff948960e2a410 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2a520 | file object: 0xffff948960e2a5a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2a6b0 | file object: 0xffff948960e2a730 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2a840 | file object: 0xffff948960e2a8c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2a9d0 | file object: 0xffff948960e2aa50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2ab60 | file object: 0xffff948960e2abe0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2acf0 | file object: 0xffff948960e2ad70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2b010 | file object: 0xffff948960e2b090 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2b1a0 | file object: 0xffff948960e2b220 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2b330 | file object: 0xffff948960e2b3b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960e2b4c0 | file object: 0xffff948960e2b540 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2b650 | file object: 0xffff948960e2b6d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2b7e0 | file object: 0xffff948960e2b860 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2b970 | file object: 0xffff948960e2b9f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2bb00 | file object: 0xffff948960e2bb80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2bc90 | file object: 0xffff948960e2bd10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2be20 | file object: 0xffff948960e2bea0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\ToolWindows\manifest.json
pool: 0xffff948960e2c140 | file object: 0xffff948960e2c1c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2c2d0 | file object: 0xffff948960e2c350 | offsetby: 0x80
\$Directory
pool: 0xffff948960e2c460 | file object: 0xffff948960e2c4e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2c5f0 | file object: 0xffff948960e2c670 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2c780 | file object: 0xffff948960e2c800 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2c910 | file object: 0xffff948960e2c990 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2caa0 | file object: 0xffff948960e2cb20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2cc30 | file object: 0xffff948960e2ccb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2cdc0 | file object: 0xffff948960e2ce40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2d0e0 | file object: 0xffff948960e2d160 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2d270 | file object: 0xffff948960e2d2f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2d400 | file object: 0xffff948960e2d480 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2d590 | file object: 0xffff948960e2d610 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2d720 | file object: 0xffff948960e2d7a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2d8b0 | file object: 0xffff948960e2d930 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2da40 | file object: 0xffff948960e2dac0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2dbd0 | file object: 0xffff948960e2dc50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2dd60 | file object: 0xffff948960e2dde0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2e080 | file object: 0xffff948960e2e100 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2e210 | file object: 0xffff948960e2e290 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2e3a0 | file object: 0xffff948960e2e420 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2e530 | file object: 0xffff948960e2e5b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2e6c0 | file object: 0xffff948960e2e740 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2e850 | file object: 0xffff948960e2e8d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2e9e0 | file object: 0xffff948960e2ea60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2eb70 | file object: 0xffff948960e2ebf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2ed00 | file object: 0xffff948960e2ed80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2f020 | file object: 0xffff948960e2f0a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2f1b0 | file object: 0xffff948960e2f230 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2f340 | file object: 0xffff948960e2f3c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2f4d0 | file object: 0xffff948960e2f550 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2f660 | file object: 0xffff948960e2f6e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2f7f0 | file object: 0xffff948960e2f870 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2f980 | file object: 0xffff948960e2fa00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2fb10 | file object: 0xffff948960e2fb90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2fca0 | file object: 0xffff948960e2fd20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e2fe30 | file object: 0xffff948960e2feb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e30150 | file object: 0xffff948960e301d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e302e0 | file object: 0xffff948960e30360 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e30470 | file object: 0xffff948960e304f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e30600 | file object: 0xffff948960e30680 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e30790 | file object: 0xffff948960e30810 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e30920 | file object: 0xffff948960e309a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e30ab0 | file object: 0xffff948960e30b30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e30c40 | file object: 0xffff948960e30cc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960e30dd0 | file object: 0xffff948960e30e50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e310f0 | file object: 0xffff948960e31170 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e31280 | file object: 0xffff948960e31300 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Microsoft.VisualStudio.RemoteControl.dll
pool: 0xffff948960e31410 | file object: 0xffff948960e31490 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\paths-ac65fed1fb2125bc16bca2993c35b365.code
pool: 0xffff948960e315a0 | file object: 0xffff948960e31620 | offsetby: 0x80
\Windows\System32\msmpeg2vdec.dll
pool: 0xffff948960e31730 | file object: 0xffff948960e317b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\main-81c37abec968ad945be2cdabdd9ded73.code
pool: 0xffff948960e318c0 | file object: 0xffff948960e31940 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e31a50 | file object: 0xffff948960e31ad0 | offsetby: 0x80
\Windows\System32\ddraw.dll
pool: 0xffff948960e31be0 | file object: 0xffff948960e31c60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e31d70 | file object: 0xffff948960e31df0 | offsetby: 0x80
\Windows\System32\mf.dll
pool: 0xffff948960e32090 | file object: 0xffff948960e32110 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\User
pool: 0xffff948960e32220 | file object: 0xffff948960e322a0 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff948960e323b0 | file object: 0xffff948960e32430 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e32540 | file object: 0xffff948960e325c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960e326d0 | file object: 0xffff948960e32750 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\User\settings.json
pool: 0xffff948960e32860 | file object: 0xffff948960e328e0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code
pool: 0xffff948960e329f0 | file object: 0xffff948960e32a70 | offsetby: 0x80
\$Directory
pool: 0xffff948960e32b80 | file object: 0xffff948960e32c00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e32d10 | file object: 0xffff948960e32d90 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\bindings-80913b3b47ffb91cee310e8329f171dd.code
pool: 0xffff948960e33030 | file object: 0xffff948960e330b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\storage.json
pool: 0xffff948960e331c0 | file object: 0xffff948960e33240 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Microsoft.VisualStudio.Setup.Common.dll
pool: 0xffff948960e33350 | file object: 0xffff948960e333d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e334e0 | file object: 0xffff948960e33560 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e33670 | file object: 0xffff948960e336f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e33800 | file object: 0xffff948960e33880 | offsetby: 0x80
\$Directory
pool: 0xffff948960e33990 | file object: 0xffff948960e33a10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e33b20 | file object: 0xffff948960e33ba0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff948960e33cb0 | file object: 0xffff948960e33d30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e33e40 | file object: 0xffff948960e33ec0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\d3dcompiler_47.dll
pool: 0xffff948960e34160 | file object: 0xffff948960e341e0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe
pool: 0xffff948960e342f0 | file object: 0xffff948960e34370 | offsetby: 0x80
Ā罯#rs\User\AppData\Local\Temp\VSCode Crashes\metadatae
pool: 0xffff948960e34480 | file object: 0xffff948960e34500 | offsetby: 0x80
\Windows\System32\mfh264enc.dll
pool: 0xffff948960e34610 | file object: 0xffff948960e34690 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\swiftshader\libEGL.dll
pool: 0xffff948960e347a0 | file object: 0xffff948960e34820 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-e7498124b77d2a73703226a0e3185876.code
pool: 0xffff948960e34930 | file object: 0xffff948960e349b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e34c50 | file object: 0xffff948960e34cd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e34de0 | file object: 0xffff948960e34e60 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff948960e35100 | file object: 0xffff948960e35180 | offsetby: 0x80
燈迴舎￿燰譭舎￿燠迴舎￿燠迴舎￿亰C
pool: 0xffff948960e35290 | file object: 0xffff948960e35310 | offsetby: 0x80
퐰埓钉￿呠蛡舎￿亰C亰C»e.dll
pool: 0xffff948960e35420 | file object: 0xffff948960e354a0 | offsetby: 0x80
涐譭舎￿又迴舎￿涠譭舎￿叠迴舎￿¸
pool: 0xffff948960e355b0 | file object: 0xffff948960e35630 | offsetby: 0x80
䑀讳舎￿誽舎￿邀岼钉￿醸贵舎￿홨讲舎
pool: 0xffff948960e35740 | file object: 0xffff948960e357c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e358d0 | file object: 0xffff948960e35950 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\
pool: 0xffff948960e35a60 | file object: 0xffff948960e35ae0 | offsetby: 0x80
牀譭舎￿燈迴舎￿牐譭舎￿燠迴舎￿»
pool: 0xffff948960e35bf0 | file object: 0xffff948960e35c70 | offsetby: 0x80
\Windows\System32\dciman32.dll
pool: 0xffff948960e35d80 | file object: 0xffff948960e35e00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e360a0 | file object: 0xffff948960e36120 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\swiftshader\libGLESv2.dll
pool: 0xffff948960e36230 | file object: 0xffff948960e362b0 | offsetby: 0x80
\Windows\Fonts\segoeui.ttf
pool: 0xffff948960e363c0 | file object: 0xffff948960e36440 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e36550 | file object: 0xffff948960e365d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\spdlog\build\Release\spdlog.node
pool: 0xffff948960e366e0 | file object: 0xffff948960e36760 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Code Cache\js\index
pool: 0xffff948960e36870 | file object: 0xffff948960e368f0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code
pool: 0xffff948960e36a00 | file object: 0xffff948960e36a80 | offsetby: 0x80
\mojo.3736.4772.1150224306296198
pool: 0xffff948960e36b90 | file object: 0xffff948960e36c10 | offsetby: 0x80
又迴舎￿樠譭舎￿叠迴舎￿叠迴舎￿㓅C
pool: 0xffff948960e36d20 | file object: 0xffff948960e36da0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e37040 | file object: 0xffff948960e370c0 | offsetby: 0x80
\Windows\System32\dciman32.dll
pool: 0xffff948960e371d0 | file object: 0xffff948960e37250 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e37360 | file object: 0xffff948960e373e0 | offsetby: 0x80
獘蛕舎￿獘蛕舎￿獰蛕舎￿獰蛕舎￿က
pool: 0xffff948960e374f0 | file object: 0xffff948960e37570 | offsetby: 0x80
결贶舎￿ᎀ宲钉￿譭舎￿ᬸ宲钉￿
pool: 0xffff948960e37680 | file object: 0xffff948960e37700 | offsetby: 0x80
瞳䙋겨蠬舎￿&䅻㍂〱㠵ⴱ䍁〸ㄭ䐱ⴱ䐸㍆〭䌰
pool: 0xffff948960e37810 | file object: 0xffff948960e37890 | offsetby: 0x80
女樁贵舎￿%卍呆刺⽍䱁佇䥒䡔⽍䍁䥔䕖䥄䕒
pool: 0xffff948960e379a0 | file object: 0xffff948960e37a20 | offsetby: 0x80
椋毣碈贶舎￿&䉻䌲䘷ㄲⴹ㠶䉆㐭䐷ⴸ㠹ㄸ䄭㙁ㄸい㐹
pool: 0xffff948960e37b30 | file object: 0xffff948960e37bb0 | offsetby: 0x80
‐誾舎￿쓀廌钉￿譭舎￿獘譭舎￿
pool: 0xffff948960e37cc0 | file object: 0xffff948960e37d40 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar\performance.jsenchbenchs-msns-m
pool: 0xffff948960e37e50 | file object: 0xffff948960e37ed0 | offsetby: 0x80
OLE487CCD55D1E01B26F4CAEE11F14
pool: 0xffff948960e38170 | file object: 0xffff948960e381f0 | offsetby: 0x80
ꢠ嬍钉￿匿ǀᰰ貿舎￿큐
pool: 0xffff948960e38300 | file object: 0xffff948960e38380 | offsetby: 0x80
\Windows\Fonts\times.ttfsl￿뭠
pool: 0xffff948960e38490 | file object: 0xffff948960e38510 | offsetby: 0x80
`让舎￿'楍牣獯景⹴楗摮睯⹳楗⹬敆瑡牵䱥杯楧杮鐀舎￿
pool: 0xffff948960e38620 | file object: 0xffff948960e386a0 | offsetby: 0x80
틐譭舎￿쭈轇舎￿틠譭舎￿쭠轇舎￿¸
pool: 0xffff948960e387b0 | file object: 0xffff948960e38830 | offsetby: 0x80
齀譭舎￿珸蛕舎￿齐譭舎￿琐蛕舎￿h
pool: 0xffff948960e38940 | file object: 0xffff948960e389c0 | offsetby: 0x80
\Windows\Fonts\seguisbi.ttf
pool: 0xffff948960e38ad0 | file object: 0xffff948960e38b50 | offsetby: 0x80
击콘嚨腐舎￿&㥻ㅅ㔷㙂ⴹ㕆䄲ㄭ䐱ⴸ㥂㕁㔭㔰㔰
pool: 0xffff948960e38c60 | file object: 0xffff948960e38ce0 | offsetby: 0x80
쎀詆舎￿쎀詆舎￿觐邻舎￿腀蚎舎￿簀邻舎￿簀邻舎￿ꘐ迠舎￿PK
pool: 0xffff948960e38df0 | file object: 0xffff948960e38e70 | offsetby: 0x80
퓐趉舎￿嬠蝧舎￿荐蟔舎￿삀弛钉￿眘譭舎￿滸譭舎￿蛠幚
pool: 0xffff948960e39110 | file object: 0xffff948960e39190 | offsetby: 0x80
䍶礙$㜱䈹䄸㔶䈭䘰ⴶㄴ㥄䄭䕃ⵁ㈱〰䔶
pool: 0xffff948960e392a0 | file object: 0xffff948960e39320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e39430 | file object: 0xffff948960e394b0 | offsetby: 0x80
\Windows\Fonts\arial.ttftf
pool: 0xffff948960e395c0 | file object: 0xffff948960e39640 | offsetby: 0x80
ꦐ嬍钉￿ݔ䀀uǰ猦Ʃ 邛舎￿欐譭
pool: 0xffff948960e39750 | file object: 0xffff948960e397d0 | offsetby: 0x80
\Windows\debug\wlms.log
pool: 0xffff948960e398e0 | file object: 0xffff948960e39960 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e39a70 | file object: 0xffff948960e39af0 | offsetby: 0x80
\Windows\Fonts\seguibli.ttf
pool: 0xffff948960e39c00 | file object: 0xffff948960e39c80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\devenv.exe
pool: 0xffff948960e39d90 | file object: 0xffff948960e39e10 | offsetby: 0x80
綐誾舎￿쓀廌钉￿藈譭舎￿韸譬舎￿
pool: 0xffff948960e3a0b0 | file object: 0xffff948960e3a130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e3a240 | file object: 0xffff948960e3a2c0 | offsetby: 0x80
骨辊舎￿糠譭舎￿髀辊舎￿髀辊舎￿
pool: 0xffff948960e3a3d0 | file object: 0xffff948960e3a450 | offsetby: 0x80
ꪸ蛔舎￿ꪸ蛔舎￿꫐蛔舎￿꫐蛔舎￿
pool: 0xffff948960e3a560 | file object: 0xffff948960e3a5e0 | offsetby: 0x80
壟퍱&䕆呁剕彅呈偔啟䕓乒䵁彅䅐卓佗䑒䑟
pool: 0xffff948960e3a6f0 | file object: 0xffff948960e3a770 | offsetby: 0x80
鶴﷨誹舎￿卍呆刺⽍䱁佇䥒䡔⽍䥂协㐯〮
pool: 0xffff948960e3a880 | file object: 0xffff948960e3a900 | offsetby: 0x80
\CMApis\System32\gdi32.dll￿煀
pool: 0xffff948960e3aa10 | file object: 0xffff948960e3aa90 | offsetby: 0x80
趉舎￿였讲舎￿텀寚钉￿木譭舎￿┸譭舎￿
pool: 0xffff948960e3aba0 | file object: 0xffff948960e3ac20 | offsetby: 0x80
䣰讳舎￿誎舎￿僀怌钉￿在蓉舎￿斘讲舎￿
pool: 0xffff948960e3ad30 | file object: 0xffff948960e3adb0 | offsetby: 0x80
㸀讳舎￿詨轅舎￿㸐讳舎￿誀轅舎￿¹
pool: 0xffff948960e3b050 | file object: 0xffff948960e3b0d0 | offsetby: 0x80
틐讲舎￿用轅舎￿틠讲舎￿畀轅舎￿¹
pool: 0xffff948960e3b1e0 | file object: 0xffff948960e3b260 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e3b370 | file object: 0xffff948960e3b3f0 | offsetby: 0x80
骈轇舎￿얰譭舎￿骠轇舎￿骠轇舎￿㓅C
pool: 0xffff948960e3b500 | file object: 0xffff948960e3b580 | offsetby: 0x80
였譭舎￿骈轇舎￿옐譭舎￿骠轇舎￿¸
pool: 0xffff948960e3b690 | file object: 0xffff948960e3b710 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\clrcompression.dll
pool: 0xffff948960e3b820 | file object: 0xffff948960e3b8a0 | offsetby: 0x80
詨轅舎￿詨轅舎￿誀轅舎￿誀轅舎￿䇬C
pool: 0xffff948960e3b9b0 | file object: 0xffff948960e3ba30 | offsetby: 0x80
用轅舎￿用轅舎￿畀轅舎￿畀轅舎￿䇬C
pool: 0xffff948960e3bb40 | file object: 0xffff948960e3bbc0 | offsetby: 0x80
誽舎￿텀寚钉￿켸譭舎￿木譭舎￿
pool: 0xffff948960e3bcd0 | file object: 0xffff948960e3bd50 | offsetby: 0x80
槅¢dows\System32\cscapi.dll@dll
pool: 0xffff948960e3be60 | file object: 0xffff948960e3bee0 | offsetby: 0x80
Ð誾舎￿僀怌钉￿✈蠬舎￿퓘讲舎￿
pool: 0xffff948960e3c180 | file object: 0xffff948960e3c200 | offsetby: 0x80
幐諵舎￿쓀廌钉￿蠬舎￿캈蠬舎￿
pool: 0xffff948960e3c310 | file object: 0xffff948960e3c390 | offsetby: 0x80
綐贵舎￿僀怌钉￿ꡨ讳舎￿페讲舎
pool: 0xffff948960e3c4a0 | file object: 0xffff948960e3c520 | offsetby: 0x80
偿ⶊ屈諠舎￿卍呆刺⽍䱁佇䥒䡔⽍䱆䝁⽓⸱0
pool: 0xffff948960e3c630 | file object: 0xffff948960e3c6b0 | offsetby: 0x80
\Users\User蓠轅舎￿
pool: 0xffff948960e3c7c0 | file object: 0xffff948960e3c840 | offsetby: 0x80
죈轇舎￿죈轇舎￿죠轇舎￿죠轇舎￿㓅C
pool: 0xffff948960e3c950 | file object: 0xffff948960e3c9d0 | offsetby: 0x80
\srvsvc2\cryptbase.dlldl
pool: 0xffff948960e3cae0 | file object: 0xffff948960e3cb60 | offsetby: 0x80
䑀讳舎￿誽舎￿邀岼钉￿醸贵舎￿홨讲舎￿얰嬍钉
pool: 0xffff948960e3cc70 | file object: 0xffff948960e3ccf0 | offsetby: 0x80
큐讲舎￿₀忝钉￿梸讲舎￿쫘讲舎￿ꢠ
pool: 0xffff948960e3ce00 | file object: 0xffff948960e3ce80 | offsetby: 0x80
劐誾舎￿쓀廌钉￿蠸蝨舎￿嚈蝨舎￿신
pool: 0xffff948960e3d120 | file object: 0xffff948960e3d1a0 | offsetby: 0x80
덀贶舎￿僀怌钉￿퓘讲舎￿蓘讲
pool: 0xffff948960e3d2b0 | file object: 0xffff948960e3d330 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e3d440 | file object: 0xffff948960e3d4c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e3d5d0 | file object: 0xffff948960e3d650 | offsetby: 0x80
曵疞Ꙙ逘舎￿$㑃䐲㌸䙆㔭㔹ⴸ䄴㑆䄭䐰ⵄ䅂㈰䕆
pool: 0xffff948960e3d760 | file object: 0xffff948960e3d7e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e3d8f0 | file object: 0xffff948960e3d970 | offsetby: 0x80
酁顓衸趍舎￿耀截ٵ⢱饑럂叺呦ྮ泸ᒞ⺶熤앇鞥២indexi
pool: 0xffff948960e3da80 | file object: 0xffff948960e3db00 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Manaa57fc8cc#
pool: 0xffff948960e3dc10 | file object: 0xffff948960e3dc90 | offsetby: 0x80
탰譭舎￿ꦨ辊舎￿턀譭舎￿꧀辊舎￿
pool: 0xffff948960e3dda0 | file object: 0xffff948960e3de20 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Network Persistent State
pool: 0xffff948960e3e0c0 | file object: 0xffff948960e3e140 | offsetby: 0x80
遤舎￿遤舎￿遤舎￿遤舎￿遤舎￿遤舎￿遤舎￿遤舎￿遤舎￿遤舎￿遤舎￿遤舎￿
pool: 0xffff948960e3e250 | file object: 0xffff948960e3e2d0 | offsetby: 0x80
뵘諵舎￿뵘諵舎￿뵰諵舎￿뵰諵舎￿ 墐辊舎￿A蟠贵舎￿蝀贵舎￿墀辊舎￿墀辊舎￿TSA://ProcUniq
pool: 0xffff948960e3e3e0 | file object: 0xffff948960e3e460 | offsetby: 0x80
h̠ˀA(
pool: 0xffff948960e3e570 | file object: 0xffff948960e3e5f0 | offsetby: 0x80
\??\C:\PROGRAM FILES (X86)\MICROSOFT VISUAL STUDIO\2019\COMMUNITY\COMMON7\IDE\EXTENSIONS\MICROSOFT\ADL TOOLS\2.4.6000.1\ProjectTemplates\
pool: 0xffff948960e3e890 | file object: 0xffff948960e3e910 | offsetby: 0x80
荖╀豘襪舎￿卍呆刺⽍䱁佇䥒䡔⽍义䕈䥒䕔⽄⸱
pool: 0xffff948960e3ea20 | file object: 0xffff948960e3eaa0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\ProjectTemplates\templateManifest8.1042.vs
pool: 0xffff948960e3ebb0 | file object: 0xffff948960e3ec30 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dl
pool: 0xffff948960e3ed40 | file object: 0xffff948960e3edc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e3f1f0 | file object: 0xffff948960e3f270 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e3f380 | file object: 0xffff948960e3f400 | offsetby: 0x80
ꛐ迬舎￿䙰裀舎￿鄀迬舎￿鄀迬舎￿ⅰ蠸舎￿⏐蠸舎￿魨待钉￿Ăls
pool: 0xffff948960e3f510 | file object: 0xffff948960e3f590 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e3f830 | file object: 0xffff948960e3f8b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e3f9c0 | file object: 0xffff948960e3fa40 | offsetby: 0x80
셷짬⾘覫舎￿&㥻ㅅ㔷㙂ⵅ㕆䄲ㄭ䐱ⴸ㥂㕁㔭㔰㔰㔴
pool: 0xffff948960e3fb50 | file object: 0xffff948960e3fbd0 | offsetby: 0x80
섀嬍钉￿@蘗Ơ쫀谂舎￿倐誾
pool: 0xffff948960e3fce0 | file object: 0xffff948960e3fd60 | offsetby: 0x80
pool: 0xffff948960e3fe70 | file object: 0xffff948960e3fef0 | offsetby: 0x80
īindex-2a7e7a6cb463b94d8bffe4bbc26ebc24.cod
pool: 0xffff948960e40000 | file object: 0xffff948960e40080 | offsetby: 0x80
켐譭舎￿ﳐ誽舎￿邀岼钉￿홨讲舎￿㌸讳舎￿
pool: 0xffff948960e40190 | file object: 0xffff948960e40210 | offsetby: 0x80
\$Directory
pool: 0xffff948960e40320 | file object: 0xffff948960e403a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960e404b0 | file object: 0xffff948960e40530 | offsetby: 0x80
쭈轇舎￿촰譭舎￿쭠轇舎￿쭠轇舎￿㓅C
pool: 0xffff948960e407d0 | file object: 0xffff948960e40850 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e40960 | file object: 0xffff948960e409e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960e40af0 | file object: 0xffff948960e40b70 | offsetby: 0x80
Ő˰ᖸ迫舎￿搘迫舎￿퇀婵钉￿惴钉￿倀xr€ᙰ迫舎￿..ᙰ迫舎￿\Device\HarddiskVolume2\Windows\System32\WordBreakers.dll.mui
pool: 0xffff948960e40c80 | file object: 0xffff948960e40d00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e40e10 | file object: 0xffff948960e40e90 | offsetby: 0x80
\Device\HarddiskVolume2\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\ApplicationInsights.config
pool: 0xffff948960e41130 | file object: 0xffff948960e411b0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\5dea1430b5836eb20d1ea418a91544d2\~IC\ItemTemplates\cache.bin
pool: 0xffff948960e412c0 | file object: 0xffff948960e41340 | offsetby: 0x80
ŐΈ㘘蝭舎￿亸赴舎￿쓠异钉￿즐惒钉￿退x~€喰迫舎￿..喰迫舎￿\Device\HarddiskVolume2\Windows\System32\SearchProtocolHost
pool: 0xffff948960e41450 | file object: 0xffff948960e414d0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\344f140c19b1ed9464f981bb7f2cb7c8\~PC\ConsoleApplication\FSharpT Core\
pool: 0xffff948960e415e0 | file object: 0xffff948960e41660 | offsetby: 0x80
\Windows\System32\spp\plugin-manifests-signed\sppobjs-spp-plugin-manifest-signed.xrm-msc42d83ff-5958-4af4-a0dd-ba02fed3
pool: 0xffff948960e41770 | file object: 0xffff948960e417f0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\e090382611d737acd87fe5fd655d92a3\~PC\ClassLibrary\VisualBasic\.NET Standard\1033\ClassLibrary.zip
pool: 0xffff948960e41900 | file object: 0xffff948960e41980 | offsetby: 0x80
܎İ얠邿舎￿蟠蒶舎￿蟰蒶舎￿툨逄舎￿䀀`崰ṉ⠂Ⴕ㩀ǖ<BB150p8l[1].j
pool: 0xffff948960e41a90 | file object: 0xffff948960e41b10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e41c20 | file object: 0xffff948960e41ca0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960e41db0 | file object: 0xffff948960e41e30 | offsetby: 0x80
àꇫ쐧퀀臕舎￿㣈Iᷠ蕳舎￿邢舎￿௰膻舎￿￿￿➸迹舎￿➸迹舎￿힡ᇅǖ  ⠐迹舎￿⠐迹舎￿ꨀ轊舎￿摠轋舎￿￿￿a
pool: 0xffff948960f43160 | file object: 0xffff948960f431e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.CPS.16.6.dll
pool: 0xffff948960f432f0 | file object: 0xffff948960f43370 | offsetby: 0x80
\$Directory
pool: 0xffff948960f43480 | file object: 0xffff948960f43500 | offsetby: 0x80
\$Directory
pool: 0xffff948960f43610 | file object: 0xffff948960f43690 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f437a0 | file object: 0xffff948960f43820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f43930 | file object: 0xffff948960f439b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LanguageServices.Remote.CSharpLanguageServiceFactories.dll
pool: 0xffff948960f43ac0 | file object: 0xffff948960f43b40 | offsetby: 0x80
\Windows\Prefetch\LOGONUI.EXE-09140401.pf
pool: 0xffff948960f43c50 | file object: 0xffff948960f43cd0 | offsetby: 0x80
Ő̘桸迪舎￿穘迪舎￿揠愅钉￿鳀惹钉￿退xl€椰迪舎￿..椰迪舎￿\Device\HarddiskVolume2\Windows\System32\wincredui.dllat
pool: 0xffff948960f43de0 | file object: 0xffff948960f43e60 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff948960f44100 | file object: 0xffff948960f44180 | offsetby: 0x80
\$Directory
pool: 0xffff948960f44290 | file object: 0xffff948960f44310 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Scans\History\Service\Unknown.Log
pool: 0xffff948960f44420 | file object: 0xffff948960f444a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\57C8EDB95DF3F0AD4EE2DC2B8CFD4157
pool: 0xffff948960f445b0 | file object: 0xffff948960f44630 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f44740 | file object: 0xffff948960f447c0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\extend-node-0b8858bf31a1d41aaa7b9f9fdb0ce10a.code
pool: 0xffff948960f448d0 | file object: 0xffff948960f44950 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff948960f44a60 | file object: 0xffff948960f44ae0 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-EE1C9ACA.pf
pool: 0xffff948960f44bf0 | file object: 0xffff948960f44c70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f44d80 | file object: 0xffff948960f44e00 | offsetby: 0x80
\Users\User\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Settings\settings.dat.LOG1
pool: 0xffff948960f450a0 | file object: 0xffff948960f45120 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f45230 | file object: 0xffff948960f452b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\microsoft.windowscommunicationsapps_8wekyb3d8bbwe\Settings\settings.dat.LOG2
pool: 0xffff948960f453c0 | file object: 0xffff948960f45440 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\8a52b313c586a7934d328b7f479e866e\~PC\WpfApp\cache.bin
pool: 0xffff948960f45550 | file object: 0xffff948960f455d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.Contracts.dll
pool: 0xffff948960f456e0 | file object: 0xffff948960f45760 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.VSContracts.dll
pool: 0xffff948960f45870 | file object: 0xffff948960f458f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.Common.dll
pool: 0xffff948960f45a00 | file object: 0xffff948960f45a80 | offsetby: 0x80
\Windows\System32
pool: 0xffff948960f45b90 | file object: 0xffff948960f45c10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f45d20 | file object: 0xffff948960f45da0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f46040 | file object: 0xffff948960f460c0 | offsetby: 0x80
\Windows\System32\AppExtension.dll
pool: 0xffff948960f461d0 | file object: 0xffff948960f46250 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f46360 | file object: 0xffff948960f463e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f464f0 | file object: 0xffff948960f46570 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.UI.winmd
pool: 0xffff948960f46680 | file object: 0xffff948960f46700 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f46810 | file object: 0xffff948960f46890 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.Coauthoring.Core.dll
pool: 0xffff948960f469a0 | file object: 0xffff948960f46a20 | offsetby: 0x80
\Windows\System32
pool: 0xffff948960f46b30 | file object: 0xffff948960f46bb0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f46cc0 | file object: 0xffff948960f46d40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.Tasks.16.3.dll
pool: 0xffff948960f46e50 | file object: 0xffff948960f46ed0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
pool: 0xffff948960f47170 | file object: 0xffff948960f471f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.dll
pool: 0xffff948960f47300 | file object: 0xffff948960f47380 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f47490 | file object: 0xffff948960f47510 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.Coauthoring.dll
pool: 0xffff948960f47620 | file object: 0xffff948960f476a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f477b0 | file object: 0xffff948960f47830 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f47940 | file object: 0xffff948960f479c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f47ad0 | file object: 0xffff948960f47b50 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-6CD6E9CE.pf
pool: 0xffff948960f47c60 | file object: 0xffff948960f47ce0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff948960f47df0 | file object: 0xffff948960f47e70 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\INetCache\IE\9M225O7R\dyntelconfig[1].cache
pool: 0xffff948960f48110 | file object: 0xffff948960f48190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f482a0 | file object: 0xffff948960f48320 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_88614FFAD35D353421B8A7E1FE18FCE4
pool: 0xffff948960f48430 | file object: 0xffff948960f484b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f485c0 | file object: 0xffff948960f48640 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.Foundation.winmd
pool: 0xffff948960f48750 | file object: 0xffff948960f487d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.Rpc.dll
pool: 0xffff948960f488e0 | file object: 0xffff948960f48960 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.Client.dll
pool: 0xffff948960f48a70 | file object: 0xffff948960f48af0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_32\CustomMarshalers\v4.0_4.0.0.0__b03f5f7f11d50a3a\CustomMarshalers.dll
pool: 0xffff948960f48c00 | file object: 0xffff948960f48c80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f48d90 | file object: 0xffff948960f48e10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f490b0 | file object: 0xffff948960f49130 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f49240 | file object: 0xffff948960f492c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f493d0 | file object: 0xffff948960f49450 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.FeedbackDiagnostics.dll
pool: 0xffff948960f49560 | file object: 0xffff948960f495e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
pool: 0xffff948960f496f0 | file object: 0xffff948960f49770 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f49880 | file object: 0xffff948960f49900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f49a10 | file object: 0xffff948960f49a90 | offsetby: 0x80
fxp㗽璝㩀ǖФ鵣畂㩀ǖ￿
pool: 0xffff948960f49ba0 | file object: 0xffff948960f49c20 | offsetby: 0x80
fxp㗽璝㩀ǖᥔꏴ뱴㩀ǖ￿
pool: 0xffff948960f49d30 | file object: 0xffff948960f49db0 | offsetby: 0x80
fxp㗽璝㩀ǖФ鵣畂㩀ǖ￿
pool: 0xffff948960f4a050 | file object: 0xffff948960f4a0d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f4a1e0 | file object: 0xffff948960f4a260 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\8a52b313c586a7934d328b7f479e866e\~PC\Wpf.Custom\cache.bin
pool: 0xffff948960f4a370 | file object: 0xffff948960f4a3f0 | offsetby: 0x80
\Windows\rescache\_merged\4184642002\2745013878.
pool: 0xffff948960f4a500 | file object: 0xffff948960f4a580 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs
pool: 0xffff948960f4a690 | file object: 0xffff948960f4a710 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Printer Shortcuts
pool: 0xffff948960f4a820 | file object: 0xffff948960f4a8a0 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Printer Shortcuts
pool: 0xffff948960f4a9b0 | file object: 0xffff948960f4aa30 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Network Shortcuts
pool: 0xffff948960f4ab40 | file object: 0xffff948960f4abc0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f4acd0 | file object: 0xffff948960f4ad50 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Network Shortcuts
pool: 0xffff948960f4ae60 | file object: 0xffff948960f4aee0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\Local\Microsoft\Credentials\DFBE70A7E5CC19A398EBF1B96859CE5D
pool: 0xffff948960f4b180 | file object: 0xffff948960f4b200 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f4b310 | file object: 0xffff948960f4b390 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\8a52b313c586a7934d328b7f479e866e\~PC\WpfLibrary\cache.bin
pool: 0xffff948960f4b4a0 | file object: 0xffff948960f4b520 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
pool: 0xffff948960f4b630 | file object: 0xffff948960f4b6b0 | offsetby: 0x80
fxp䠤ᑳ㨹ǖᥔꏴ뱴㩀ǖ￿
pool: 0xffff948960f4b7c0 | file object: 0xffff948960f4b840 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.ContactServiceModel.Contracts.dll
pool: 0xffff948960f4b950 | file object: 0xffff948960f4b9d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Microsoft.VisualStudio.Utilities.Internal.dll
pool: 0xffff948960f4bae0 | file object: 0xffff948960f4bb60 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Internet Explorer\Quick Launch\User Pinned
pool: 0xffff948960f4bc70 | file object: 0xffff948960f4bcf0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f4be00 | file object: 0xffff948960f4be80 | offsetby: 0x80
ԁԀ鄑샋狀먔믢꙼ȁ\$ကԁԀ鄑샋狀먔믢꙼ϩကāԀꀀ
pool: 0xffff948960f4c120 | file object: 0xffff948960f4c1a0 | offsetby: 0x80
fxp㗽璝㩀ǖᥔꏴ뱴㩀ǖ￿
pool: 0xffff948960f4c2b0 | file object: 0xffff948960f4c330 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.Workspace.16.3.dll
pool: 0xffff948960f4c440 | file object: 0xffff948960f4c4c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.ContactServiceModel.dll
pool: 0xffff948960f4c5d0 | file object: 0xffff948960f4c650 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\8a52b313c586a7934d328b7f479e866e\~PC\Wpf\cache.bin
pool: 0xffff948960f4c760 | file object: 0xffff948960f4c7e0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml.Linq\978e065c730a31498893916850395641\System.Xml.Linq.ni.dll
pool: 0xffff948960f4c8f0 | file object: 0xffff948960f4c970 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_64\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
pool: 0xffff948960f4ca80 | file object: 0xffff948960f4cb00 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_64\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
pool: 0xffff948960f4cc10 | file object: 0xffff948960f4cc90 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\devenv.exe.config
pool: 0xffff948960f4cda0 | file object: 0xffff948960f4ce20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.Telemetry.dll
pool: 0xffff948960f4d0c0 | file object: 0xffff948960f4d140 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f4d250 | file object: 0xffff948960f4d2d0 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff948960f4d3e0 | file object: 0xffff948960f4d460 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\344f140c19b1ed9464f981bb7f2cb7c8\~PC\ClassLibrary\cache.bin
pool: 0xffff948960f4d570 | file object: 0xffff948960f4d5f0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorrc.dll
pool: 0xffff948960f4d700 | file object: 0xffff948960f4d780 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\6120499ff170478cf6f9b4d26f5086ca\~PC\ProjectTemplates\cache.bin
pool: 0xffff948960f4d890 | file object: 0xffff948960f4d910 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Data\6ae9aebb477a06a1021b58a2b90efb57\System.Data.ni.dll
pool: 0xffff948960f4da20 | file object: 0xffff948960f4daa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f4dbb0 | file object: 0xffff948960f4dc30 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\8ae84ced74fb505b0d9263392beee898\~PC\ProjectTemplates\cache.bin
pool: 0xffff948960f4dd40 | file object: 0xffff948960f4ddc0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\ccf70596e04bc4f7d4cc4de470a4aea5\~PC\ProjectTemplates\cache.bin
pool: 0xffff948960f4e060 | file object: 0xffff948960f4e0e0 | offsetby: 0x80
㋰澫￿琨譭舎￿镈逾舎￿钀逾舎￿瑀弦钉￿唀
pool: 0xffff948960f4e1f0 | file object: 0xffff948960f4e270 | offsetby: 0x80
䰐讳舎￿⒀忿钉￿
pool: 0xffff948960f4e380 | file object: 0xffff948960f4e400 | offsetby: 0x80
\Windows\System32\en-US\wininet.dll.mui
pool: 0xffff948960f4e510 | file object: 0xffff948960f4e590 | offsetby: 0x80
\Windows\System32\WordBreakers.dll
pool: 0xffff948960f4e6a0 | file object: 0xffff948960f4e720 | offsetby: 0x80
\$Directory
pool: 0xffff948960f4e830 | file object: 0xffff948960f4e8b0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\344f140c19b1ed9464f981bb7f2cb7c8\~PC\ConsoleApplication\cache.bin
pool: 0xffff948960f4e9c0 | file object: 0xffff948960f4ea40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Newtonsoft.Json.dll
pool: 0xffff948960f4eb50 | file object: 0xffff948960f4ebd0 | offsetby: 0x80
蒰讲舎￿⒀忿钉￿
pool: 0xffff948960f4ece0 | file object: 0xffff948960f4ed60 | offsetby: 0x80
卐讲舎￿⒀忿钉￿
pool: 0xffff948960f4ee70 | file object: 0xffff948960f4eef0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f4f000 | file object: 0xffff948960f4f080 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\INetCache\IE\H2893ZP6\dyntelconfig[1].cache
pool: 0xffff948960f4f190 | file object: 0xffff948960f4f210 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.GitProvider.16.0.dll
pool: 0xffff948960f4f320 | file object: 0xffff948960f4f3a0 | offsetby: 0x80
\Windows\System32\Windows.WARP.JITService.exe
pool: 0xffff948960f4f4b0 | file object: 0xffff948960f4f530 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff948960f4f640 | file object: 0xffff948960f4f6c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f4f7d0 | file object: 0xffff948960f4f850 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\a0ffbcaaabe2999685cd5be208af48c3\~PC\ClassLibrary\cache.bin
pool: 0xffff948960f4f960 | file object: 0xffff948960f4f9e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.UI.dll
pool: 0xffff948960f4faf0 | file object: 0xffff948960f4fb70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f4fc80 | file object: 0xffff948960f4fd00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f4fe10 | file object: 0xffff948960f4fe90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f50130 | file object: 0xffff948960f501b0 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff948960f502c0 | file object: 0xffff948960f50340 | offsetby: 0x80
\Windows\System32\en-US\netmsg.dll.mui
pool: 0xffff948960f50450 | file object: 0xffff948960f504d0 | offsetby: 0x80
\Windows\System32
pool: 0xffff948960f505e0 | file object: 0xffff948960f50660 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f50770 | file object: 0xffff948960f507f0 | offsetby: 0x80
\Windows\System32\en-US\edgehtml.dll.mui
pool: 0xffff948960f50900 | file object: 0xffff948960f50980 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff948960f50a90 | file object: 0xffff948960f50b10 | offsetby: 0x80
\Windows\System32\smartscreen.exe
pool: 0xffff948960f50c20 | file object: 0xffff948960f50ca0 | offsetby: 0x80
\Windows\System32
pool: 0xffff948960f50db0 | file object: 0xffff948960f50e30 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\5dea1430b5836eb20d1ea418a91544d2\~PC\ProjectTemplates\cache.bin
pool: 0xffff948960f510d0 | file object: 0xffff948960f51150 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f51260 | file object: 0xffff948960f512e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f513f0 | file object: 0xffff948960f51470 | offsetby: 0x80
\$Directory
pool: 0xffff948960f51580 | file object: 0xffff948960f51600 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f51710 | file object: 0xffff948960f51790 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.Notifications.dll
pool: 0xffff948960f518a0 | file object: 0xffff948960f51920 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f51a30 | file object: 0xffff948960f51ab0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\3942c7763c73855223e1c346da3c8e28\~PC\ClassLibrary\cache.bin
pool: 0xffff948960f51bc0 | file object: 0xffff948960f51c40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f51d50 | file object: 0xffff948960f51dd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.DebuggerService.16.0.dll
pool: 0xffff948960f52070 | file object: 0xffff948960f520f0 | offsetby: 0x80
\Windows\ServiceProfiles\NetworkService\AppData\LocalLow\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_88614FFAD35D353421B8A7E1FE18FCE4
pool: 0xffff948960f52200 | file object: 0xffff948960f52280 | offsetby: 0x80
\$Directory
pool: 0xffff948960f52390 | file object: 0xffff948960f52410 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f52520 | file object: 0xffff948960f525a0 | offsetby: 0x80
\Windows\SystemResources\twinui.appcore.dll.mun
pool: 0xffff948960f526b0 | file object: 0xffff948960f52730 | offsetby: 0x80
\Windows\System32\BthTelemetry.dll
pool: 0xffff948960f52840 | file object: 0xffff948960f528c0 | offsetby: 0x80
\Windows\System32\winevt\Logs\Microsoft-Windows-TWinUI%4Operational.evtx
pool: 0xffff948960f529d0 | file object: 0xffff948960f52a50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f52b60 | file object: 0xffff948960f52be0 | offsetby: 0x80
\Windows\System32\en-US\smartscreen.exe.mui
pool: 0xffff948960f52cf0 | file object: 0xffff948960f52d70 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\464640cacb665533b47c4d001f9d1f76\~PC\NUnitTest\cache.bin
pool: 0xffff948960f53010 | file object: 0xffff948960f53090 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f531a0 | file object: 0xffff948960f53220 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\3511f507465c3b4aa571f0a82b80565f\~PC\ProjectTemplates\cache.bin
pool: 0xffff948960f53330 | file object: 0xffff948960f533b0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\d843234be603d9efac837f5dbb0cf2a4\~PC\NUnitTest\cache.bin
pool: 0xffff948960f534c0 | file object: 0xffff948960f53540 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f53650 | file object: 0xffff948960f536d0 | offsetby: 0x80
\Windows\System32\en-US\windows.ui.xaml.dll.mui
pool: 0xffff948960f537e0 | file object: 0xffff948960f53860 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LanguageServices.Remote.16.3.dll
pool: 0xffff948960f53970 | file object: 0xffff948960f539f0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\b698fa2979e58e417951633f56146c06\~PC\ProjectTemplates\cache.bin
pool: 0xffff948960f53b00 | file object: 0xffff948960f53b80 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\464640cacb665533b47c4d001f9d1f76\~PC\MSTest\cache.bin
pool: 0xffff948960f53c90 | file object: 0xffff948960f53d10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f53e20 | file object: 0xffff948960f53ea0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.ExceptionHelper.dll
pool: 0xffff948960f54140 | file object: 0xffff948960f541c0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\464640cacb665533b47c4d001f9d1f76\~PC\XUnitTest\cache.bin
pool: 0xffff948960f542d0 | file object: 0xffff948960f54350 | offsetby: 0x80
\Registry\Machine\System\CurrentControlSet\Control\StateSeparation\Redirect
pool: 0xffff948960f54460 | file object: 0xffff948960f544e0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Deployment.srd-shm
pool: 0xffff948960f545f0 | file object: 0xffff948960f54670 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f54780 | file object: 0xffff948960f54800 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\e5af810da30b16145a8ef1f45ea390f0\~PC\ProjectTemplates\cache.bin
pool: 0xffff948960f54910 | file object: 0xffff948960f54990 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Deployment.srd-wal
pool: 0xffff948960f54aa0 | file object: 0xffff948960f54b20 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Machine.srd
pool: 0xffff948960f54c30 | file object: 0xffff948960f54cb0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\d843234be603d9efac837f5dbb0cf2a4\~PC\XUnitTest\cache.bin
pool: 0xffff948960f54dc0 | file object: 0xffff948960f54e40 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\d843234be603d9efac837f5dbb0cf2a4\~PC\MSTest\cache.bin
pool: 0xffff948960f550e0 | file object: 0xffff948960f55160 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.Tracing.dll
pool: 0xffff948960f55270 | file object: 0xffff948960f552f0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\2265bec53fe194d3e4376ef6acf4dbe1\~PC\ClassLibrary\cache.bin
pool: 0xffff948960f55400 | file object: 0xffff948960f55480 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\18afd58a3f60aa4e11fcd809cd4ee3be\~PC\ProjectTemplates\cache.bin
pool: 0xffff948960f55590 | file object: 0xffff948960f55610 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.VslsFileSystemProvider.16.6.dll
pool: 0xffff948960f55720 | file object: 0xffff948960f557a0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\ItemTemplatesCache_{00000000-0000-0000-0000-000000000000}\cache.bin
pool: 0xffff948960f558b0 | file object: 0xffff948960f55930 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\2265bec53fe194d3e4376ef6acf4dbe1\~PC\ConsoleApplication\cache.bin
pool: 0xffff948960f55a40 | file object: 0xffff948960f55ac0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LanguageServices.Remote.TypeScriptCollabService.dll
pool: 0xffff948960f55bd0 | file object: 0xffff948960f55c50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f55d60 | file object: 0xffff948960f55de0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Safety\edge\remote\synchronousLookupUris
pool: 0xffff948960f56080 | file object: 0xffff948960f56100 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Deployment.srd-wal
pool: 0xffff948960f56210 | file object: 0xffff948960f56290 | offsetby: 0x80
\Windows\System32\spool\drivers\color\sRGB Color Space Profile.icm
pool: 0xffff948960f563a0 | file object: 0xffff948960f56420 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Deployment.srd
pool: 0xffff948960f56530 | file object: 0xffff948960f565b0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Machine.srd
pool: 0xffff948960f566c0 | file object: 0xffff948960f56740 | offsetby: 0x80
\Windows\System32\en-US\winnlsres.dll.mui
pool: 0xffff948960f56850 | file object: 0xffff948960f568d0 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff948960f569e0 | file object: 0xffff948960f56a60 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Machine.srd-wal
pool: 0xffff948960f56b70 | file object: 0xffff948960f56bf0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Safety\edge\remote\topTraffic
pool: 0xffff948960f56d00 | file object: 0xffff948960f56d80 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Safety\edge\remote\synchronousLookupUris_637266860896986855
pool: 0xffff948960f57020 | file object: 0xffff948960f570a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f571b0 | file object: 0xffff948960f57230 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Machine.srd-wal
pool: 0xffff948960f57340 | file object: 0xffff948960f573c0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Safety\edge\remote\script_248209557969505678202381125266461438884.rel.v2
pool: 0xffff948960f574d0 | file object: 0xffff948960f57550 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f57660 | file object: 0xffff948960f576e0 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Deployment.srd-shm
pool: 0xffff948960f577f0 | file object: 0xffff948960f57870 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f57980 | file object: 0xffff948960f57a00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f57b10 | file object: 0xffff948960f57b90 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Safety\edge\remote\topTraffic_319729430708873239333501969648228053463
pool: 0xffff948960f57ca0 | file object: 0xffff948960f57d20 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Safety\edge\remote\script
pool: 0xffff948960f57e30 | file object: 0xffff948960f57eb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.WebEditors.dll
pool: 0xffff948960f58150 | file object: 0xffff948960f581d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f582e0 | file object: 0xffff948960f58360 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData
pool: 0xffff948960f58470 | file object: 0xffff948960f584f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f58600 | file object: 0xffff948960f58680 | offsetby: 0x80
\Windows\System32\MicrosoftAccountTokenProvider.dll
pool: 0xffff948960f58790 | file object: 0xffff948960f58810 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f58920 | file object: 0xffff948960f589a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f58ab0 | file object: 0xffff948960f58b30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f58c40 | file object: 0xffff948960f58cc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LanguageServices.LanguageExtension.16.5.dll
pool: 0xffff948960f58dd0 | file object: 0xffff948960f58e50 | offsetby: 0x80
\ProgramData\Microsoft\Windows\AppRepository\StateRepository-Machine.srd-shm
pool: 0xffff948960f590f0 | file object: 0xffff948960f59170 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff948960f59280 | file object: 0xffff948960f59300 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f59410 | file object: 0xffff948960f59490 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\Content\EDC238BFF48A31D55A97E1E93892934B_C20E0DA2D0F89FE526E1490F4A2EE5AB
pool: 0xffff948960f595a0 | file object: 0xffff948960f59620 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.LanguageServices.Guest.dll
pool: 0xffff948960f59730 | file object: 0xffff948960f597b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CP1HP16W\a4-37ff02-68ddb2ab[2].js
pool: 0xffff948960f598c0 | file object: 0xffff948960f59940 | offsetby: 0x80
\Windows\Fonts\arial.ttf
pool: 0xffff948960f59a50 | file object: 0xffff948960f59ad0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_48.dbȔఏᤖज
pool: 0xffff948960f59be0 | file object: 0xffff948960f59c60 | offsetby: 0x80
\Windows\System32\en-US\Windows.Storage.Search.dll.mui
pool: 0xffff948960f59d70 | file object: 0xffff948960f59df0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f5a090 | file object: 0xffff948960f5a110 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Safety\edge\local\local\cache
pool: 0xffff948960f5a220 | file object: 0xffff948960f5a2a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f5a3b0 | file object: 0xffff948960f5a430 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f5a540 | file object: 0xffff948960f5a5c0 | offsetby: 0x80
\Windows\System32\en-US\mssvp.dll.mui
pool: 0xffff948960f5a6d0 | file object: 0xffff948960f5a750 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f5a860 | file object: 0xffff948960f5a8e0 | offsetby: 0x80
\Users\desktop.ini
pool: 0xffff948960f5a9f0 | file object: 0xffff948960f5aa70 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\A86Z8RFM\e151e5[1].gif
pool: 0xffff948960f5ab80 | file object: 0xffff948960f5ac00 | offsetby: 0x80
\$Directory
pool: 0xffff948960f5ad10 | file object: 0xffff948960f5ad90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f5b030 | file object: 0xffff948960f5b0b0 | offsetby: 0x80
\Windows\System32\mssvp.dll
pool: 0xffff948960f5b1c0 | file object: 0xffff948960f5b240 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.Foundation.winmd
pool: 0xffff948960f5b350 | file object: 0xffff948960f5b3d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f5b4e0 | file object: 0xffff948960f5b560 | offsetby: 0x80
ԁԀ鄑샋狀먔믢꙼ȁ\$ကԁԀ鄑샋狀먔믢꙼ϩ
pool: 0xffff948960f5b670 | file object: 0xffff948960f5b6f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f5b800 | file object: 0xffff948960f5b880 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AppData\User\Default\Indexed DB\edb.log
pool: 0xffff948960f5b990 | file object: 0xffff948960f5ba10 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\privateregistry.bin
pool: 0xffff948960f5bb20 | file object: 0xffff948960f5bba0 | offsetby: 0x80
\Windows\System32\en-US\Windows.Web.Http.dll.mui
pool: 0xffff948960f5bcb0 | file object: 0xffff948960f5bd30 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\Search\Index\SXRlbSB0ZW1wbGF0ZXMgc291cmNlIHByb3ZpZGVy.blob
pool: 0xffff948960f5be40 | file object: 0xffff948960f5bec0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\EDC238BFF48A31D55A97E1E93892934B_C20E0DA2D0F89FE526E1490F4A2EE5AB
pool: 0xffff948960f5c160 | file object: 0xffff948960f5c1e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f5c2f0 | file object: 0xffff948960f5c370 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f5c480 | file object: 0xffff948960f5c500 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.Search.16.0.dll
pool: 0xffff948960f5c610 | file object: 0xffff948960f5c690 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f5c7a0 | file object: 0xffff948960f5c820 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\F6F92FBF4E8096C9272B135AF6140AA8_7049D8411EDB7D11F4B5ED5B6CD9198B
pool: 0xffff948960f5c930 | file object: 0xffff948960f5c9b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f5cac0 | file object: 0xffff948960f5cb40 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\Content\F6F92FBF4E8096C9272B135AF6140AA8_7049D8411EDB7D11F4B5ED5B6CD9198B
pool: 0xffff948960f5cc50 | file object: 0xffff948960f5ccd0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\B398B80134F72209547439DB21AB308D_D93C575AD9E9AF9B95268A3CB953B5A1
pool: 0xffff948960f5cde0 | file object: 0xffff948960f5ce60 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CTJBDK51\BB12dixV[1].jpg
pool: 0xffff948960f5d100 | file object: 0xffff948960f5d180 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\Content\9915FBCE5ECE56452A09FB65EDE2FAD2_3493853ECB836F04B992A7EAD5C3EE1D
pool: 0xffff948960f5d290 | file object: 0xffff948960f5d310 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.DebuggerService.Server.dll
pool: 0xffff948960f5d420 | file object: 0xffff948960f5d4a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f5d5b0 | file object: 0xffff948960f5d630 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f5d740 | file object: 0xffff948960f5d7c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.Debugger.DebugHostServices.dll
pool: 0xffff948960f5d8d0 | file object: 0xffff948960f5d950 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LanguageServices.Remote.CSharp.dll
pool: 0xffff948960f5da60 | file object: 0xffff948960f5dae0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AppData\User\Default\Indexed DB\edb.chk
pool: 0xffff948960f5dbf0 | file object: 0xffff948960f5dc70 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CP1HP16W\AAqrNuc[1].png
pool: 0xffff948960f5dd80 | file object: 0xffff948960f5de00 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\B398B80134F72209547439DB21AB308D_592839A8569F831D0F2306AE4BB5C24B
pool: 0xffff948960f5e0a0 | file object: 0xffff948960f5e120 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\Content\B398B80134F72209547439DB21AB308D_592839A8569F831D0F2306AE4BB5C24B
pool: 0xffff948960f5e230 | file object: 0xffff948960f5e2b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f5e3c0 | file object: 0xffff948960f5e440 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CTJBDK51\jquery-2.1.1.min[1].js
pool: 0xffff948960f5e550 | file object: 0xffff948960f5e5d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\Content\B398B80134F72209547439DB21AB308D_D93C575AD9E9AF9B95268A3CB953B5A1
pool: 0xffff948960f5e6e0 | file object: 0xffff948960f5e760 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\DataStore\Data\nouser1\120712-0049\DBStore\LogFiles\edb.loglog
pool: 0xffff948960f5e870 | file object: 0xffff948960f5e8f0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\9915FBCE5ECE56452A09FB65EDE2FAD2_3493853ECB836F04B992A7EAD5C3EE1D
pool: 0xffff948960f5ea00 | file object: 0xffff948960f5ea80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.Debugger.Common.dll
pool: 0xffff948960f5eb90 | file object: 0xffff948960f5ec10 | offsetby: 0x80
\$Directory
pool: 0xffff948960f5ed20 | file object: 0xffff948960f5eda0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CYCH44DZ\kerneldhp-8aecd422[1].css
pool: 0xffff948960f5f040 | file object: 0xffff948960f5f0c0 | offsetby: 0x80
\Windows\Prefetch\DLLHOST.EXE-FC981FFE.pf
pool: 0xffff948960f5f1d0 | file object: 0xffff948960f5f250 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f5f360 | file object: 0xffff948960f5f3e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f5f4f0 | file object: 0xffff948960f5f570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f5f680 | file object: 0xffff948960f5f700 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CP1HP16W\AAfgU2v[1].gif
pool: 0xffff948960f5f810 | file object: 0xffff948960f5f890 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CTJBDK51\AAehOqB[1].png
pool: 0xffff948960f5f9a0 | file object: 0xffff948960f5fa20 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CP1HP16W\AAI9Cdx[1].png
pool: 0xffff948960f5fb30 | file object: 0xffff948960f5fbb0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\A86Z8RFM\e3-10d406-68ddb2ab[1].css
pool: 0xffff948960f5fcc0 | file object: 0xffff948960f5fd40 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CTJBDK51\kerneldhp-19ff1dff[2].js
pool: 0xffff948960f5fe50 | file object: 0xffff948960f5fed0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\Content\1BB09BEEC155258835C193A7AA85AA5B_D64D9286B9E13D1E44123DEB4848F19D
pool: 0xffff948960f60170 | file object: 0xffff948960f601f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f60300 | file object: 0xffff948960f60380 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f60490 | file object: 0xffff948960f60510 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f60620 | file object: 0xffff948960f606a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CYCH44DZ\AAI9Cge[1].png
pool: 0xffff948960f607b0 | file object: 0xffff948960f60830 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\A86Z8RFM\AAyV1NP[1].jpg
pool: 0xffff948960f60940 | file object: 0xffff948960f609c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f60ad0 | file object: 0xffff948960f60b50 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CYCH44DZ\AAjshxE[1].png
pool: 0xffff948960f60c60 | file object: 0xffff948960f60ce0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\1BB09BEEC155258835C193A7AA85AA5B_D64D9286B9E13D1E44123DEB4848F19D
pool: 0xffff948960f60df0 | file object: 0xffff948960f60e70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.ServiceBrokerIntegration.16.5.dll
pool: 0xffff948960f61110 | file object: 0xffff948960f61190 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f612a0 | file object: 0xffff948960f61320 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC
pool: 0xffff948960f61430 | file object: 0xffff948960f614b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f615c0 | file object: 0xffff948960f61640 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\LiveShare\Microsoft.VisualStudio.LiveShare.Razor.dll
pool: 0xffff948960f61750 | file object: 0xffff948960f617d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\5080DC7A65DB6A5960ECD874088F3328_6CBA2C06D5985DD95AE59AF8FC7C6220
pool: 0xffff948960f618e0 | file object: 0xffff948960f61960 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f61a70 | file object: 0xffff948960f61af0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f61c00 | file object: 0xffff948960f61c80 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\A86Z8RFM\BB131kvb[1].png
pool: 0xffff948960f61d90 | file object: 0xffff948960f61e10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f620b0 | file object: 0xffff948960f62130 | offsetby: 0x80
\$Directory
pool: 0xffff948960f62240 | file object: 0xffff948960f622c0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\Content\5080DC7A65DB6A5960ECD874088F3328_6CBA2C06D5985DD95AE59AF8FC7C6220
pool: 0xffff948960f623d0 | file object: 0xffff948960f62450 | offsetby: 0x80
\$Directory
pool: 0xffff948960f62560 | file object: 0xffff948960f625e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f626f0 | file object: 0xffff948960f62770 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f62880 | file object: 0xffff948960f62900 | offsetby: 0x80
\$Directory
pool: 0xffff948960f62a10 | file object: 0xffff948960f62a90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f62ba0 | file object: 0xffff948960f62c20 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Cooki
pool: 0xffff948960f62d30 | file object: 0xffff948960f62db0 | offsetby: 0x80
\Windows\System32\webplatstorageserver.dll
pool: 0xffff948960f63050 | file object: 0xffff948960f630d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f631e0 | file object: 0xffff948960f63260 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f63370 | file object: 0xffff948960f633f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f63500 | file object: 0xffff948960f63580 | offsetby: 0x80
\$Directory
pool: 0xffff948960f63690 | file object: 0xffff948960f63710 | offsetby: 0x80
\$Directory
pool: 0xffff948960f63820 | file object: 0xffff948960f638a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f639b0 | file object: 0xffff948960f63a30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f63b40 | file object: 0xffff948960f63bc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f63cd0 | file object: 0xffff948960f63d50 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff948960f63e60 | file object: 0xffff948960f63ee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f64180 | file object: 0xffff948960f64200 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f64310 | file object: 0xffff948960f64390 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f644a0 | file object: 0xffff948960f64520 | offsetby: 0x80
\$Directory
pool: 0xffff948960f64630 | file object: 0xffff948960f646b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f647c0 | file object: 0xffff948960f64840 | offsetby: 0x80
\$ConvertToNonresident
pool: 0xffff948960f64950 | file object: 0xffff948960f649d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f64ae0 | file object: 0xffff948960f64b60 | offsetby: 0x80
\$Directory
pool: 0xffff948960f64c70 | file object: 0xffff948960f64cf0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f64e00 | file object: 0xffff948960f64e80 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\MicrosoftEdge\User\Default\Recovery\Active\{EA573038-2AA0-49F6-BBD6-EE2B1152CC46}.dat
pool: 0xffff948960f65120 | file object: 0xffff948960f651a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\MSIMGSIZ.DAT
pool: 0xffff948960f652b0 | file object: 0xffff948960f65330 | offsetby: 0x80
\$PrepareToShrinkFileSize
pool: 0xffff948960f65440 | file object: 0xffff948960f654c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f655d0 | file object: 0xffff948960f65650 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\Temp\~DFF350A96B0CC9180A.TMP
pool: 0xffff948960f65760 | file object: 0xffff948960f657e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f658f0 | file object: 0xffff948960f65970 | offsetby: 0x80
\$Directory
pool: 0xffff948960f65a80 | file object: 0xffff948960f65b00 | offsetby: 0x80
\Windows\Fonts\segoeuib.ttf
pool: 0xffff948960f65c10 | file object: 0xffff948960f65c90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f65da0 | file object: 0xffff948960f65e20 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\2zTbRtYpK3YpWyI5hTyccq0k9sw[1].js
pool: 0xffff948960f660c0 | file object: 0xffff948960f66140 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\H9MZznRyReJz740L0Y9BdnIHYw8[1].js
pool: 0xffff948960f66250 | file object: 0xffff948960f662d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\_ae0cB8fPDMkfSJUO5xUuczSt7E[1].css
pool: 0xffff948960f663e0 | file object: 0xffff948960f66460 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f66570 | file object: 0xffff948960f665f0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\8rvUIINAP56PCzD1S29LeTapY1Y[1].js
pool: 0xffff948960f66700 | file object: 0xffff948960f66780 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\Dae9F3uWr1j96ciQZxvUiMLiQ20[1].js
pool: 0xffff948960f66890 | file object: 0xffff948960f66910 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\SLuQYqcmOqCs5YOte-rSWZO8lEY.br[1].js
pool: 0xffff948960f66a20 | file object: 0xffff948960f66aa0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f66bb0 | file object: 0xffff948960f66c30 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\l_RKYnr3EO1u1WNfTjXpHl17Rio[1].css
pool: 0xffff948960f66d40 | file object: 0xffff948960f66dc0 | offsetby: 0x80
\Windows\Fonts\seguisb.ttf
pool: 0xffff948960f67060 | file object: 0xffff948960f670e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f671f0 | file object: 0xffff948960f67270 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\XnMU5VFfsdIh8PsWJJY6-SgHHjk.br[1].js
pool: 0xffff948960f67380 | file object: 0xffff948960f67400 | offsetby: 0x80
\Windows\Fonts\simsun.ttc
pool: 0xffff948960f67510 | file object: 0xffff948960f67590 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\UAraPktKl10pbSBJ1Tu-cJX2-nc[1].js
pool: 0xffff948960f676a0 | file object: 0xffff948960f67720 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CP1HP16W\f77b07[1].woff2
pool: 0xffff948960f67830 | file object: 0xffff948960f678b0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_16.db
pool: 0xffff948960f679c0 | file object: 0xffff948960f67a40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f67b50 | file object: 0xffff948960f67bd0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\hKqG9sGWRP6yDbnUnipCsyX64Vs[1].css
pool: 0xffff948960f67ce0 | file object: 0xffff948960f67d60 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\3AKm_5XelPvzJ4B54e7QbULJfl4.br[1].js
pool: 0xffff948960f67e70 | file object: 0xffff948960f67ef0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f68000 | file object: 0xffff948960f68080 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\oxY-jKB-y8YUQYlBlQ2VYr4VF5I[1].js
pool: 0xffff948960f68190 | file object: 0xffff948960f68210 | offsetby: 0x80
\Windows\Fonts\segoeui.ttf
pool: 0xffff948960f68320 | file object: 0xffff948960f683a0 | offsetby: 0x80
\Windows\Fonts\segoeuil.ttf
pool: 0xffff948960f684b0 | file object: 0xffff948960f68530 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f68640 | file object: 0xffff948960f686c0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\Init[1].htm
pool: 0xffff948960f687d0 | file object: 0xffff948960f68850 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\HkpLvsXkCMkluzD--i9_Hl9v67o[1].js
pool: 0xffff948960f68960 | file object: 0xffff948960f689e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CP1HP16W\AAARmkv[1].json
pool: 0xffff948960f68af0 | file object: 0xffff948960f68b70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f68c80 | file object: 0xffff948960f68d00 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\Content\7B296DEA8C6902774084B103976A8D6A
pool: 0xffff948960f68e10 | file object: 0xffff948960f68e90 | offsetby: 0x80
\Windows\System32\dllhost.exe
pool: 0xffff948960f69130 | file object: 0xffff948960f691b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f692c0 | file object: 0xffff948960f69340 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f69450 | file object: 0xffff948960f694d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AppData\User\Default\Indexed DB\IndexedDB.edb
pool: 0xffff948960f695e0 | file object: 0xffff948960f69660 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f69770 | file object: 0xffff948960f697f0 | offsetby: 0x80
\Windows\Prefetch\DLLHOST.EXE-28A8211F.pf
pool: 0xffff948960f69900 | file object: 0xffff948960f69980 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f69a90 | file object: 0xffff948960f69b10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f69c20 | file object: 0xffff948960f69ca0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\Content\E49827401028F7A0F97B5576C77A26CB_7CE95D8DCA26FE957E7BD7D76F353B08
pool: 0xffff948960f69db0 | file object: 0xffff948960f69e30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6a0d0 | file object: 0xffff948960f6a150 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6a260 | file object: 0xffff948960f6a2e0 | offsetby: 0x80
\Windows\SystemResources\edgehtml.dll.mun
pool: 0xffff948960f6a3f0 | file object: 0xffff948960f6a470 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6a580 | file object: 0xffff948960f6a600 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\E49827401028F7A0F97B5576C77A26CB_7CE95D8DCA26FE957E7BD7D76F353B08
pool: 0xffff948960f6a710 | file object: 0xffff948960f6a790 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6a8a0 | file object: 0xffff948960f6a920 | offsetby: 0x80
\Windows\System32
pool: 0xffff948960f6aa30 | file object: 0xffff948960f6aab0 | offsetby: 0x80
\Windows\SystemResources\Chakra.dll.mun
pool: 0xffff948960f6abc0 | file object: 0xffff948960f6ac40 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\7B296DEA8C6902774084B103976A8D6A
pool: 0xffff948960f6ad50 | file object: 0xffff948960f6add0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f6b070 | file object: 0xffff948960f6b0f0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AppData\User\Default\Indexed DB\edb.log
pool: 0xffff948960f6b200 | file object: 0xffff948960f6b280 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AppData\User\Default\Indexed DB\IndexedDB.edb
pool: 0xffff948960f6b390 | file object: 0xffff948960f6b410 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6b520 | file object: 0xffff948960f6b5a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f6b6b0 | file object: 0xffff948960f6b730 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6b840 | file object: 0xffff948960f6b8c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6b9d0 | file object: 0xffff948960f6ba50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f6bb60 | file object: 0xffff948960f6bbe0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6bcf0 | file object: 0xffff948960f6bd70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6c010 | file object: 0xffff948960f6c090 | offsetby: 0x80
\$Directory
pool: 0xffff948960f6c1a0 | file object: 0xffff948960f6c220 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Internet Explorer\CacheStorage\edb.log
pool: 0xffff948960f6c330 | file object: 0xffff948960f6c3b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CP1HP16W\AAAKn0l[1].json
pool: 0xffff948960f6c4c0 | file object: 0xffff948960f6c540 | offsetby: 0x80
\Windows\System32
pool: 0xffff948960f6c650 | file object: 0xffff948960f6c6d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\Cache\CYCH44DZ\AABDkZu[1].json
pool: 0xffff948960f6c7e0 | file object: 0xffff948960f6c860 | offsetby: 0x80
\$Directory
pool: 0xffff948960f6c970 | file object: 0xffff948960f6c9f0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AppData\User\Default\CacheStorage\CacheStorage.jfm
pool: 0xffff948960f6cb00 | file object: 0xffff948960f6cb80 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AppData\User\Default\CacheStorage\CacheStorage.jfm
pool: 0xffff948960f6cc90 | file object: 0xffff948960f6cd10 | offsetby: 0x80
\Windows\System32
pool: 0xffff948960f6ce20 | file object: 0xffff948960f6cea0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Internet Explorer\CacheStorage\edbtmp.logog
pool: 0xffff948960f6d140 | file object: 0xffff948960f6d1c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6d2d0 | file object: 0xffff948960f6d350 | offsetby: 0x80
\Windows\System32\en-US\ESENT.dll.mui
pool: 0xffff948960f6d460 | file object: 0xffff948960f6d4e0 | offsetby: 0x80
\Windows\System32\en-US\datamap.0409.dat
pool: 0xffff948960f6d5f0 | file object: 0xffff948960f6d670 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Internet Explorer\CacheStorage\edb00005.log
pool: 0xffff948960f6d780 | file object: 0xffff948960f6d800 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f6d910 | file object: 0xffff948960f6d990 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.edb
pool: 0xffff948960f6daa0 | file object: 0xffff948960f6db20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6dc30 | file object: 0xffff948960f6dcb0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.jfm
pool: 0xffff948960f6ddc0 | file object: 0xffff948960f6de40 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff948960f6e0e0 | file object: 0xffff948960f6e160 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6e270 | file object: 0xffff948960f6e2f0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff948960f6e400 | file object: 0xffff948960f6e480 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6e590 | file object: 0xffff948960f6e610 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FB0D848F74F70BB2EAA93746D24D9749
pool: 0xffff948960f6e720 | file object: 0xffff948960f6e7a0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Internet Explorer\CacheStorage\edb.chk
pool: 0xffff948960f6e8b0 | file object: 0xffff948960f6e930 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6ea40 | file object: 0xffff948960f6eac0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\1\oUXCIu5dIDi_wTvHKUs7P-Fu9vM[1].js
pool: 0xffff948960f6ebd0 | file object: 0xffff948960f6ec50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6ed60 | file object: 0xffff948960f6ede0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f6f080 | file object: 0xffff948960f6f100 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6f210 | file object: 0xffff948960f6f290 | offsetby: 0x80
\$Directory
pool: 0xffff948960f6f3a0 | file object: 0xffff948960f6f420 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff948960f6f530 | file object: 0xffff948960f6f5b0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\Extensions\extensionSdks.en-US.cache
pool: 0xffff948960f6f6c0 | file object: 0xffff948960f6f740 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f6f850 | file object: 0xffff948960f6f8d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6f9e0 | file object: 0xffff948960f6fa60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f6fb70 | file object: 0xffff948960f6fbf0 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff948960f6fd00 | file object: 0xffff948960f6fd80 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff948960f70020 | file object: 0xffff948960f700a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f701b0 | file object: 0xffff948960f70230 | offsetby: 0x80
\Windows\System32\en-US\propsys.dll.mui
pool: 0xffff948960f70340 | file object: 0xffff948960f703c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f704d0 | file object: 0xffff948960f70550 | offsetby: 0x80
\Users\User\MicrosoftEdgeBackups\backups\MicrosoftEdgeBackup20200604\DatastoreBackup\edb00003.log
pool: 0xffff948960f70660 | file object: 0xffff948960f706e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f707f0 | file object: 0xffff948960f70870 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\InstalledTemplates.json
pool: 0xffff948960f70980 | file object: 0xffff948960f70a00 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\RecentlyInstalledTemplates.json
pool: 0xffff948960f70b10 | file object: 0xffff948960f70b90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f70ca0 | file object: 0xffff948960f70d20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f70e30 | file object: 0xffff948960f70eb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f71150 | file object: 0xffff948960f711d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\1033\MsEnvMui_Brand_708_0.dll
pool: 0xffff948960f712e0 | file object: 0xffff948960f71360 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f71470 | file object: 0xffff948960f714f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f71600 | file object: 0xffff948960f71680 | offsetby: 0x80
\$Directory
pool: 0xffff948960f71790 | file object: 0xffff948960f71810 | offsetby: 0x80
\$Directory
pool: 0xffff948960f71920 | file object: 0xffff948960f719a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f71ab0 | file object: 0xffff948960f71b30 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AppData\User\Default\CacheStorage\CacheStorage.edb
pool: 0xffff948960f71c40 | file object: 0xffff948960f71cc0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AppData\User\Default\CacheStorage\CacheStorage.jfm
pool: 0xffff948960f71dd0 | file object: 0xffff948960f71e50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f720f0 | file object: 0xffff948960f72170 | offsetby: 0x80
\$Directory
pool: 0xffff948960f72280 | file object: 0xffff948960f72300 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f72410 | file object: 0xffff948960f72490 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff948960f725a0 | file object: 0xffff948960f72620 | offsetby: 0x80
\Windows\System32\drivers\http.syssysကā
pool: 0xffff948960f72730 | file object: 0xffff948960f727b0 | offsetby: 0x80
\Users\User\MicrosoftEdgeBackups\backups\MicrosoftEdgeBackup20200604\DatastoreBackup\edb00003.log
pool: 0xffff948960f728c0 | file object: 0xffff948960f72940 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f72a50 | file object: 0xffff948960f72ad0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe
pool: 0xffff948960f72be0 | file object: 0xffff948960f72c60 | offsetby: 0x80
\Users\User\MicrosoftEdgeBackups\backups\MicrosoftEdgeBackup20200604\MicrosoftEdgeSettingsBackup.txt
pool: 0xffff948960f72d70 | file object: 0xffff948960f72df0 | offsetby: 0x80
\Users\User\MicrosoftEdgeBackups\backups\MicrosoftEdgeBackup20200604\DatastoreBackup\spartan.edb
pool: 0xffff948960f73090 | file object: 0xffff948960f73110 | offsetby: 0x80
\Users\User\MicrosoftEdgeBackups\backups\MicrosoftEdgeBackup20200604\DatastoreBackup\schema.txt
pool: 0xffff948960f73220 | file object: 0xffff948960f732a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f733b0 | file object: 0xffff948960f73430 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff948960f73540 | file object: 0xffff948960f735c0 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff948960f736d0 | file object: 0xffff948960f73750 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f73860 | file object: 0xffff948960f738e0 | offsetby: 0x80
\Users\User\MicrosoftEdgeBackups\backups\MicrosoftEdgeBackup20200604\DatastoreBackup\schema.txt
pool: 0xffff948960f739f0 | file object: 0xffff948960f73a70 | offsetby: 0x80
\Windows\System32\en-US\edgehtml.dll.mui
pool: 0xffff948960f73b80 | file object: 0xffff948960f73c00 | offsetby: 0x80
\Users\User\MicrosoftEdgeBackups\backups\MicrosoftEdgeBackup20200604\DatastoreBackup\spartan.pat
pool: 0xffff948960f73d10 | file object: 0xffff948960f73d90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f74030 | file object: 0xffff948960f740b0 | offsetby: 0x80
\Users\User\MicrosoftEdgeBackups\backups\MicrosoftEdgeBackup20200604\DatastoreBackup\spartan.edb
pool: 0xffff948960f741c0 | file object: 0xffff948960f74240 | offsetby: 0x80
\Windows\System32\en-US\propsys.dll.mui
pool: 0xffff948960f74350 | file object: 0xffff948960f743d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f744e0 | file object: 0xffff948960f74560 | offsetby: 0x80
\Windows\System32\drivers\http.syssysကā
pool: 0xffff948960f74670 | file object: 0xffff948960f746f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f74800 | file object: 0xffff948960f74880 | offsetby: 0x80
\Users\User\MicrosoftEdgeBackups\backups\MicrosoftEdgeBackup20200604\Protected - It is a violation of Windows Policy to modify\Backup.dat
pool: 0xffff948960f74990 | file object: 0xffff948960f74a10 | offsetby: 0x80
\Users\User\MicrosoftEdgeBackups\backups\MicrosoftEdgeBackup20200604\MicrosoftEdgeCookiesBackup.dat
pool: 0xffff948960f74b20 | file object: 0xffff948960f74ba0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f74cb0 | file object: 0xffff948960f74d30 | offsetby: 0x80
\Users\User\MicrosoftEdgeBackups\backups\MicrosoftEdgeBackup20200604\Protected - It is a violation of Windows Policy to modify\Backup.dat
pool: 0xffff948960f74e40 | file object: 0xffff948960f74ec0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff948960f75160 | file object: 0xffff948960f751e0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Internet Explorer\CacheStorage\edb.loglog
pool: 0xffff948960f752f0 | file object: 0xffff948960f75370 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f75480 | file object: 0xffff948960f75500 | offsetby: 0x80
\Windows\System32\MicrosoftEdgeCP.exe
pool: 0xffff948960f75610 | file object: 0xffff948960f75690 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f757a0 | file object: 0xffff948960f75820 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\2\jquery-2.1.1.min[1].js
pool: 0xffff948960f75930 | file object: 0xffff948960f759b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f75ac0 | file object: 0xffff948960f75b40 | offsetby: 0x80
\Device\HarddiskVolume2\Windows\Syste
pool: 0xffff948960f75c50 | file object: 0xffff948960f75cd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f75de0 | file object: 0xffff948960f75e60 | offsetby: 0x80
\Windows\System32\en-US\kernel32.dll.mui
pool: 0xffff948960f76100 | file object: 0xffff948960f76180 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\base\common\performance.js
pool: 0xffff948960f76290 | file object: 0xffff948960f76310 | offsetby: 0x80
\Windows\SystemResources\Chakra.dll.mun
pool: 0xffff948960f76420 | file object: 0xffff948960f764a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f765b0 | file object: 0xffff948960f76630 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f76740 | file object: 0xffff948960f767c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f768d0 | file object: 0xffff948960f76950 | offsetby: 0x80
\Windows\Fonts\seguisb.ttf
pool: 0xffff948960f76a60 | file object: 0xffff948960f76ae0 | offsetby: 0x80
\Windows\System32\KernelBase.dll
pool: 0xffff948960f76bf0 | file object: 0xffff948960f76c70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f76d80 | file object: 0xffff948960f76e00 | offsetby: 0x80
\Windows\SystemApps\Microsoft.MicrosoftEdge_8wekyb3d8bbwe
pool: 0xffff948960f770a0 | file object: 0xffff948960f77120 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f77230 | file object: 0xffff948960f772b0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code
pool: 0xffff948960f773c0 | file object: 0xffff948960f77440 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f77550 | file object: 0xffff948960f775d0 | offsetby: 0x80
\Windows\Fonts\segoeui.ttf
pool: 0xffff948960f776e0 | file object: 0xffff948960f77760 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff948960f77870 | file object: 0xffff948960f778f0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\2\kernel-a12e261d[1].js
pool: 0xffff948960f77a00 | file object: 0xffff948960f77a80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f77b90 | file object: 0xffff948960f77c10 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\2\ntp[1].htm
pool: 0xffff948960f77d20 | file object: 0xffff948960f77da0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\MicrosoftEdge\User\Default\AppCache\2A9CWP4O\2\kernel-791a5050[1].css
pool: 0xffff948960f78040 | file object: 0xffff948960f780c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f781d0 | file object: 0xffff948960f78250 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Internet Explorer\CacheStorage\edbtmp.log
pool: 0xffff948960f78360 | file object: 0xffff948960f783e0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\chrome_100_percent.pak
pool: 0xffff948960f784f0 | file object: 0xffff948960f78570 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\v8_context_snapshot.bin
pool: 0xffff948960f78680 | file object: 0xffff948960f78700 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\paths.js
pool: 0xffff948960f78810 | file object: 0xffff948960f78890 | offsetby: 0x80
\Windows\System32\en-US\propsys.dll.mui
pool: 0xffff948960f789a0 | file object: 0xffff948960f78a20 | offsetby: 0x80
\Windows\System32\OpenWith.exe
pool: 0xffff948960f78b30 | file object: 0xffff948960f78bb0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\ffmpeg.dll
pool: 0xffff948960f78cc0 | file object: 0xffff948960f78d40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f78e50 | file object: 0xffff948960f78ed0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f79170 | file object: 0xffff948960f791f0 | offsetby: 0x80
\Windows\System32\msimg32.dll
pool: 0xffff948960f79300 | file object: 0xffff948960f79380 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f79490 | file object: 0xffff948960f79510 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f79620 | file object: 0xffff948960f796a0 | offsetby: 0x80
\Windows\System32\en-US\mswsock.dll.mui
pool: 0xffff948960f797b0 | file object: 0xffff948960f79830 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f79940 | file object: 0xffff948960f799c0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\natives_blob.bin
pool: 0xffff948960f79ad0 | file object: 0xffff948960f79b50 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\chrome_200_percent.pak
pool: 0xffff948960f79c60 | file object: 0xffff948960f79ce0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\locales\en-US.pak
pool: 0xffff948960f79df0 | file object: 0xffff948960f79e70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f7a110 | file object: 0xffff948960f7a190 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources.pak
pool: 0xffff948960f7a2a0 | file object: 0xffff948960f7a320 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\icudtl.dat
pool: 0xffff948960f7a430 | file object: 0xffff948960f7a4b0 | offsetby: 0x80
\Windows\System32\d3d9.dll
pool: 0xffff948960f7a5c0 | file object: 0xffff948960f7a640 | offsetby: 0x80
\$Directory
pool: 0xffff948960f7a750 | file object: 0xffff948960f7a7d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\chrome_100_percent.pak
pool: 0xffff948960f7a8e0 | file object: 0xffff948960f7a960 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\package.json
pool: 0xffff948960f7aa70 | file object: 0xffff948960f7aaf0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f7ac00 | file object: 0xffff948960f7ac80 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\locales\en-US.pak
pool: 0xffff948960f7ad90 | file object: 0xffff948960f7ae10 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\base\node\languagePacks.js
pool: 0xffff948960f7b0b0 | file object: 0xffff948960f7b130 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\chrome_200_percent.pak
pool: 0xffff948960f7b240 | file object: 0xffff948960f7b2c0 | offsetby: 0x80
\Windows\System32\usp10.dll
pool: 0xffff948960f7b3d0 | file object: 0xffff948960f7b450 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\bootstrap.js
pool: 0xffff948960f7b560 | file object: 0xffff948960f7b5e0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\loader.js
pool: 0xffff948960f7b6f0 | file object: 0xffff948960f7b770 | offsetby: 0x80
\Windows\System32\msmpeg2vdec.dll
pool: 0xffff948960f7b880 | file object: 0xffff948960f7b900 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f7ba10 | file object: 0xffff948960f7ba90 | offsetby: 0x80
\Windows\System32\msvproc.dll
pool: 0xffff948960f7bba0 | file object: 0xffff948960f7bc20 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar
pool: 0xffff948960f7bd30 | file object: 0xffff948960f7bdb0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\Code.exe
pool: 0xffff948960f7c050 | file object: 0xffff948960f7c0d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f7c1e0 | file object: 0xffff948960f7c260 | offsetby: 0x80
\Windows\System32\ddraw.dll
pool: 0xffff948960f7c370 | file object: 0xffff948960f7c3f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f7c500 | file object: 0xffff948960f7c580 | offsetby: 0x80
\Windows\System32\drivers\etc
pool: 0xffff948960f7c690 | file object: 0xffff948960f7c710 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Backups\workspaces.json
pool: 0xffff948960f7c820 | file object: 0xffff948960f7c8a0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\code\electron-main\main.nls.js
pool: 0xffff948960f7c9b0 | file object: 0xffff948960f7ca30 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\main.nls-c8d5b9a923ec5badcd1b653fd8ae38d0.code
pool: 0xffff948960f7cb40 | file object: 0xffff948960f7cbc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f7ccd0 | file object: 0xffff948960f7cd50 | offsetby: 0x80
\Windows\Prefetch\CODE.EXE-BFFF9074.pf
pool: 0xffff948960f7ce60 | file object: 0xffff948960f7cee0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f7d180 | file object: 0xffff948960f7d200 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-5c7cf223fa773d9efcfaee526473aa7e.code
pool: 0xffff948960f7d310 | file object: 0xffff948960f7d390 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f7d4a0 | file object: 0xffff948960f7d520 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f7d630 | file object: 0xffff948960f7d6b0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\icudtl.dat
pool: 0xffff948960f7d7c0 | file object: 0xffff948960f7d840 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\product.json
pool: 0xffff948960f7d950 | file object: 0xffff948960f7d9d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\bootstrap-amd.js
pool: 0xffff948960f7dae0 | file object: 0xffff948960f7db60 | offsetby: 0x80
\Windows\System32\mfperfhelper.dll
pool: 0xffff948960f7dc70 | file object: 0xffff948960f7dcf0 | offsetby: 0x80
\Windows\System32\en-US\user32.dll.mui
pool: 0xffff948960f7de00 | file object: 0xffff948960f7de80 | offsetby: 0x80
fxp㗽璝㩀ǖᬸ鋗瓤㩀ǖ￿
pool: 0xffff948960f7e120 | file object: 0xffff948960f7e1a0 | offsetby: 0x80
\Users\User\.vscode\argv.json
pool: 0xffff948960f7e2b0 | file object: 0xffff948960f7e330 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar
pool: 0xffff948960f7e440 | file object: 0xffff948960f7e4c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f7e5d0 | file object: 0xffff948960f7e650 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f7e760 | file object: 0xffff948960f7e7e0 | offsetby: 0x80
\Windows\Prefetch\COMPPKGSRV.EXE-21DBED9C.pf
pool: 0xffff948960f7e8f0 | file object: 0xffff948960f7e970 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_1
pool: 0xffff948960f7ea80 | file object: 0xffff948960f7eb00 | offsetby: 0x80
\Users\User\Desktop\desktop.ini
pool: 0xffff948960f7ec10 | file object: 0xffff948960f7ec90 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\User\workspaceStorage\9aaf8eb62d8c4c262a03e9f15b0d3356\state.vscdb
pool: 0xffff948960f7eda0 | file object: 0xffff948960f7ee20 | offsetby: 0x80
\Windows\Fonts\courbd.ttf
pool: 0xffff948960f7f0c0 | file object: 0xffff948960f7f140 | offsetby: 0x80
\Windows\Fonts\courbi.ttf
pool: 0xffff948960f7f250 | file object: 0xffff948960f7f2d0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\GPUCache\data_1
pool: 0xffff948960f7f3e0 | file object: 0xffff948960f7f460 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\machineid
pool: 0xffff948960f7f570 | file object: 0xffff948960f7f5f0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-601a6eb6dfda8c7649465ad9d45fbc28.code
pool: 0xffff948960f7f700 | file object: 0xffff948960f7f780 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f7f890 | file object: 0xffff948960f7f910 | offsetby: 0x80
\Windows\Fonts\consolai.ttf
pool: 0xffff948960f7fa20 | file object: 0xffff948960f7faa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f7fbb0 | file object: 0xffff948960f7fc30 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programsh2txyewy\LocalState\DeviceSearchCache\ate\D
pool: 0xffff948960f7fd40 | file object: 0xffff948960f7fdc0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-f9f8fe1ad3207828cab03db8741c351e.code
pool: 0xffff948960f80060 | file object: 0xffff948960f800e0 | offsetby: 0x80
\Windows\Fonts\consolaz.ttf
pool: 0xffff948960f801f0 | file object: 0xffff948960f80270 | offsetby: 0x80
\Users\User\OneDrive\desktop.ini
pool: 0xffff948960f80380 | file object: 0xffff948960f80400 | offsetby: 0x80
\Windows\Fonts\cour.ttf
pool: 0xffff948960f80510 | file object: 0xffff948960f80590 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f806a0 | file object: 0xffff948960f80720 | offsetby: 0x80
\Windows\Prefetch\CODE.EXE-BFFF907A.pf
pool: 0xffff948960f80830 | file object: 0xffff948960f808b0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\rapid_render.json
pool: 0xffff948960f809c0 | file object: 0xffff948960f80a40 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\paths-4f5b6f0e6f927b1f32e4cb986f4bd1fe.code
pool: 0xffff948960f80b50 | file object: 0xffff948960f80bd0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f80ce0 | file object: 0xffff948960f80d60 | offsetby: 0x80
\Windows\Fonts\consolab.ttf
pool: 0xffff948960f80e70 | file object: 0xffff948960f80ef0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\User
pool: 0xffff948960f81000 | file object: 0xffff948960f81080 | offsetby: 0x80
\$Directory
pool: 0xffff948960f81190 | file object: 0xffff948960f81210 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f81320 | file object: 0xffff948960f813a0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f814b0 | file object: 0xffff948960f81530 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\xterm-0970af7ae4a9084d83530ab734ef934a.code
pool: 0xffff948960f81640 | file object: 0xffff948960f816c0 | offsetby: 0x80
\Windows\Fonts\consola.ttf
pool: 0xffff948960f817d0 | file object: 0xffff948960f81850 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f81960 | file object: 0xffff948960f819e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\dbcs-codec-dd44da14945a0396f60279c5e45f363f.code
pool: 0xffff948960f81af0 | file object: 0xffff948960f81b70 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-869643c90969512fd4749cac055686c9.code
pool: 0xffff948960f81c80 | file object: 0xffff948960f81d00 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Cookies
pool: 0xffff948960f81e10 | file object: 0xffff948960f81e90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f82130 | file object: 0xffff948960f821b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f822c0 | file object: 0xffff948960f82340 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.Pb378ec07#\dcde508c400c9f52248abc5006282dcb\Microsoft.PowerShell.ConsoleHost.ni.dll.aux
pool: 0xffff948960f82450 | file object: 0xffff948960f824d0 | offsetby: 0x80
\Windows\Fonts\couri.ttf
pool: 0xffff948960f825e0 | file object: 0xffff948960f82660 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\xterm-addon-unicode11-e765092862f7ede2d6f35bfc41fd420b.code
pool: 0xffff948960f82770 | file object: 0xffff948960f827f0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff948960f82900 | file object: 0xffff948960f82980 | offsetby: 0x80
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0212~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff948960f82a90 | file object: 0xffff948960f82b10 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\CorrelationContextManager-00527f8e404eb4a4643c1cef97335203.code
pool: 0xffff948960f82c20 | file object: 0xffff948960f82ca0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f82db0 | file object: 0xffff948960f82e30 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\v8_context_snapshot.bin
pool: 0xffff948960f84160 | file object: 0xffff948960f841e0 | offsetby: 0x80
\Windows\Prefetch\CMD.EXE-4A81B364.pf
pool: 0xffff948960f842f0 | file object: 0xffff948960f84370 | offsetby: 0x80
\Windows\System32\en-US\Windows.Security.Authentication.Web.Core.dll.mui
pool: 0xffff948960f84480 | file object: 0xffff948960f84500 | offsetby: 0x80
\Users\User\AppData\Local\nganhkhoa\lpus\ntkrnlmp.pdb\E7477A03A7078050CB7936455CE346B5\1\ntkrnlmp.pdb
pool: 0xffff948960f84610 | file object: 0xffff948960f84690 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\07CEF2F654E3ED6050FFC9B6EB844250_BACC6CD2B29F18349081C9FD2343833B
pool: 0xffff948960f847a0 | file object: 0xffff948960f84820 | offsetby: 0x80
\Windows\System32\BthAvctpSvc.dll
pool: 0xffff948960f84930 | file object: 0xffff948960f849b0 | offsetby: 0x80
\Windows\System32\NPSMDesktopProvider.dll
pool: 0xffff948960f84ac0 | file object: 0xffff948960f84b40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f84c50 | file object: 0xffff948960f84cd0 | offsetby: 0x80
\Windows\System32\en-US\combase.dll.mui
pool: 0xffff948960f84de0 | file object: 0xffff948960f84e60 | offsetby: 0x80
\$Directory
pool: 0xffff948960f85100 | file object: 0xffff948960f85180 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.Foundation.winmd
pool: 0xffff948960f85290 | file object: 0xffff948960f85310 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f85420 | file object: 0xffff948960f854a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f855b0 | file object: 0xffff948960f85630 | offsetby: 0x80
\Windows\System32\en-US\BthAvctpSvc.dll.mui
pool: 0xffff948960f85740 | file object: 0xffff948960f857c0 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.UI.winmd
pool: 0xffff948960f858d0 | file object: 0xffff948960f85950 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f85a60 | file object: 0xffff948960f85ae0 | offsetby: 0x80
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package02~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff948960f85bf0 | file object: 0xffff948960f85c70 | offsetby: 0x80
\Program Files\Windows Defender\shellext.dll
pool: 0xffff948960f85d80 | file object: 0xffff948960f85e00 | offsetby: 0x80
\Program Files\Windows Defender\en-US\shellext.dll.mui
pool: 0xffff948960f860a0 | file object: 0xffff948960f86120 | offsetby: 0x80
\Program Files\Windows Defender\EppManifest.dll
pool: 0xffff948960f86230 | file object: 0xffff948960f862b0 | offsetby: 0x80
\Windows\System32\en-US\twinapi.appcore.dll.mui
pool: 0xffff948960f86550 | file object: 0xffff948960f865d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f866e0 | file object: 0xffff948960f86760 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f86870 | file object: 0xffff948960f868f0 | offsetby: 0x80
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Desktop-Required-Package0417~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff948960f86a00 | file object: 0xffff948960f86a80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f86b90 | file object: 0xffff948960f86c10 | offsetby: 0x80
\Windows\System32\en-US\combase.dll.mui
pool: 0xffff948960f86d20 | file object: 0xffff948960f86da0 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff948960f87040 | file object: 0xffff948960f870c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f871d0 | file object: 0xffff948960f87250 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff948960f87360 | file object: 0xffff948960f873e0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff948960f874f0 | file object: 0xffff948960f87570 | offsetby: 0x80
\$Directory
pool: 0xffff948960f87680 | file object: 0xffff948960f87700 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f87810 | file object: 0xffff948960f87890 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-B12DB959.pf
pool: 0xffff948960f879a0 | file object: 0xffff948960f87a20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f87b30 | file object: 0xffff948960f87bb0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\e090382611d737acd87fe5fd655d92a3\~PC\ClassLibrary\cache.bin
pool: 0xffff948960f87cc0 | file object: 0xffff948960f87d40 | offsetby: 0x80
\Windows\Fonts\simsun.ttc
pool: 0xffff948960f87e50 | file object: 0xffff948960f87ed0 | offsetby: 0x80
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Desktop-Required-Package~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff948960f88170 | file object: 0xffff948960f881f0 | offsetby: 0x80
\Windows\SystemResources\imageres.dll.mun
pool: 0xffff948960f88300 | file object: 0xffff948960f88380 | offsetby: 0x80
\Windows\System32\microsoft-windows-kernel-power-events.dll
pool: 0xffff948960f88620 | file object: 0xffff948960f886a0 | offsetby: 0x80
\Windows\System32\en-US\microsoft-windows-kernel-power-events.dll.mui
pool: 0xffff948960f887b0 | file object: 0xffff948960f88830 | offsetby: 0x80
\Windows\WinSxS\FileMaps\$$_system32_21f9a9c4a2f8b514.cdf-ms
pool: 0xffff948960f88940 | file object: 0xffff948960f889c0 | offsetby: 0x80
\Windows\System32\svchost.exe
pool: 0xffff948960f88ad0 | file object: 0xffff948960f88b50 | offsetby: 0x80
\Windows\System32\cmd.exe
pool: 0xffff948960f88c60 | file object: 0xffff948960f88ce0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_cmd_exe
pool: 0xffff948960f88df0 | file object: 0xffff948960f88e70 | offsetby: 0x80
\Windows\System32
pool: 0xffff948960f89110 | file object: 0xffff948960f89190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f892a0 | file object: 0xffff948960f89320 | offsetby: 0x80
\Windows\System32\en-US\shell32.dll.mui
pool: 0xffff948960f89430 | file object: 0xffff948960f894b0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\ProjectTemplatesCache_{00000000-0000-0000-0000-000000000000}\cache.bin
pool: 0xffff948960f895c0 | file object: 0xffff948960f89640 | offsetby: 0x80
\Windows\System32\en-US\StartTileData.dll.mui
pool: 0xffff948960f89750 | file object: 0xffff948960f897d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f898e0 | file object: 0xffff948960f89960 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\AppIconCache\100\{1AC14E77-02E7-4E5D-B744-2EB1AE5198B7}_cmd_exe
pool: 0xffff948960f89a70 | file object: 0xffff948960f89af0 | offsetby: 0x80
\Windows\Fonts\seguisb.ttf
pool: 0xffff948960f89c00 | file object: 0xffff948960f89c80 | offsetby: 0x80
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Desktop-Required-Package04114~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff948960f89d90 | file object: 0xffff948960f89e10 | offsetby: 0x80
\Windows\Prefetch\SVCHOST.EXE-DCBDF9F5.pf
pool: 0xffff948960f8a0b0 | file object: 0xffff948960f8a130 | offsetby: 0x80
\Windows\System32\credui.dll
pool: 0xffff948960f8a240 | file object: 0xffff948960f8a2c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f8a3d0 | file object: 0xffff948960f8a450 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f8a560 | file object: 0xffff948960f8a5e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\INetCache\MSIMGSIZ.DAT
pool: 0xffff948960f8a6f0 | file object: 0xffff948960f8a770 | offsetby: 0x80
\Windows\SystemResources\edgehtml.dll.mun
pool: 0xffff948960f8a880 | file object: 0xffff948960f8a900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f8aa10 | file object: 0xffff948960f8aa90 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\System Tools\Command Prompt.lnk
pool: 0xffff948960f8aba0 | file object: 0xffff948960f8ac20 | offsetby: 0x80
\ProgramData\Microsoft\Windows\ClipSVC\tokens.dat
pool: 0xffff948960f8ad30 | file object: 0xffff948960f8adb0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{2654B675-D6DB-7D88-F6AB-DF25290F3579}
pool: 0xffff948960f8b050 | file object: 0xffff948960f8b0d0 | offsetby: 0x80
\Windows\System32
pool: 0xffff948960f8b1e0 | file object: 0xffff948960f8b260 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f8b370 | file object: 0xffff948960f8b3f0 | offsetby: 0x80
\Windows\System32\en-US\acppage.dll.mui
pool: 0xffff948960f8b500 | file object: 0xffff948960f8b580 | offsetby: 0x80
\$Directory
pool: 0xffff948960f8b690 | file object: 0xffff948960f8b710 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\a11787747f922a29e9efbe9aa6f1da92\~PC\XUnitTest\cache.bin
pool: 0xffff948960f8b820 | file object: 0xffff948960f8b8a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f8b9b0 | file object: 0xffff948960f8ba30 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff948960f8bb40 | file object: 0xffff948960f8bbc0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{0414A7DE-798D-5055-3B34-5137370957E5}
pool: 0xffff948960f8bcd0 | file object: 0xffff948960f8bd50 | offsetby: 0x80
\$Directory
pool: 0xffff948960f8be60 | file object: 0xffff948960f8bee0 | offsetby: 0x80
\Windows\System32\acppage.dll
pool: 0xffff948960f8c180 | file object: 0xffff948960f8c200 | offsetby: 0x80
\Windows\System32\en-US\svchost.exe.mui
pool: 0xffff948960f8c310 | file object: 0xffff948960f8c390 | offsetby: 0x80
\$Directory
pool: 0xffff948960f8c4a0 | file object: 0xffff948960f8c520 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_AutoGenerated_{4BEA08D7-78E4-19AC-6B39-FA0525BA34FB}
pool: 0xffff948960f8c630 | file object: 0xffff948960f8c6b0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\a11787747f922a29e9efbe9aa6f1da92\~PC\NUnitTest\cache.bin
pool: 0xffff948960f8c7c0 | file object: 0xffff948960f8c840 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\a11787747f922a29e9efbe9aa6f1da92\~PC\MSTest\cache.bin
pool: 0xffff948960f8c950 | file object: 0xffff948960f8c9d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f8cae0 | file object: 0xffff948960f8cb60 | offsetby: 0x80
\Windows\System32\en-US\StartTileData.dll.mui
pool: 0xffff948960f8cc70 | file object: 0xffff948960f8ccf0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\85955c5c698bd5712e1a4326d2cfc432\~PC\ClassLibrary\cache.bin
pool: 0xffff948960f8ce00 | file object: 0xffff948960f8ce80 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\85955c5c698bd5712e1a4326d2cfc432\~PC\ConsoleApplication\cache.bin
pool: 0xffff948960f8d120 | file object: 0xffff948960f8d1a0 | offsetby: 0x80
\Windows\System32\ClipSVC.dll
pool: 0xffff948960f8d2b0 | file object: 0xffff948960f8d330 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\167bf991e0a6dd384ca6600358c8659b\~PC\ProjectTemplates\cache.bin
pool: 0xffff948960f8d440 | file object: 0xffff948960f8d4c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f8d5d0 | file object: 0xffff948960f8d650 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\1c2940c936b2a074787f8bf299141fc9\~PC\Web\cache.bin
pool: 0xffff948960f8d760 | file object: 0xffff948960f8d7e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f8d8f0 | file object: 0xffff948960f8d970 | offsetby: 0x80
\Windows\System32\consent.exe
pool: 0xffff948960f8da80 | file object: 0xffff948960f8db00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f8dc10 | file object: 0xffff948960f8dc90 | offsetby: 0x80
\Windows\System32\conhost.exe
pool: 0xffff948960f8dda0 | file object: 0xffff948960f8de20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f8e0c0 | file object: 0xffff948960f8e140 | offsetby: 0x80
\Windows\System32\en-US\AppResolver.dll.mui
pool: 0xffff948960f8e250 | file object: 0xffff948960f8e2d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f8e3e0 | file object: 0xffff948960f8e460 | offsetby: 0x80
\Windows\System32\en-US\consent.exe.mui
pool: 0xffff948960f8e570 | file object: 0xffff948960f8e5f0 | offsetby: 0x80
\Windows
pool: 0xffff948960f8e700 | file object: 0xffff948960f8e780 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f8e890 | file object: 0xffff948960f8e910 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.OneConnect_8wekyb3d8bbwe\LocalState\DiagOutputDir\OneConnect.DiscoveryNotificationTask06_04_00_16_20_5542.txt.~tmp
pool: 0xffff948960f8ea20 | file object: 0xffff948960f8eaa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f8ebb0 | file object: 0xffff948960f8ec30 | offsetby: 0x80
\Windows\System32\appinfoext.dll
pool: 0xffff948960f8ed40 | file object: 0xffff948960f8edc0 | offsetby: 0x80
\Windows\System32\cmd.exe
pool: 0xffff948960f8f060 | file object: 0xffff948960f8f0e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f8f1f0 | file object: 0xffff948960f8f270 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\{000D8C80-140B-4AC8-996E-756FFA80D400}\cache.bin
pool: 0xffff948960f8f380 | file object: 0xffff948960f8f400 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff948960f8f510 | file object: 0xffff948960f8f590 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\Content\6BADA8974A10C4BD62CC921D13E43B18_C9FB72B5AE80778A08024D8B0FDECC6F
pool: 0xffff948960f8f6a0 | file object: 0xffff948960f8f720 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f8f830 | file object: 0xffff948960f8f8b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f8f9c0 | file object: 0xffff948960f8fa40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f8fb50 | file object: 0xffff948960f8fbd0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\STemplate\.CacheInputsFingerprint
pool: 0xffff948960f8fce0 | file object: 0xffff948960f8fd60 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\8a52b313c586a7934d328b7f479e866e\~PC\Winforms\cache.bin
pool: 0xffff948960f8fe70 | file object: 0xffff948960f8fef0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f90000 | file object: 0xffff948960f90080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f90190 | file object: 0xffff948960f90210 | offsetby: 0x80
\Windows\SystemResources\imageres.dll.mun
pool: 0xffff948960f90320 | file object: 0xffff948960f903a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f904b0 | file object: 0xffff948960f90530 | offsetby: 0x80
\Windows\System32\appinfo.dll
pool: 0xffff948960f90640 | file object: 0xffff948960f906c0 | offsetby: 0x80
\Windows\System32\en-US\appinfo.dll.mui
pool: 0xffff948960f907d0 | file object: 0xffff948960f90850 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f90960 | file object: 0xffff948960f909e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f90af0 | file object: 0xffff948960f90b70 | offsetby: 0x80
\$Directory
pool: 0xffff948960f90c80 | file object: 0xffff948960f90d00 | offsetby: 0x80
\Users\User\Pictures
pool: 0xffff948960f90e10 | file object: 0xffff948960f90e90 | offsetby: 0x80
\Users\User\Videos
pool: 0xffff948960f91130 | file object: 0xffff948960f911b0 | offsetby: 0x80
\Users\User\Music
pool: 0xffff948960f912c0 | file object: 0xffff948960f91340 | offsetby: 0x80
\Users\User\Documents
pool: 0xffff948960f91450 | file object: 0xffff948960f914d0 | offsetby: 0x80
\Users\User\Documents
pool: 0xffff948960f915e0 | file object: 0xffff948960f91660 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AC\Microsoft\CryptnetUrlCache\Content\7423F88C7F265F0DEFC08EA88C3BDE45_D975BBA8033175C8D112023D8A7A8AD6
pool: 0xffff948960f91770 | file object: 0xffff948960f917f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f91900 | file object: 0xffff948960f91980 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f91a90 | file object: 0xffff948960f91b10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f91c20 | file object: 0xffff948960f91ca0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f91db0 | file object: 0xffff948960f91e30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f920d0 | file object: 0xffff948960f92150 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f92260 | file object: 0xffff948960f922e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f923f0 | file object: 0xffff948960f92470 | offsetby: 0x80
\$Directory
pool: 0xffff948960f92580 | file object: 0xffff948960f92600 | offsetby: 0x80
\Windows\System32\drivers\etc
pool: 0xffff948960f92710 | file object: 0xffff948960f92790 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha\target\release
pool: 0xffff948960f928a0 | file object: 0xffff948960f92920 | offsetby: 0x80
\Windows\System32\SearchFilterHost.exe
pool: 0xffff948960f92a30 | file object: 0xffff948960f92ab0 | offsetby: 0x80
\Windows\System32\en-US\Conhost.exe.mui
pool: 0xffff948960f92bc0 | file object: 0xffff948960f92c40 | offsetby: 0x80
\$Directory
pool: 0xffff948960f92d50 | file object: 0xffff948960f92dd0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f93070 | file object: 0xffff948960f930f0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f93200 | file object: 0xffff948960f93280 | offsetby: 0x80
\Users\User\Videos
pool: 0xffff948960f93390 | file object: 0xffff948960f93410 | offsetby: 0x80
\$Directory
pool: 0xffff948960f93520 | file object: 0xffff948960f935a0 | offsetby: 0x80
\Users\User\Pictures
pool: 0xffff948960f936b0 | file object: 0xffff948960f93730 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\Cookies-journal
pool: 0xffff948960f93840 | file object: 0xffff948960f938c0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\343a63b412a9abd282ba753357c2270e\~IC\ItemTemplates\cache.bin
pool: 0xffff948960f939d0 | file object: 0xffff948960f93a50 | offsetby: 0x80
\Users\User\Music
pool: 0xffff948960f93b60 | file object: 0xffff948960f93be0 | offsetby: 0x80
\Windows\Media\Windows Background.wav
pool: 0xffff948960f93cf0 | file object: 0xffff948960f93d70 | offsetby: 0x80
\Windows\System32\en-US\propsys.dll.mui
pool: 0xffff948960f94010 | file object: 0xffff948960f94090 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f941a0 | file object: 0xffff948960f94220 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f94330 | file object: 0xffff948960f943b0 | offsetby: 0x80
\Windows\System32\en-US\MMDevAPI.dll.mui
pool: 0xffff948960f944c0 | file object: 0xffff948960f94540 | offsetby: 0x80
\Windows\System32\msacm32.dll
pool: 0xffff948960f94650 | file object: 0xffff948960f946d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\0DA515F703BB9B49479E8697ADB0B955_7DC3E633EDFAEFC3AA3C99552548EC2F
pool: 0xffff948960f947e0 | file object: 0xffff948960f94860 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\b698fa2979e58e417951633f56146c06\~IC\ItemTemplates\cache.bin
pool: 0xffff948960f94970 | file object: 0xffff948960f949f0 | offsetby: 0x80
\Windows\System32\sru\SRU00083.l
pool: 0xffff948960f94b00 | file object: 0xffff948960f94b80 | offsetby: 0x80
\Windows\System32\ksuser.dll
pool: 0xffff948960f94c90 | file object: 0xffff948960f94d10 | offsetby: 0x80
\Windows\System32\amsiproxy.dll
pool: 0xffff948960f94e20 | file object: 0xffff948960f94ea0 | offsetby: 0x80
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Desktop-Required-Package0411~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff948960f95140 | file object: 0xffff948960f951c0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\5dea1430b5836eb20d1ea418a91544d2\~IC\ItemTemplates\cache.bin
pool: 0xffff948960f952d0 | file object: 0xffff948960f95350 | offsetby: 0x80
\Windows\System32\midimap.dll
pool: 0xffff948960f95460 | file object: 0xffff948960f954e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\13F9AF7ABC8F7002E9B598823E035284
pool: 0xffff948960f955f0 | file object: 0xffff948960f95670 | offsetby: 0x80
\$Directory
pool: 0xffff948960f95780 | file object: 0xffff948960f95800 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\186250761FB2531AD967DA21310BB8AC
pool: 0xffff948960f95910 | file object: 0xffff948960f95990 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1BB09BEEC155258835C193A7AA85AA5B_17B04A9C5EEFD79287A31F83130555BB
pool: 0xffff948960f95aa0 | file object: 0xffff948960f95b20 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\e5af810da30b16145a8ef1f45ea390f0\~IC\ItemTemplates\cache.bin
pool: 0xffff948960f95c30 | file object: 0xffff948960f95cb0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\c972cb2c0310041f1e0ee1b563befe90\~IC\ItemTemplates\cache.bin
pool: 0xffff948960f95dc0 | file object: 0xffff948960f95e40 | offsetby: 0x80
\$Directory
pool: 0xffff948960f960e0 | file object: 0xffff948960f96160 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.OneConnect_8wekyb3d8bbwe\LocalState\DiagOutputDir\OneConnect.DiscoveryNotificationTask06_04_00_19_50_8087.txt.~tmp
pool: 0xffff948960f96270 | file object: 0xffff948960f962f0 | offsetby: 0x80
\Windows\System32\cmdext.dll
pool: 0xffff948960f96400 | file object: 0xffff948960f96480 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1BB09BEEC155258835C193A7AA85AA5B_54B9C2E5AF515F758C35CE8F7FCAD4EA
pool: 0xffff948960f96590 | file object: 0xffff948960f96610 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\VTC\18afd58a3f60aa4e11fcd809cd4ee3be\~IC\ItemTemplates\cache.bin
pool: 0xffff948960f96720 | file object: 0xffff948960f967a0 | offsetby: 0x80
\Windows\System32\en-US\wdmaud.drv.mui
pool: 0xffff948960f968b0 | file object: 0xffff948960f96930 | offsetby: 0x80
\Windows\System32\msacm32.drv
pool: 0xffff948960f96a40 | file object: 0xffff948960f96ac0 | offsetby: 0x80
\Windows\System32\credui.dll
pool: 0xffff948960f96bd0 | file object: 0xffff948960f96c50 | offsetby: 0x80
\Windows\System32\wdmaud.drv
pool: 0xffff948960f96d60 | file object: 0xffff948960f96de0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f97080 | file object: 0xffff948960f97100 | offsetby: 0x80
\Windows\System32\wincredui.dll
pool: 0xffff948960f97210 | file object: 0xffff948960f97290 | offsetby: 0x80
\$Directory
pool: 0xffff948960f973a0 | file object: 0xffff948960f97420 | offsetby: 0x80
\Windows\Media\Windows User Account Control.wav
pool: 0xffff948960f97530 | file object: 0xffff948960f975b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1BB09BEEC155258835C193A7AA85AA5B_5954DA08607BE16859B1757FC58A3B30
pool: 0xffff948960f976c0 | file object: 0xffff948960f97740 | offsetby: 0x80
\Windows\System32\en-US\Windows.UI.CredDialogController.dll.mui
pool: 0xffff948960f97850 | file object: 0xffff948960f978d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f979e0 | file object: 0xffff948960f97a60 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1BB09BEEC155258835C193A7AA85AA5B_929C5381CC492F4D7F6BAB07368D179D
pool: 0xffff948960f97b70 | file object: 0xffff948960f97bf0 | offsetby: 0x80
\Windows\System32
pool: 0xffff948960f97d00 | file object: 0xffff948960f97d80 | offsetby: 0x80
\Windows\SystemResources\Windows.UI.Cred\pris\Windows.UI.Cred.en-US.pri
pool: 0xffff948960f98020 | file object: 0xffff948960f980a0 | offsetby: 0x80
\Windows\System32\Windows.Internal.UI.Logon.ProxyStub.dll
pool: 0xffff948960f981b0 | file object: 0xffff948960f98230 | offsetby: 0x80
\Windows\System32\Windows.UI.CredDialogController.dll
pool: 0xffff948960f98340 | file object: 0xffff948960f983c0 | offsetby: 0x80
\Windows\System32\sru\SRU00084.l
pool: 0xffff948960f984d0 | file object: 0xffff948960f98550 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f98660 | file object: 0xffff948960f986e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f987f0 | file object: 0xffff948960f98870 | offsetby: 0x80
\Windows\rescache\_merged\4184642002\2745013878.pri
pool: 0xffff948960f98980 | file object: 0xffff948960f98a00 | offsetby: 0x80
\$Directory
pool: 0xffff948960f98b10 | file object: 0xffff948960f98b90 | offsetby: 0x80
\Windows\System32\consent.exe
pool: 0xffff948960f98ca0 | file object: 0xffff948960f98d20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f98e30 | file object: 0xffff948960f98eb0 | offsetby: 0x80
\Windows\System32\audiodg.exe
pool: 0xffff948960f99150 | file object: 0xffff948960f991d0 | offsetby: 0x80
\Windows\System32\BOOTVID.DLL
pool: 0xffff948960f992e0 | file object: 0xffff948960f99360 | offsetby: 0x80
\Windows\System32\drivers\dxgmms2.sys
pool: 0xffff948960f99470 | file object: 0xffff948960f994f0 | offsetby: 0x80
\Windows\SystemResources\Windows.UI.Cred\Windows.UI.Cred.pri
pool: 0xffff948960f99600 | file object: 0xffff948960f99680 | offsetby: 0x80
\Program Files\Common Files\microsoft shared\ink\tiptsf.dll
pool: 0xffff948960f99790 | file object: 0xffff948960f99810 | offsetby: 0x80
\Windows\System32\drivers\http.sys
pool: 0xffff948960f99920 | file object: 0xffff948960f999a0 | offsetby: 0x80
\Windows\Prefetch\AUDIODG.EXE-BDFD3029.pf
pool: 0xffff948960f99ab0 | file object: 0xffff948960f99b30 | offsetby: 0x80
\Windows\System32\drivers\mrxsmb.sys
pool: 0xffff948960f99c40 | file object: 0xffff948960f99cc0 | offsetby: 0x80
\Windows\System32\wincredui.dll
pool: 0xffff948960f99dd0 | file object: 0xffff948960f99e50 | offsetby: 0x80
\Windows\System32\Windows.UI.Cred.dll
pool: 0xffff948960f9a0f0 | file object: 0xffff948960f9a170 | offsetby: 0x80
\Windows\System32\en-US\audiodg.exe.mui
pool: 0xffff948960f9a280 | file object: 0xffff948960f9a300 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1BB09BEEC155258835C193A7AA85AA5B_D64D9286B9E13D1E44123DEB4848F19D
pool: 0xffff948960f9a410 | file object: 0xffff948960f9a490 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1E11E75149C17A93653DA7DC0B8CF53F_2BBB0CB0669942D65AC4AF13836A83C3
pool: 0xffff948960f9a5a0 | file object: 0xffff948960f9a620 | offsetby: 0x80
\Windows\System32\en-US\user32.dll.mui
pool: 0xffff948960f9a730 | file object: 0xffff948960f9a7b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1E11E75149C17A93653DA7DC0B8CF53F_2CB4E26F4DC729B530A45B0DFA15B25A
pool: 0xffff948960f9a8c0 | file object: 0xffff948960f9a940 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1E11E75149C17A93653DA7DC0B8CF53F_39B6FE2CC5602DAD243DD383E20F0DE1
pool: 0xffff948960f9aa50 | file object: 0xffff948960f9aad0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f9abe0 | file object: 0xffff948960f9ac60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f9ad70 | file object: 0xffff948960f9adf0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1E11E75149C17A93653DA7DC0B8CF53F_3F262D109AC1F75F1132FD73CCD6A0B0
pool: 0xffff948960f9b090 | file object: 0xffff948960f9b110 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f9b220 | file object: 0xffff948960f9b2a0 | offsetby: 0x80
\Windows\System32\drivers\mrxsmb20.sys
pool: 0xffff948960f9b3b0 | file object: 0xffff948960f9b430 | offsetby: 0x80
\Windows\System32\en-US\shell32.dll.mui
pool: 0xffff948960f9b540 | file object: 0xffff948960f9b5c0 | offsetby: 0x80
\Windows\System32\AudioEng.dll
pool: 0xffff948960f9b6d0 | file object: 0xffff948960f9b750 | offsetby: 0x80
\Windows\Fonts\StaticCache.dat
pool: 0xffff948960f9b860 | file object: 0xffff948960f9b8e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1E11E75149C17A93653DA7DC0B8CF53F_165598D7F06C5A3D8F19426230DCE525
pool: 0xffff948960f9b9f0 | file object: 0xffff948960f9ba70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f9bb80 | file object: 0xffff948960f9bc00 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\Search\Index\UHJvamVjdCB0ZW1wbGF0ZXMgc291cmNlIHByb3ZpZGVy.blob
pool: 0xffff948960f9bd10 | file object: 0xffff948960f9bd90 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f9c030 | file object: 0xffff948960f9c0b0 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha\target\release\file_object_scan.exe
pool: 0xffff948960f9c1c0 | file object: 0xffff948960f9c240 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1E11E75149C17A93653DA7DC0B8CF53F_2D8C784E2DDA7E16C9F47A43A58EDC4A
pool: 0xffff948960f9c350 | file object: 0xffff948960f9c3d0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\Search\Index\index.dat
pool: 0xffff948960f9c4e0 | file object: 0xffff948960f9c560 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f9c670 | file object: 0xffff948960f9c6f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f9c800 | file object: 0xffff948960f9c880 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f9c990 | file object: 0xffff948960f9ca10 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\Search\Index\U2V0dXAgc291cmNlIHByb3ZpZGVy.blob
pool: 0xffff948960f9cb20 | file object: 0xffff948960f9cba0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f9ccb0 | file object: 0xffff948960f9cd30 | offsetby: 0x80
\Windows\System32\AUDIOKSE.dll
pool: 0xffff948960f9ce40 | file object: 0xffff948960f9cec0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\16.0_0f5aa209\Search\Index\T3B0aW9ucyBzb3VyY2UgcHJvdmlkZXI=.blob
pool: 0xffff948960f9d160 | file object: 0xffff948960f9d1e0 | offsetby: 0x80
\$Directory
pool: 0xffff948960f9d2f0 | file object: 0xffff948960f9d370 | offsetby: 0x80
\$Directory
pool: 0xffff948960f9d480 | file object: 0xffff948960f9d500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f9d610 | file object: 0xffff948960f9d690 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\iconcache_32.db
pool: 0xffff948960f9d7a0 | file object: 0xffff948960f9d820 | offsetby: 0x80
\$Directory
pool: 0xffff948960f9d930 | file object: 0xffff948960f9d9b0 | offsetby: 0x80
\Windows\System32\en-US\cmd.exe.mui
pool: 0xffff948960f9dac0 | file object: 0xffff948960f9db40 | offsetby: 0x80
\Windows\Fonts\StaticCache.dat
pool: 0xffff948960f9dc50 | file object: 0xffff948960f9dcd0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1E11E75149C17A93653DA7DC0B8CF53F_4C6874DDF2C07EC6C0B2C8D97B15BF25
pool: 0xffff948960f9dde0 | file object: 0xffff948960f9de60 | offsetby: 0x80
\$Directory
pool: 0xffff948960f9e100 | file object: 0xffff948960f9e180 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f9e290 | file object: 0xffff948960f9e310 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f9e420 | file object: 0xffff948960f9e4a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1E11E75149C17A93653DA7DC0B8CF53F_8768056CE7114B4D42DBC477FED8AA33
pool: 0xffff948960f9e5b0 | file object: 0xffff948960f9e630 | offsetby: 0x80
\$Directory
pool: 0xffff948960f9e740 | file object: 0xffff948960f9e7c0 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\iconcache_idx.db
pool: 0xffff948960f9e8d0 | file object: 0xffff948960f9e950 | offsetby: 0x80
\Windows\System32
pool: 0xffff948960f9ea60 | file object: 0xffff948960f9eae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960f9ebf0 | file object: 0xffff948960f9ec70 | offsetby: 0x80
\$Directory
pool: 0xffff948960f9ed80 | file object: 0xffff948960f9ee00 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_48.db
pool: 0xffff948960f9f0a0 | file object: 0xffff948960f9f120 | offsetby: 0x80
\$Directory
pool: 0xffff948960f9f230 | file object: 0xffff948960f9f2b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f9f3c0 | file object: 0xffff948960f9f440 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f9f550 | file object: 0xffff948960f9f5d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1E11E75149C17A93653DA7DC0B8CF53F_414964360ACF86CF7AFB286B4814D74B
pool: 0xffff948960f9f6e0 | file object: 0xffff948960f9f760 | offsetby: 0x80
\Windows\System32\drivers\srvnet.sys
pool: 0xffff948960f9f870 | file object: 0xffff948960f9f8f0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.18362.752_none_e6c0b5ed1312b70c
pool: 0xffff948960f9fa00 | file object: 0xffff948960f9fa80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f9fb90 | file object: 0xffff948960f9fc10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960f9fd20 | file object: 0xffff948960f9fda0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fa0040 | file object: 0xffff948960fa00c0 | offsetby: 0x80
\Windows\Prefetch\CONSENT.EXE-531BD9EA.pf
pool: 0xffff948960fa01d0 | file object: 0xffff948960fa0250 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_idx.db
pool: 0xffff948960fa0360 | file object: 0xffff948960fa03e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\35DDEDF268117918D1D277A171D8DF7B_2078941AA63C8F234CE94AA7C2694F5F
pool: 0xffff948960fa04f0 | file object: 0xffff948960fa0570 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\35DDEDF268117918D1D277A171D8DF7B_194FE46C1DB194819C88131C80396FC3
pool: 0xffff948960fa0680 | file object: 0xffff948960fa0700 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\35DDEDF268117918D1D277A171D8DF7B_7C0100B9914BCFC002591E75C9E8E00C
pool: 0xffff948960fa0810 | file object: 0xffff948960fa0890 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\35DDEDF268117918D1D277A171D8DF7B_E516A004179719C81894F2ED90EAEF00
pool: 0xffff948960fa09a0 | file object: 0xffff948960fa0a20 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\37D958F0157C4E87D39A5E7FAB3AECCC_B71FABFD1E81200DE1F267CA4F88BB4C
pool: 0xffff948960fa0b30 | file object: 0xffff948960fa0bb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960fa0cc0 | file object: 0xffff948960fa0d40 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1E11E75149C17A93653DA7DC0B8CF53F_B2B0FCCE83CCD4986CF6BD5CBE34B24E
pool: 0xffff948960fa0e50 | file object: 0xffff948960fa0ed0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1E698CCB2C296D265AC1A253974E09FD_507D8E76B9B181409C8E098B073B8415
pool: 0xffff948960fa1170 | file object: 0xffff948960fa11f0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\349D186F1CB5682FA0194D4F3754EF36_1F7395BC27C7C3EF3BDDFB01A889FACD
pool: 0xffff948960fa1300 | file object: 0xffff948960fa1380 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\223DE96EE265046957A660ED7C9DD9E7_EFF9B9BA98DEAA773F261FA85A0B1771
pool: 0xffff948960fa1490 | file object: 0xffff948960fa1510 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\35DDEDF268117918D1D277A171D8DF7B_B00CE8D5D4CF0E959CFDB61F636A135D
pool: 0xffff948960fa1620 | file object: 0xffff948960fa16a0 | offsetby: 0x80
\Windows\System32\sru\SRU00085.l
pool: 0xffff948960fa17b0 | file object: 0xffff948960fa1830 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\35DDEDF268117918D1D277A171D8DF7B_FA110FE3E6B107D4ADF6FFB6C8369BCD
pool: 0xffff948960fa1940 | file object: 0xffff948960fa19c0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\35DDEDF268117918D1D277A171D8DF7B_FACF508575F7E170F59F9A7C72667CF6
pool: 0xffff948960fa1ad0 | file object: 0xffff948960fa1b50 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\3915A45E20A3EAA119BA43D7BA364CDD
pool: 0xffff948960fa1c60 | file object: 0xffff948960fa1ce0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1E11E75149C17A93653DA7DC0B8CF53F_EA4990673A067EE2A2682896D15C022C
pool: 0xffff948960fa1df0 | file object: 0xffff948960fa1e70 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\3C0905D1C7F61607A2D21C9419117AC3
pool: 0xffff948960fa2110 | file object: 0xffff948960fa2190 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\349D186F1CB5682FA0194D4F3754EF36_C0EEF62E780886805490583AA30757E0
pool: 0xffff948960fa22a0 | file object: 0xffff948960fa2320 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\349D186F1CB5682FA0194D4F3754EF36_F90B5A578743A88CE9B746134286612D
pool: 0xffff948960fa2430 | file object: 0xffff948960fa24b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fa25c0 | file object: 0xffff948960fa2640 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\3FA0F92EA40DC353FF9E95B9F7D06EAF_02A7BB8D663AB0A2D3E0CE44422ED38B
pool: 0xffff948960fa2750 | file object: 0xffff948960fa27d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\4344B8AF97AF3A423D9EE52899963CDE_21F24782AF293B2185ECFECF1A496CBF
pool: 0xffff948960fa28e0 | file object: 0xffff948960fa2960 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\4344B8AF97AF3A423D9EE52899963CDE_33C46E8C1DD7F664A280A5BE389BC478
pool: 0xffff948960fa2a70 | file object: 0xffff948960fa2af0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\4344B8AF97AF3A423D9EE52899963CDE_8A1C3713950141100FCA0C4C58D56100
pool: 0xffff948960fa2c00 | file object: 0xffff948960fa2c80 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\3270E16F0A4D9D3F6E196DD38FAF4C6E_3695FEA2CB1BF87BE69E7E56E7860BEF
pool: 0xffff948960fa2d90 | file object: 0xffff948960fa2e10 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\Windows\Explorer\thumbcache_256.db
pool: 0xffff948960fa30b0 | file object: 0xffff948960fa3130 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fa3240 | file object: 0xffff948960fa32c0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1E11E75149C17A93653DA7DC0B8CF53F_8EF70DDE3DC35EA98FE183DACCA1C9FB
pool: 0xffff948960fa33d0 | file object: 0xffff948960fa3450 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\1E11E75149C17A93653DA7DC0B8CF53F_C73BA8A24EC32969686EC5F9F9998282
pool: 0xffff948960fa3560 | file object: 0xffff948960fa35e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\AF3BA1CDD96BBC740C9CE3754F348BED_8EAE9440AD8E6E2FCEE92963DBC26DE8
pool: 0xffff948960fa36f0 | file object: 0xffff948960fa3770 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\6A59C2B4529FA60196FE66A9AA54C0D5_CB45DDE8E7B157F1CFD0BBCD530A964E
pool: 0xffff948960fa3880 | file object: 0xffff948960fa3900 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_BEB37ABADF39714871232B4792417E04
pool: 0xffff948960fa3a10 | file object: 0xffff948960fa3a90 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\AF3BA1CDD96BBC740C9CE3754F348BED_AF5E6B16C8DDF006340E670C15F5E2AC
pool: 0xffff948960fa3ba0 | file object: 0xffff948960fa3c20 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\98BC4EC910F23B1A6B82C0BA63976923_D8D4B6B3448367474709E518BBB814F0
pool: 0xffff948960fa3d30 | file object: 0xffff948960fa3db0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_C9FB72B5AE80778A08024D8B0FDECC6F
pool: 0xffff948960fa4050 | file object: 0xffff948960fa40d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_10B2ED6A055C98951F429CD0FD943BBD
pool: 0xffff948960fa41e0 | file object: 0xffff948960fa4260 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_74167E25E5476CCA2A5946AAA61BF9E1
pool: 0xffff948960fa4370 | file object: 0xffff948960fa43f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fa4500 | file object: 0xffff948960fa4580 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fa4690 | file object: 0xffff948960fa4710 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\8292DB15ACB7A3FB6CCE0ABFBA07E119
pool: 0xffff948960fa4820 | file object: 0xffff948960fa48a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\90CB5F64881AABB03360C6E42BAD9550
pool: 0xffff948960fa49b0 | file object: 0xffff948960fa4a30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fa4b40 | file object: 0xffff948960fa4bc0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_EE9DB89C3D6A328B5FEAFF0ED3C77874
pool: 0xffff948960fa4cd0 | file object: 0xffff948960fa4d50 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\71191EB26111CC889C9B9F3705082F44
pool: 0xffff948960fa4e60 | file object: 0xffff948960fa4ee0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\72BA427A91F50409B9EAC87F2B59B951_371B513A2A21F8B87ED97EFED9CB8A2A
pool: 0xffff948960fa5180 | file object: 0xffff948960fa5200 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\99E7D179A416539E7B659C228E8F1AA4_7BF27108232AEDBFE52057ED5AFD0A9D
pool: 0xffff948960fa5310 | file object: 0xffff948960fa5390 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\9A8353062D72D6D0FE7C401775187BE6
pool: 0xffff948960fa54a0 | file object: 0xffff948960fa5520 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\6BADA8974A10C4BD62CC921D13E43B18_88614FFAD35D353421B8A7E1FE18FCE4
pool: 0xffff948960fa5630 | file object: 0xffff948960fa56b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\A0F6FC0A0AB4557184FFCA8CE9F07E1A
pool: 0xffff948960fa57c0 | file object: 0xffff948960fa5840 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\A2194A8AFBD924CA40E633270942C859_2ABE464A19C9A3AA67C9A00BA30104C9
pool: 0xffff948960fa5950 | file object: 0xffff948960fa59d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\A5C5D999F45EF5BC28680A3F56F5DEA3
pool: 0xffff948960fa5ae0 | file object: 0xffff948960fa5b60 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\443671A05B600DB731A34A7AAC534449
pool: 0xffff948960fa5c70 | file object: 0xffff948960fa5cf0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\AA62153D259A2EC4753C8B03DAE1464A
pool: 0xffff948960fa5e00 | file object: 0xffff948960fa5e80 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\AF3BA1CDD96BBC740C9CE3754F348BED_32CE5DA4F2E2D574BADFB8B90DCB81C9
pool: 0xffff948960fa6120 | file object: 0xffff948960fa61a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\7423F88C7F265F0DEFC08EA88C3BDE45_D975BBA8033175C8D112023D8A7A8AD6
pool: 0xffff948960fa62b0 | file object: 0xffff948960fa6330 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\72BA427A91F50409B9EAC87F2B59B951_0731723D2A78CF09D82A5C58FE762A94
pool: 0xffff948960fa6440 | file object: 0xffff948960fa64c0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\9915FBCE5ECE56452A09FB65EDE2FAD2_3493853ECB836F04B992A7EAD5C3EE1D
pool: 0xffff948960fa65d0 | file object: 0xffff948960fa6650 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\998553760AEECE136A056C36D4B22CF8_95C08ACCC3D1CB30679F043C8894FD1F
pool: 0xffff948960fa6760 | file object: 0xffff948960fa67e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_7C8B94B67B856D389EDE1E176C72C834
pool: 0xffff948960fa68f0 | file object: 0xffff948960fa6970 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_9C8F82AEA4F99AC2FB1D188B468C2D5B
pool: 0xffff948960fa6a80 | file object: 0xffff948960fa6b00 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_B7E3A8DA76AA5F01A203347461B893D7
pool: 0xffff948960fa6c10 | file object: 0xffff948960fa6c90 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_E82D6E545D54D7A241904DD1C7E666D4
pool: 0xffff948960fa6da0 | file object: 0xffff948960fa6e20 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_58649FF2A49B8C741CA7332582E0E932
pool: 0xffff948960fa70c0 | file object: 0xffff948960fa7140 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_A739D3927FDF7CE73582B9CDA0586888
pool: 0xffff948960fa7250 | file object: 0xffff948960fa72d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_B0734AE90B9972335F06010F27FAF051
pool: 0xffff948960fa73e0 | file object: 0xffff948960fa7460 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\C1B3CC7FF1466C71640A202F8258105B_9D932622AF336122F6D7127A0EF5210E
pool: 0xffff948960fa7570 | file object: 0xffff948960fa75f0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\C437972632A488222EA069E1572887C7_CB47AC91B566BFFD2D4D6367E644ECFF
pool: 0xffff948960fa7700 | file object: 0xffff948960fa7780 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\C5997319E8420D7C5D90DF664BFC791F_40DF3E7C5755EDF2FBDBEDA410E60B2E
pool: 0xffff948960fa7890 | file object: 0xffff948960fa7910 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\C846E4792BF2D345DC39D0D9F57111EF
pool: 0xffff948960fa7a20 | file object: 0xffff948960fa7aa0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\B398B80134F72209547439DB21AB308D_5FDD03068CBBD8A96F3AB9595BA10093
pool: 0xffff948960fa7bb0 | file object: 0xffff948960fa7c30 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\B039FEA45CB4CC4BBACFC013C7C55604_50D7940D5D3FEDD8634D83074C7A46A3
pool: 0xffff948960fa7d40 | file object: 0xffff948960fa7dc0 | offsetby: 0x80
\Windows\System32\conhost.exe
pool: 0xffff948960fa8060 | file object: 0xffff948960fa80e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\B398B80134F72209547439DB21AB308D_CCF564BE5A3C924B17DDEBDEB5236E12
pool: 0xffff948960fa81f0 | file object: 0xffff948960fa8270 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\B039FEA45CB4CC4BBACFC013C7C55604_05A2490FDAE66EC51D10AC5D7C6ABB9A
pool: 0xffff948960fa8380 | file object: 0xffff948960fa8400 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\B2FAF7692FD9FFBD64EDE317E42334BA_D7393C8F62BDE4D4CB606228BC7A711E
pool: 0xffff948960fa8510 | file object: 0xffff948960fa8590 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\B398B80134F72209547439DB21AB308D_D93C575AD9E9AF9B95268A3CB953B5A1
pool: 0xffff948960fa86a0 | file object: 0xffff948960fa8720 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_69F133B46417CD523ED9D838B1AB68BD
pool: 0xffff948960fa8830 | file object: 0xffff948960fa88b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_99B0825E0722CB2E883F35582B0EE3CB
pool: 0xffff948960fa89c0 | file object: 0xffff948960fa8a40 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_E010E27A2DC7EFB4E679193D522B8C7F
pool: 0xffff948960fa8b50 | file object: 0xffff948960fa8bd0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\C1B3CC7FF1466C71640A202F8258105B_3098CC96E46CB09F1AA12F9FFEEF9116
pool: 0xffff948960fa8ce0 | file object: 0xffff948960fa8d60 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\B398B80134F72209547439DB21AB308D_592839A8569F831D0F2306AE4BB5C24B
pool: 0xffff948960fa8e70 | file object: 0xffff948960fa8ef0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\B95AC26E4AAC5EF4F071A192BE527B00
pool: 0xffff948960fa9000 | file object: 0xffff948960fa9080 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_7109FC5F7F1AEB78F3EC1455CF387FFA
pool: 0xffff948960fa9190 | file object: 0xffff948960fa9210 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\C1B3CC7FF1466C71640A202F8258105B_3CDFAC6251511CBD4E7544823EE88BF2
pool: 0xffff948960fa9320 | file object: 0xffff948960fa93a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_AD5B044640723C3F0A8335A2F946BCC8
pool: 0xffff948960fa94b0 | file object: 0xffff948960fa9530 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\C1B3CC7FF1466C71640A202F8258105B_9A853A99BB1CFC526D84E0D6D3855C01
pool: 0xffff948960fa9640 | file object: 0xffff948960fa96c0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\B398B80134F72209547439DB21AB308D_9487BC0D4381A7CDEB9A8CC43F66D27C
pool: 0xffff948960fa97d0 | file object: 0xffff948960fa9850 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\BE8B021F9E811DFC8C8A28572A17C05A_7B15B1C5BB1E8058D3F0EC6C583B6CDF
pool: 0xffff948960fa9960 | file object: 0xffff948960fa99e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\CFE86DBBE02D859DC92F1E17E0574EE8_70D49E8A408648C635FB6B9F5D8BA72C
pool: 0xffff948960fa9af0 | file object: 0xffff948960fa9b70 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_81AA51411392CA139F21635E383944CC
pool: 0xffff948960fa9c80 | file object: 0xffff948960fa9d00 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_AD48C6FB2B8B3F042B2D29B956C1CEA1
pool: 0xffff948960fa9e10 | file object: 0xffff948960fa9e90 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\DB54F96ED16ED8D59E7B53BE0AA76F5C_B557DDA710BD3CC2E4FC86A341B0B561
pool: 0xffff948960faa130 | file object: 0xffff948960faa1b0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\D1CCC3CC241E16E8A4502485011C7A64
pool: 0xffff948960faa2c0 | file object: 0xffff948960faa340 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\EB2C4AB8B68FFA4B7733A9139239A396_D76DB901EE986B889F30D8CC06229E2D
pool: 0xffff948960faa450 | file object: 0xffff948960faa4d0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_66CE2BBA9482F3D8ADCE0D09E279C862
pool: 0xffff948960faa5e0 | file object: 0xffff948960faa660 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\E2A7F6FFE4DF7C540CADDEEB0232339E_BF3A704D4922FE76EE8DE988C2130E2F
pool: 0xffff948960faa770 | file object: 0xffff948960faa7f0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\D06F8524615AAD4521733D2AEE7F918A_2F411ACC17B8DFA57CEE3154C0EDFA29
pool: 0xffff948960faa900 | file object: 0xffff948960faa980 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\D388BEBC625C181AB8B0CA40E7181396_5701F457C4E7A7E601F580C8B8673C55
pool: 0xffff948960faaa90 | file object: 0xffff948960faab10 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_46EBD5C34D1D94746F59E46F2023DB05
pool: 0xffff948960faac20 | file object: 0xffff948960faaca0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_6D0655BE376B655FC69379AB0A8EE89E
pool: 0xffff948960faadb0 | file object: 0xffff948960faae30 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_54E21EB42C2C1DB9C196CDE9702B4EB0
pool: 0xffff948960fab0d0 | file object: 0xffff948960fab150 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\E49827401028F7A0F97B5576C77A26CB_7CE95D8DCA26FE957E7BD7D76F353B08
pool: 0xffff948960fab260 | file object: 0xffff948960fab2e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fab3f0 | file object: 0xffff948960fab470 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_25FE3FF90E99745000BA7B702FDE488D
pool: 0xffff948960fab580 | file object: 0xffff948960fab600 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_613B878279E7C7CE63641FE544FE09CB
pool: 0xffff948960fab710 | file object: 0xffff948960fab790 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\CE4E3240C24F0CB363344E2503BE9F0C_70072B44B3C4294D5E82BE5B3C45578C
pool: 0xffff948960fab8a0 | file object: 0xffff948960fab920 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_6D8D8622D44E10923D4831D73B4052B1
pool: 0xffff948960faba30 | file object: 0xffff948960fabab0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fabbc0 | file object: 0xffff948960fabc40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fabd50 | file object: 0xffff948960fabdd0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\E5FC0CE40143CFF019052D0071CA21AE
pool: 0xffff948960fac070 | file object: 0xffff948960fac0f0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_494931D04DF56D62B2CD6BB3A8DAFC53
pool: 0xffff948960fac200 | file object: 0xffff948960fac280 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_67D82D1A668FDD2E3663EFEAF37344B8
pool: 0xffff948960fac390 | file object: 0xffff948960fac410 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_72FDACEC3E94EE7737C8FD1FA60FCF05
pool: 0xffff948960fac520 | file object: 0xffff948960fac5a0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\D71522217C98083E31E56555D2388A4B_6093B681CF1278EDA8C82A784AE9FE59
pool: 0xffff948960fac6b0 | file object: 0xffff948960fac730 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_2DED54D8110DFD17310D279C85A65503
pool: 0xffff948960fac840 | file object: 0xffff948960fac8c0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_5357F647DA8A58FAC2171E2C4DF94197
pool: 0xffff948960fac9d0 | file object: 0xffff948960faca50 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_A222BF82620A4D3E40C6582CDE4F3157
pool: 0xffff948960facb60 | file object: 0xffff948960facbe0 | offsetby: 0x80
\Windows\System32\en-US\propsys.dll.mui
pool: 0xffff948960faccf0 | file object: 0xffff948960facd70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fad010 | file object: 0xffff948960fad090 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fad1a0 | file object: 0xffff948960fad220 | offsetby: 0x80
\Windows\System32\ntoskrnl.exe
pool: 0xffff948960fad330 | file object: 0xffff948960fad3b0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fad4c0 | file object: 0xffff948960fad540 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Automation\v4.0_3.0.0.0__31bf3856ad364e35\System.Management.Automation.dll
pool: 0xffff948960fad650 | file object: 0xffff948960fad6d0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\node_modules.asar.unpacked\node-pty\build\Release\conpty_console_list.node
pool: 0xffff948960fad7e0 | file object: 0xffff948960fad860 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_E504AB60D7533CC6E1567BA722698640
pool: 0xffff948960fad970 | file object: 0xffff948960fad9f0 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff948960fadb00 | file object: 0xffff948960fadb80 | offsetby: 0x80
\Windows\System32\en-US\winnlsres.dll.mui
pool: 0xffff948960fadc90 | file object: 0xffff948960fadd10 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fade20 | file object: 0xffff948960fadea0 | offsetby: 0x80
\Windows\System32\WindowsPowerShell\v1.0\powershell.exe
pool: 0xffff948960fae140 | file object: 0xffff948960fae1c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fae2d0 | file object: 0xffff948960fae350 | offsetby: 0x80
\Windows\System32\drivers\Classpnp.sys
pool: 0xffff948960fae460 | file object: 0xffff948960fae4e0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_B36EBEB2049B16C89FB3B98CC6400F87
pool: 0xffff948960fae5f0 | file object: 0xffff948960fae670 | offsetby: 0x80
\Windows\System32\WindowsPowerShell\v1.0\en-US\powershell.exe.mui
pool: 0xffff948960fae780 | file object: 0xffff948960fae800 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_DFE2B9CC5DCAFBD2A264B59FFB404FD5
pool: 0xffff948960fae910 | file object: 0xffff948960fae990 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960faeaa0 | file object: 0xffff948960faeb20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960faec30 | file object: 0xffff948960faecb0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960faedc0 | file object: 0xffff948960faee40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960faf0e0 | file object: 0xffff948960faf160 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960faf270 | file object: 0xffff948960faf2f0 | offsetby: 0x80
\Windows\System32\vcruntime140.dll
pool: 0xffff948960faf400 | file object: 0xffff948960faf480 | offsetby: 0x80
\Windows\System32
pool: 0xffff948960faf590 | file object: 0xffff948960faf610 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!001\Microsoft\CryptnetUrlCache\MetaData\FC5A820A001B41D68902E051F36A5282_CF82B96F22F4C3DCB1C450F252074B67
pool: 0xffff948960faf720 | file object: 0xffff948960faf7a0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.ConsoleHost\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.ConsoleHost.dll
pool: 0xffff948960faf8b0 | file object: 0xffff948960faf930 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Management.Automation\v4.0_3.0.0.0__31bf3856ad364e35\System.Management.Automation.dll
pool: 0xffff948960fafa40 | file object: 0xffff948960fafac0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fafbd0 | file object: 0xffff948960fafc50 | offsetby: 0x80
\Windows\System32\sru\SRU00086.l
pool: 0xffff948960fafd60 | file object: 0xffff948960fafde0 | offsetby: 0x80
\Windows\System32\drivers\cng.sys
pool: 0xffff948960fb0080 | file object: 0xffff948960fb0100 | offsetby: 0x80
\Windows\System32\drivers\msrpc.sys
pool: 0xffff948960fb0210 | file object: 0xffff948960fb0290 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
pool: 0xffff948960fb03a0 | file object: 0xffff948960fb0420 | offsetby: 0x80
\Windows\System32\en-US\shell32.dll.mui
pool: 0xffff948960fb0530 | file object: 0xffff948960fb05b0 | offsetby: 0x80
\Windows\System32\drivers\hidparse.sys
pool: 0xffff948960fb06c0 | file object: 0xffff948960fb0740 | offsetby: 0x80
\Windows\System32\drivers\wmilib.sys
pool: 0xffff948960fb0850 | file object: 0xffff948960fb08d0 | offsetby: 0x80
\Windows\System32\drivers\lpus.sys
pool: 0xffff948960fb09e0 | file object: 0xffff948960fb0a60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb0b70 | file object: 0xffff948960fb0bf0 | offsetby: 0x80
\Windows\System32\sru\SRU.loglog
pool: 0xffff948960fb0d00 | file object: 0xffff948960fb0d80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb1020 | file object: 0xffff948960fb10a0 | offsetby: 0x80
\Windows\System32\en-US\windows.storage.dll.mui
pool: 0xffff948960fb11b0 | file object: 0xffff948960fb1230 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb1340 | file object: 0xffff948960fb13c0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.Management.Infrastructure\v4.0_1.0.0.0__31bf3856ad364e35\Microsoft.Management.Infrastructure.dll
pool: 0xffff948960fb14d0 | file object: 0xffff948960fb1550 | offsetby: 0x80
\Windows\System32\drivers\tdi.sys
pool: 0xffff948960fb1660 | file object: 0xffff948960fb16e0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Numerics\v4.0_4.0.0.0__b77a5c561934e089\System.Numerics.dll
pool: 0xffff948960fb17f0 | file object: 0xffff948960fb1870 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.CSharp\v4.0_4.0.0.0__b03f5f7f11d50a3a\Microsoft.CSharp.dll
pool: 0xffff948960fb1980 | file object: 0xffff948960fb1a00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb1b10 | file object: 0xffff948960fb1b90 | offsetby: 0x80
\Windows\System32\win32kfull.sys
pool: 0xffff948960fb1ca0 | file object: 0xffff948960fb1d20 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb1e30 | file object: 0xffff948960fb1eb0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.Security\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Security.dll
pool: 0xffff948960fb2150 | file object: 0xffff948960fb21d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb22e0 | file object: 0xffff948960fb2360 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\Microsoft.PowerShell.Commands.Utility\v4.0_3.0.0.0__31bf3856ad364e35\Microsoft.PowerShell.Commands.Utility.dll
pool: 0xffff948960fb2470 | file object: 0xffff948960fb24f0 | offsetby: 0x80
\Windows\Prefetch\AgGlUAD_S-1-5-21-3234566417-3121902272-2793192418-1001.db
pool: 0xffff948960fb2600 | file object: 0xffff948960fb2680 | offsetby: 0x80
\Windows\Prefetch\AgGlUAD_P_S-1-5-21-3234566417-3121902272-2793192418-1001.db
pool: 0xffff948960fb2790 | file object: 0xffff948960fb2810 | offsetby: 0x80
\Windows\System32\PSHED.DLL
pool: 0xffff948960fb2920 | file object: 0xffff948960fb29a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb2ab0 | file object: 0xffff948960fb2b30 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb2c40 | file object: 0xffff948960fb2cc0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb2dd0 | file object: 0xffff948960fb2e50 | offsetby: 0x80
\Windows\System32\drivers\watchdog.sys
pool: 0xffff948960fb30f0 | file object: 0xffff948960fb3170 | offsetby: 0x80
誎舎￿₀怎钉￿⠸怎钉￿ﻈ贵舎￿寏
pool: 0xffff948960fb3280 | file object: 0xffff948960fb3300 | offsetby: 0x80
峐誚舎￿峐誚舎￿Ā騠察钉￿큰廻钉￿
pool: 0xffff948960fb3410 | file object: 0xffff948960fb3490 | offsetby: 0x80
\Windows\System32\drivers\WppRecorder.sys
pool: 0xffff948960fb35a0 | file object: 0xffff948960fb3620 | offsetby: 0x80
ice\Afd\EndpointF4320C53-5B62-48D3-985F-1DFE911E1887}āԀကāԀကāԀȁ
pool: 0xffff948960fb3730 | file object: 0xffff948960fb37b0 | offsetby: 0x80
OLEBDCCB7CADCCD9A01293D57A79
pool: 0xffff948960fb38c0 | file object: 0xffff948960fb3940 | offsetby: 0x80
旈轆舎￿贵舎￿无轆舎￿无轆舎￿
pool: 0xffff948960fb3a50 | file object: 0xffff948960fb3ad0 | offsetby: 0x80
ࢰ賧舎￿ࢰ賧舎￿謽舎￿유謽舎￿謽舎￿謽舎￿楴敭ঐ謻舎￿
pool: 0xffff948960fb3be0 | file object: 0xffff948960fb3c60 | offsetby: 0x80
寈轆舎￿ὰ贶舎￿寠轆舎￿寠轆舎￿
pool: 0xffff948960fb3d70 | file object: 0xffff948960fb3df0 | offsetby: 0x80
⠰贶舎￿月轆舎￿⡀贶舎￿朠轆舎￿
pool: 0xffff948960fb4090 | file object: 0xffff948960fb4110 | offsetby: 0x80
SM0:2564:120:WilError_02_p0_02
pool: 0xffff948960fb4220 | file object: 0xffff948960fb42a0 | offsetby: 0x80
\Windows\System32\drivers\FWPKCLNT.SYS
pool: 0xffff948960fb43b0 | file object: 0xffff948960fb4430 | offsetby: 0x80
謽舎￿謽舎￿WIN://SYSAPPIDWIN://PK
pool: 0xffff948960fb4540 | file object: 0xffff948960fb45c0 | offsetby: 0x80
\$Directory
pool: 0xffff948960fb46d0 | file object: 0xffff948960fb4750 | offsetby: 0x80
ቔ㹉&㥻ㅅ㔷㡂ⵄ㕆䄲ㄭ䐱ⴸ㥂㕁㔭㔰㔰
pool: 0xffff948960fb4860 | file object: 0xffff948960fb48e0 | offsetby: 0x80
玈轆舎￿℀贶舎￿玠轆舎￿玠轆舎￿
pool: 0xffff948960fb49f0 | file object: 0xffff948960fb4a70 | offsetby: 0x80
\$Directory
pool: 0xffff948960fb4b80 | file object: 0xffff948960fb4c00 | offsetby: 0x80
\Windows\System32\drivers\ksecdd.sys
pool: 0xffff948960fb4d10 | file object: 0xffff948960fb4d90 | offsetby: 0x80
뉌鱟ᇘ蝲舎￿&㑻㕆㠳䘵ⴱ㥆㡁㐭㌵ⴶ㤹〲㤭䔳䐸
pool: 0xffff948960fb5030 | file object: 0xffff948960fb50b0 | offsetby: 0x80
\$Directory
pool: 0xffff948960fb51c0 | file object: 0xffff948960fb5240 | offsetby: 0x80
SM0:2564:304:WilStaging_02_p0ll
pool: 0xffff948960fb5350 | file object: 0xffff948960fb53d0 | offsetby: 0x80
\$Directory
pool: 0xffff948960fb54e0 | file object: 0xffff948960fb5560 | offsetby: 0x80
SM0:2564:304:WilStaging_02ll
pool: 0xffff948960fb5670 | file object: 0xffff948960fb56f0 | offsetby: 0x80
ᬐ贶舎￿玈轆舎￿ᬠ贶舎￿玠轆舎￿
pool: 0xffff948960fb5800 | file object: 0xffff948960fb5880 | offsetby: 0x80
᱐贶舎￿寈轆舎￿ᱠ贶舎￿寠轆舎￿
pool: 0xffff948960fb5990 | file object: 0xffff948960fb5a10 | offsetby: 0x80
堈轆舎￿ﻰ贵舎￿堠轆舎￿堠轆舎￿޾G
pool: 0xffff948960fb5b20 | file object: 0xffff948960fb5ba0 | offsetby: 0x80
\Windows\System32\drivers\netio.sys
pool: 0xffff948960fb5cb0 | file object: 0xffff948960fb5d30 | offsetby: 0x80
SM0:2564:304:WilStaging_02_p0
pool: 0xffff948960fb5e40 | file object: 0xffff948960fb5ec0 | offsetby: 0x80
SM0:2564:120:WilError_02_p0hll
pool: 0xffff948960fb62f0 | file object: 0xffff948960fb6370 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb6480 | file object: 0xffff948960fb6500 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb67a0 | file object: 0xffff948960fb6820 | offsetby: 0x80
蝧舎￿ႀ帹钉￿≘蝨舎￿첸蝧舎
pool: 0xffff948960fb6ac0 | file object: 0xffff948960fb6b40 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb6de0 | file object: 0xffff948960fb6e60 | offsetby: 0x80
\Windows\System32\lbcatq.dll
pool: 0xffff948960fb7100 | file object: 0xffff948960fb7180 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb7290 | file object: 0xffff948960fb7310 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb7420 | file object: 0xffff948960fb74a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb78d0 | file object: 0xffff948960fb7950 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb7bf0 | file object: 0xffff948960fb7c70 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb8230 | file object: 0xffff948960fb82b0 | offsetby: 0x80
`贵舎￿堈轆舎￿p贵舎￿堠轆舎￿Œ
pool: 0xffff948960fb8550 | file object: 0xffff948960fb85d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb86e0 | file object: 0xffff948960fb8760 | offsetby: 0x80
Ẑ蛢舎￿⪐逼舎￿₀怎钉￿ᢸ贶舎￿ﹸ贵舎￿柀廰
pool: 0xffff948960fb8870 | file object: 0xffff948960fb88f0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb8a00 | file object: 0xffff948960fb8a80 | offsetby: 0x80
堈轆舎￿ﻰ贵舎￿堠轆舎￿堠轆舎￿޾G
pool: 0xffff948960fb8d20 | file object: 0xffff948960fb8da0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948960fb9040 | file object: 0xffff948960fb90c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948960fb91d0 | file object: 0xffff948960fb9250 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961084160 | file object: 0xffff9489610841e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610842f0 | file object: 0xffff948961084370 | offsetby: 0x80
\$Directory
pool: 0xffff948961084480 | file object: 0xffff948961084500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961084610 | file object: 0xffff948961084690 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\1033\vslogui.dll
pool: 0xffff9489610847a0 | file object: 0xffff948961084820 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.710_none_5f52d84058d0677f\drupdate.dll
pool: 0xffff948961084930 | file object: 0xffff9489610849b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961084ac0 | file object: 0xffff948961084b40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961084c50 | file object: 0xffff948961084cd0 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.710_none_5f52d84058d0677f\dpx.dll
pool: 0xffff948961084de0 | file object: 0xffff948961084e60 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948961085100 | file object: 0xffff948961085180 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha\src\bin\file_object_scan.rs
pool: 0xffff948961085290 | file object: 0xffff948961085310 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework-SystemXmlLinq\v4.0_4.0.0.0__b77a5c561934e089\PresentationFramework-SystemXmlLinq.dll
pool: 0xffff948961085420 | file object: 0xffff9489610854a0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework-SystemCore\v4.0_4.0.0.0__b77a5c561934e089\PresentationFramework-SystemCore.dll
pool: 0xffff9489610855b0 | file object: 0xffff948961085630 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961085740 | file object: 0xffff9489610857c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489610858d0 | file object: 0xffff948961085950 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961085a60 | file object: 0xffff948961085ae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961085bf0 | file object: 0xffff948961085c70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961085d80 | file object: 0xffff948961085e00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610860a0 | file object: 0xffff948961086120 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961086230 | file object: 0xffff9489610862b0 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha\target\release
pool: 0xffff9489610863c0 | file object: 0xffff948961086440 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961086550 | file object: 0xffff9489610865d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610866e0 | file object: 0xffff948961086760 | offsetby: 0x80
\$Directory
pool: 0xffff948961086870 | file object: 0xffff9489610868f0 | offsetby: 0x80
\$Directory
pool: 0xffff948961086a00 | file object: 0xffff948961086a80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961086b90 | file object: 0xffff948961086c10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\PkgdefMgmt.dll
pool: 0xffff948961086d20 | file object: 0xffff948961086da0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961087040 | file object: 0xffff9489610870c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610871d0 | file object: 0xffff948961087250 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961087360 | file object: 0xffff9489610873e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610874f0 | file object: 0xffff948961087570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961087680 | file object: 0xffff948961087700 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948961087810 | file object: 0xffff948961087890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610879a0 | file object: 0xffff948961087a20 | offsetby: 0x80
\$Directory
pool: 0xffff948961087b30 | file object: 0xffff948961087bb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961087cc0 | file object: 0xffff948961087d40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961087e50 | file object: 0xffff948961087ed0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961088170 | file object: 0xffff9489610881f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961088300 | file object: 0xffff948961088380 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961088490 | file object: 0xffff948961088510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961088620 | file object: 0xffff9489610886a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610887b0 | file object: 0xffff948961088830 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961088940 | file object: 0xffff9489610889c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961088ad0 | file object: 0xffff948961088b50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961088c60 | file object: 0xffff948961088ce0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961088df0 | file object: 0xffff948961088e70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\System.Composition.Runtime.dll
pool: 0xffff948961089110 | file object: 0xffff948961089190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610892a0 | file object: 0xffff948961089320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961089430 | file object: 0xffff9489610894b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610895c0 | file object: 0xffff948961089640 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961089750 | file object: 0xffff9489610897d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610898e0 | file object: 0xffff948961089960 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TailoredProjectServices\Microsoft.VisualStudio.AppxPackage.Contracts.dll
pool: 0xffff948961089a70 | file object: 0xffff948961089af0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\dbcs-data-71ef95931dd7bd96b3309249704ed46d.code
pool: 0xffff948961089c00 | file object: 0xffff948961089c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961089d90 | file object: 0xffff948961089e10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.DesignTools.DiagnosticsBase.dll
pool: 0xffff94896108a0b0 | file object: 0xffff94896108a130 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\sharedProcessMain.nls-09b5c36c40d79e466d68c4083cb432ad.code
pool: 0xffff94896108a240 | file object: 0xffff94896108a2c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108a3d0 | file object: 0xffff94896108a450 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108a560 | file object: 0xffff94896108a5e0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896108a6f0 | file object: 0xffff94896108a770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108a880 | file object: 0xffff94896108a900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108aa10 | file object: 0xffff94896108aa90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108aba0 | file object: 0xffff94896108ac20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108ad30 | file object: 0xffff94896108adb0 | offsetby: 0x80
\Windows\System32\drivers\etc
pool: 0xffff94896108b050 | file object: 0xffff94896108b0d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108b1e0 | file object: 0xffff94896108b260 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896108b370 | file object: 0xffff94896108b3f0 | offsetby: 0x80
rs\User\AppData\Local\Microsoft\OneDrive\logs\Personal
pool: 0xffff94896108b500 | file object: 0xffff94896108b580 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896108b690 | file object: 0xffff94896108b710 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108b820 | file object: 0xffff94896108b8a0 | offsetby: 0x80
\Windows\Prefetch\NGEN.EXE-EC3F9239.pf
pool: 0xffff94896108b9b0 | file object: 0xffff94896108ba30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108bb40 | file object: 0xffff94896108bbc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108bcd0 | file object: 0xffff94896108bd50 | offsetby: 0x80
\Windows\System32\hal.dll
pool: 0xffff94896108be60 | file object: 0xffff94896108bee0 | offsetby: 0x80
\$Directory
pool: 0xffff94896108c180 | file object: 0xffff94896108c200 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108c310 | file object: 0xffff94896108c390 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896108c4a0 | file object: 0xffff94896108c520 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896108c630 | file object: 0xffff94896108c6b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108c7c0 | file object: 0xffff94896108c840 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108c950 | file object: 0xffff94896108c9d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108cae0 | file object: 0xffff94896108cb60 | offsetby: 0x80
\Windows\System32\sru\SRU00081.l
pool: 0xffff94896108cc70 | file object: 0xffff94896108ccf0 | offsetby: 0x80
\$Directory
pool: 0xffff94896108ce00 | file object: 0xffff94896108ce80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108d120 | file object: 0xffff94896108d1a0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\PageViewData-620fe8091fd737e8e8f69b14df576ac7.code
pool: 0xffff94896108d2b0 | file object: 0xffff94896108d330 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108d440 | file object: 0xffff94896108d4c0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff94896108d5d0 | file object: 0xffff94896108d650 | offsetby: 0x80
瑰誚舎￿瑰誚舎￿Ā騠察钉￿ꁰ帹钉￿遰归钉￿識蒭舎￿崘誚舎￿懐誛舎￿
pool: 0xffff94896108d760 | file object: 0xffff94896108d7e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108d8f0 | file object: 0xffff94896108d970 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108da80 | file object: 0xffff94896108db00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108dc10 | file object: 0xffff94896108dc90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108dda0 | file object: 0xffff94896108de20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108e0c0 | file object: 0xffff94896108e140 | offsetby: 0x80
\$Directory
pool: 0xffff94896108e250 | file object: 0xffff94896108e2d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108e3e0 | file object: 0xffff94896108e460 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108e570 | file object: 0xffff94896108e5f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108e700 | file object: 0xffff94896108e780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108e890 | file object: 0xffff94896108e910 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108ea20 | file object: 0xffff94896108eaa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108ebb0 | file object: 0xffff94896108ec30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108ed40 | file object: 0xffff94896108edc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108f060 | file object: 0xffff94896108f0e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108f1f0 | file object: 0xffff94896108f270 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108f380 | file object: 0xffff94896108f400 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108f510 | file object: 0xffff94896108f590 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108f6a0 | file object: 0xffff94896108f720 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108f830 | file object: 0xffff94896108f8b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108f9c0 | file object: 0xffff94896108fa40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108fb50 | file object: 0xffff94896108fbd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108fce0 | file object: 0xffff94896108fd60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896108fe70 | file object: 0xffff94896108fef0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961090000 | file object: 0xffff948961090080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961090190 | file object: 0xffff948961090210 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961090320 | file object: 0xffff9489610903a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610904b0 | file object: 0xffff948961090530 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961090640 | file object: 0xffff9489610906c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610907d0 | file object: 0xffff948961090850 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961090960 | file object: 0xffff9489610909e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961090af0 | file object: 0xffff948961090b70 | offsetby: 0x80
\$Directory
pool: 0xffff948961090c80 | file object: 0xffff948961090d00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961090e10 | file object: 0xffff948961090e90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961091130 | file object: 0xffff9489610911b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610912c0 | file object: 0xffff948961091340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961091450 | file object: 0xffff9489610914d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610915e0 | file object: 0xffff948961091660 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961091770 | file object: 0xffff9489610917f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961091900 | file object: 0xffff948961091980 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961091a90 | file object: 0xffff948961091b10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961091c20 | file object: 0xffff948961091ca0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961091db0 | file object: 0xffff948961091e30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610920d0 | file object: 0xffff948961092150 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961092260 | file object: 0xffff9489610922e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610923f0 | file object: 0xffff948961092470 | offsetby: 0x80
\$Directory
pool: 0xffff948961092580 | file object: 0xffff948961092600 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961092710 | file object: 0xffff948961092790 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610928a0 | file object: 0xffff948961092920 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961092a30 | file object: 0xffff948961092ab0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961092bc0 | file object: 0xffff948961092c40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961092d50 | file object: 0xffff948961092dd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961093070 | file object: 0xffff9489610930f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961093200 | file object: 0xffff948961093280 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961093390 | file object: 0xffff948961093410 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961093520 | file object: 0xffff9489610935a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610936b0 | file object: 0xffff948961093730 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961093840 | file object: 0xffff9489610938c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610939d0 | file object: 0xffff948961093a50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961093b60 | file object: 0xffff948961093be0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961093cf0 | file object: 0xffff948961093d70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961094010 | file object: 0xffff948961094090 | offsetby: 0x80
\$Directory
pool: 0xffff9489610941a0 | file object: 0xffff948961094220 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961094330 | file object: 0xffff9489610943b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610944c0 | file object: 0xffff948961094540 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961094650 | file object: 0xffff9489610946d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610947e0 | file object: 0xffff948961094860 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961094970 | file object: 0xffff9489610949f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961094b00 | file object: 0xffff948961094b80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961094c90 | file object: 0xffff948961094d10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961094e20 | file object: 0xffff948961094ea0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961095140 | file object: 0xffff9489610951c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610952d0 | file object: 0xffff948961095350 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961095460 | file object: 0xffff9489610954e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610955f0 | file object: 0xffff948961095670 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961095780 | file object: 0xffff948961095800 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961095910 | file object: 0xffff948961095990 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961095aa0 | file object: 0xffff948961095b20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961095c30 | file object: 0xffff948961095cb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961095dc0 | file object: 0xffff948961095e40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610960e0 | file object: 0xffff948961096160 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961096270 | file object: 0xffff9489610962f0 | offsetby: 0x80
\$Directory
pool: 0xffff948961096400 | file object: 0xffff948961096480 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961096590 | file object: 0xffff948961096610 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961096720 | file object: 0xffff9489610967a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610968b0 | file object: 0xffff948961096930 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961096a40 | file object: 0xffff948961096ac0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961096bd0 | file object: 0xffff948961096c50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961096d60 | file object: 0xffff948961096de0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961097080 | file object: 0xffff948961097100 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961097210 | file object: 0xffff948961097290 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610973a0 | file object: 0xffff948961097420 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961097530 | file object: 0xffff9489610975b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610976c0 | file object: 0xffff948961097740 | offsetby: 0x80
\$Directory
pool: 0xffff948961097850 | file object: 0xffff9489610978d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610979e0 | file object: 0xffff948961097a60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961097b70 | file object: 0xffff948961097bf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961097d00 | file object: 0xffff948961097d80 | offsetby: 0x80
\$Directory
pool: 0xffff948961098020 | file object: 0xffff9489610980a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610981b0 | file object: 0xffff948961098230 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961098340 | file object: 0xffff9489610983c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610984d0 | file object: 0xffff948961098550 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961098660 | file object: 0xffff9489610986e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610987f0 | file object: 0xffff948961098870 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961098980 | file object: 0xffff948961098a00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961098b10 | file object: 0xffff948961098b90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961098ca0 | file object: 0xffff948961098d20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961098e30 | file object: 0xffff948961098eb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961099150 | file object: 0xffff9489610991d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610992e0 | file object: 0xffff948961099360 | offsetby: 0x80
\$Directory
pool: 0xffff948961099470 | file object: 0xffff9489610994f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961099600 | file object: 0xffff948961099680 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961099790 | file object: 0xffff948961099810 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961099920 | file object: 0xffff9489610999a0 | offsetby: 0x80
\$Directory
pool: 0xffff948961099ab0 | file object: 0xffff948961099b30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961099c40 | file object: 0xffff948961099cc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961099dd0 | file object: 0xffff948961099e50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109a0f0 | file object: 0xffff94896109a170 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109a280 | file object: 0xffff94896109a300 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109a410 | file object: 0xffff94896109a490 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109a5a0 | file object: 0xffff94896109a620 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109a730 | file object: 0xffff94896109a7b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109a8c0 | file object: 0xffff94896109a940 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109aa50 | file object: 0xffff94896109aad0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109abe0 | file object: 0xffff94896109ac60 | offsetby: 0x80
\$Directory
pool: 0xffff94896109ad70 | file object: 0xffff94896109adf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109b090 | file object: 0xffff94896109b110 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109b220 | file object: 0xffff94896109b2a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896109b3b0 | file object: 0xffff94896109b430 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109b540 | file object: 0xffff94896109b5c0 | offsetby: 0x80
\$Directory
pool: 0xffff94896109b6d0 | file object: 0xffff94896109b750 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109b860 | file object: 0xffff94896109b8e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109b9f0 | file object: 0xffff94896109ba70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109bb80 | file object: 0xffff94896109bc00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109bd10 | file object: 0xffff94896109bd90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109c030 | file object: 0xffff94896109c0b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109c1c0 | file object: 0xffff94896109c240 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109c350 | file object: 0xffff94896109c3d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109c4e0 | file object: 0xffff94896109c560 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109c670 | file object: 0xffff94896109c6f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109c800 | file object: 0xffff94896109c880 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109c990 | file object: 0xffff94896109ca10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109cb20 | file object: 0xffff94896109cba0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109ccb0 | file object: 0xffff94896109cd30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109ce40 | file object: 0xffff94896109cec0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109d160 | file object: 0xffff94896109d1e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109d2f0 | file object: 0xffff94896109d370 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109d480 | file object: 0xffff94896109d500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109d610 | file object: 0xffff94896109d690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109d7a0 | file object: 0xffff94896109d820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109d930 | file object: 0xffff94896109d9b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896109dac0 | file object: 0xffff94896109db40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109dc50 | file object: 0xffff94896109dcd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109dde0 | file object: 0xffff94896109de60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109e100 | file object: 0xffff94896109e180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109e290 | file object: 0xffff94896109e310 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109e420 | file object: 0xffff94896109e4a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109e5b0 | file object: 0xffff94896109e630 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109e740 | file object: 0xffff94896109e7c0 | offsetby: 0x80
\$Directory
pool: 0xffff94896109e8d0 | file object: 0xffff94896109e950 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109ea60 | file object: 0xffff94896109eae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109ebf0 | file object: 0xffff94896109ec70 | offsetby: 0x80
\$Directory
pool: 0xffff94896109ed80 | file object: 0xffff94896109ee00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109f0a0 | file object: 0xffff94896109f120 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109f230 | file object: 0xffff94896109f2b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109f3c0 | file object: 0xffff94896109f440 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109f550 | file object: 0xffff94896109f5d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109f6e0 | file object: 0xffff94896109f760 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109f870 | file object: 0xffff94896109f8f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109fa00 | file object: 0xffff94896109fa80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109fb90 | file object: 0xffff94896109fc10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896109fd20 | file object: 0xffff94896109fda0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a0040 | file object: 0xffff9489610a00c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a01d0 | file object: 0xffff9489610a0250 | offsetby: 0x80
\$Directory
pool: 0xffff9489610a0360 | file object: 0xffff9489610a03e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a04f0 | file object: 0xffff9489610a0570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a0680 | file object: 0xffff9489610a0700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a0810 | file object: 0xffff9489610a0890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a09a0 | file object: 0xffff9489610a0a20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a0b30 | file object: 0xffff9489610a0bb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a0cc0 | file object: 0xffff9489610a0d40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a0e50 | file object: 0xffff9489610a0ed0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a1170 | file object: 0xffff9489610a11f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a1300 | file object: 0xffff9489610a1380 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a1490 | file object: 0xffff9489610a1510 | offsetby: 0x80
\$Directory
pool: 0xffff9489610a1620 | file object: 0xffff9489610a16a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a17b0 | file object: 0xffff9489610a1830 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a1940 | file object: 0xffff9489610a19c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a1ad0 | file object: 0xffff9489610a1b50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a1c60 | file object: 0xffff9489610a1ce0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a1df0 | file object: 0xffff9489610a1e70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a2110 | file object: 0xffff9489610a2190 | offsetby: 0x80
\$Directory
pool: 0xffff9489610a22a0 | file object: 0xffff9489610a2320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a2430 | file object: 0xffff9489610a24b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a25c0 | file object: 0xffff9489610a2640 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a2750 | file object: 0xffff9489610a27d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489610a28e0 | file object: 0xffff9489610a2960 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a2a70 | file object: 0xffff9489610a2af0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a2c00 | file object: 0xffff9489610a2c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a2d90 | file object: 0xffff9489610a2e10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a30b0 | file object: 0xffff9489610a3130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a3240 | file object: 0xffff9489610a32c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a33d0 | file object: 0xffff9489610a3450 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a3560 | file object: 0xffff9489610a35e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a36f0 | file object: 0xffff9489610a3770 | offsetby: 0x80
\$Directory
pool: 0xffff9489610a3880 | file object: 0xffff9489610a3900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a3a10 | file object: 0xffff9489610a3a90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a3ba0 | file object: 0xffff9489610a3c20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a3d30 | file object: 0xffff9489610a3db0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a4050 | file object: 0xffff9489610a40d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a41e0 | file object: 0xffff9489610a4260 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a4370 | file object: 0xffff9489610a43f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a4500 | file object: 0xffff9489610a4580 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a4690 | file object: 0xffff9489610a4710 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a4820 | file object: 0xffff9489610a48a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489610a49b0 | file object: 0xffff9489610a4a30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a4b40 | file object: 0xffff9489610a4bc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a4cd0 | file object: 0xffff9489610a4d50 | offsetby: 0x80
\$Directory
pool: 0xffff9489610a4e60 | file object: 0xffff9489610a4ee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a5180 | file object: 0xffff9489610a5200 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a5310 | file object: 0xffff9489610a5390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a54a0 | file object: 0xffff9489610a5520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a5630 | file object: 0xffff9489610a56b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a57c0 | file object: 0xffff9489610a5840 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a5950 | file object: 0xffff9489610a59d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489610a5ae0 | file object: 0xffff9489610a5b60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a5c70 | file object: 0xffff9489610a5cf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a5e00 | file object: 0xffff9489610a5e80 | offsetby: 0x80
\$Directory
pool: 0xffff9489610a6120 | file object: 0xffff9489610a61a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a62b0 | file object: 0xffff9489610a6330 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a6440 | file object: 0xffff9489610a64c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a65d0 | file object: 0xffff9489610a6650 | offsetby: 0x80
\$Directory
pool: 0xffff9489610a6760 | file object: 0xffff9489610a67e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a68f0 | file object: 0xffff9489610a6970 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a6a80 | file object: 0xffff9489610a6b00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a6c10 | file object: 0xffff9489610a6c90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a6da0 | file object: 0xffff9489610a6e20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a70c0 | file object: 0xffff9489610a7140 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a7250 | file object: 0xffff9489610a72d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a73e0 | file object: 0xffff9489610a7460 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a7570 | file object: 0xffff9489610a75f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a7700 | file object: 0xffff9489610a7780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a7890 | file object: 0xffff9489610a7910 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a7a20 | file object: 0xffff9489610a7aa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a7bb0 | file object: 0xffff9489610a7c30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a7d40 | file object: 0xffff9489610a7dc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a8060 | file object: 0xffff9489610a80e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a81f0 | file object: 0xffff9489610a8270 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a8380 | file object: 0xffff9489610a8400 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a8510 | file object: 0xffff9489610a8590 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a86a0 | file object: 0xffff9489610a8720 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a8830 | file object: 0xffff9489610a88b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489610a89c0 | file object: 0xffff9489610a8a40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a8b50 | file object: 0xffff9489610a8bd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a8ce0 | file object: 0xffff9489610a8d60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a8e70 | file object: 0xffff9489610a8ef0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a9000 | file object: 0xffff9489610a9080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a9190 | file object: 0xffff9489610a9210 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a9320 | file object: 0xffff9489610a93a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a94b0 | file object: 0xffff9489610a9530 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a9640 | file object: 0xffff9489610a96c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489610a97d0 | file object: 0xffff9489610a9850 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a9960 | file object: 0xffff9489610a99e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a9af0 | file object: 0xffff9489610a9b70 | offsetby: 0x80
\Windows\System32\msimsg.dll
pool: 0xffff9489610a9c80 | file object: 0xffff9489610a9d00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610a9e10 | file object: 0xffff9489610a9e90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610aa130 | file object: 0xffff9489610aa1b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610aa2c0 | file object: 0xffff9489610aa340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610aa450 | file object: 0xffff9489610aa4d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610aa5e0 | file object: 0xffff9489610aa660 | offsetby: 0x80
\$Directory
pool: 0xffff9489610aa770 | file object: 0xffff9489610aa7f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610aa900 | file object: 0xffff9489610aa980 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610aaa90 | file object: 0xffff9489610aab10 | offsetby: 0x80
\$Directory
pool: 0xffff9489610aac20 | file object: 0xffff9489610aaca0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610aadb0 | file object: 0xffff9489610aae30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ab0d0 | file object: 0xffff9489610ab150 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ab260 | file object: 0xffff9489610ab2e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ab3f0 | file object: 0xffff9489610ab470 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ab580 | file object: 0xffff9489610ab600 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ab710 | file object: 0xffff9489610ab790 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ab8a0 | file object: 0xffff9489610ab920 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610aba30 | file object: 0xffff9489610abab0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610abbc0 | file object: 0xffff9489610abc40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610abd50 | file object: 0xffff9489610abdd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ac070 | file object: 0xffff9489610ac0f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ac200 | file object: 0xffff9489610ac280 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ac390 | file object: 0xffff9489610ac410 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ac520 | file object: 0xffff9489610ac5a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ac6b0 | file object: 0xffff9489610ac730 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ac840 | file object: 0xffff9489610ac8c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ac9d0 | file object: 0xffff9489610aca50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610acb60 | file object: 0xffff9489610acbe0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610accf0 | file object: 0xffff9489610acd70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ad010 | file object: 0xffff9489610ad090 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ad1a0 | file object: 0xffff9489610ad220 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ad330 | file object: 0xffff9489610ad3b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ad4c0 | file object: 0xffff9489610ad540 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ad650 | file object: 0xffff9489610ad6d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ad7e0 | file object: 0xffff9489610ad860 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ad970 | file object: 0xffff9489610ad9f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610adb00 | file object: 0xffff9489610adb80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610adc90 | file object: 0xffff9489610add10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ade20 | file object: 0xffff9489610adea0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ae140 | file object: 0xffff9489610ae1c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ae2d0 | file object: 0xffff9489610ae350 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ae460 | file object: 0xffff9489610ae4e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ae5f0 | file object: 0xffff9489610ae670 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ae780 | file object: 0xffff9489610ae800 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ae910 | file object: 0xffff9489610ae990 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610aeaa0 | file object: 0xffff9489610aeb20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610aec30 | file object: 0xffff9489610aecb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610aedc0 | file object: 0xffff9489610aee40 | offsetby: 0x80
\$Directory
pool: 0xffff9489610af0e0 | file object: 0xffff9489610af160 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610af270 | file object: 0xffff9489610af2f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610af400 | file object: 0xffff9489610af480 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610af590 | file object: 0xffff9489610af610 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610af720 | file object: 0xffff9489610af7a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610af8b0 | file object: 0xffff9489610af930 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610afa40 | file object: 0xffff9489610afac0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610afbd0 | file object: 0xffff9489610afc50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610afd60 | file object: 0xffff9489610afde0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b0080 | file object: 0xffff9489610b0100 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b0210 | file object: 0xffff9489610b0290 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b03a0 | file object: 0xffff9489610b0420 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b0530 | file object: 0xffff9489610b05b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b06c0 | file object: 0xffff9489610b0740 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b0850 | file object: 0xffff9489610b08d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b09e0 | file object: 0xffff9489610b0a60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b0b70 | file object: 0xffff9489610b0bf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b0d00 | file object: 0xffff9489610b0d80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b1020 | file object: 0xffff9489610b10a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b11b0 | file object: 0xffff9489610b1230 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b1340 | file object: 0xffff9489610b13c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b14d0 | file object: 0xffff9489610b1550 | offsetby: 0x80
\$Directory
pool: 0xffff9489610b1660 | file object: 0xffff9489610b16e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b17f0 | file object: 0xffff9489610b1870 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b1980 | file object: 0xffff9489610b1a00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b1b10 | file object: 0xffff9489610b1b90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b1ca0 | file object: 0xffff9489610b1d20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b1e30 | file object: 0xffff9489610b1eb0 | offsetby: 0x80
\$Directory
pool: 0xffff9489610b2150 | file object: 0xffff9489610b21d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489610b22e0 | file object: 0xffff9489610b2360 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b2470 | file object: 0xffff9489610b24f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b2600 | file object: 0xffff9489610b2680 | offsetby: 0x80
\$Directory
pool: 0xffff9489610b2790 | file object: 0xffff9489610b2810 | offsetby: 0x80
\Windows\System32\VSSVC.exe
pool: 0xffff9489610b2920 | file object: 0xffff9489610b29a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489610b2ab0 | file object: 0xffff9489610b2b30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b2c40 | file object: 0xffff9489610b2cc0 | offsetby: 0x80
\$Directory
pool: 0xffff9489610b2dd0 | file object: 0xffff9489610b2e50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b30f0 | file object: 0xffff9489610b3170 | offsetby: 0x80
\Windows\SysWOW64\msvproc.dll
pool: 0xffff9489610b3280 | file object: 0xffff9489610b3300 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b3410 | file object: 0xffff9489610b3490 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b35a0 | file object: 0xffff9489610b3620 | offsetby: 0x80
\Windows\SysWOW64\mfh264enc.dll
pool: 0xffff9489610b3730 | file object: 0xffff9489610b37b0 | offsetby: 0x80
\Windows\System32\sdengin2.dll
pool: 0xffff9489610b38c0 | file object: 0xffff9489610b3940 | offsetby: 0x80
\Windows\System32\en-US\Windows.Web.dll.mui
pool: 0xffff9489610b3a50 | file object: 0xffff9489610b3ad0 | offsetby: 0x80
\Windows\SysWOW64\CompPkgSup.dll
pool: 0xffff9489610b3be0 | file object: 0xffff9489610b3c60 | offsetby: 0x80
\Windows\SysWOW64\AcLayers.dll
pool: 0xffff9489610b3d70 | file object: 0xffff9489610b3df0 | offsetby: 0x80
\Windows\SysWOW64\wbem\wbemsvc.dll
pool: 0xffff9489610b4090 | file object: 0xffff9489610b4110 | offsetby: 0x80
\Windows\System32\fhsvcctl.dll
pool: 0xffff9489610b4220 | file object: 0xffff9489610b42a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b43b0 | file object: 0xffff9489610b4430 | offsetby: 0x80
\$Directory
pool: 0xffff9489610b4540 | file object: 0xffff9489610b45c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b46d0 | file object: 0xffff9489610b4750 | offsetby: 0x80
\Windows\System32\en-US\KernelBase.dll.mui
pool: 0xffff9489610b4860 | file object: 0xffff9489610b48e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b49f0 | file object: 0xffff9489610b4a70 | offsetby: 0x80
\Windows\System32\drivers\fdc.sys
pool: 0xffff9489610b4b80 | file object: 0xffff9489610b4c00 | offsetby: 0x80
\Windows\SysWOW64\wbem\fastprox.dll
pool: 0xffff9489610b4d10 | file object: 0xffff9489610b4d90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b5030 | file object: 0xffff9489610b50b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b51c0 | file object: 0xffff9489610b5240 | offsetby: 0x80
\Windows\System32\vss_ps.dll
pool: 0xffff9489610b5350 | file object: 0xffff9489610b53d0 | offsetby: 0x80
\Windows\System32\mfAACEnc.dll
pool: 0xffff9489610b54e0 | file object: 0xffff9489610b5560 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b5670 | file object: 0xffff9489610b56f0 | offsetby: 0x80
\Windows\System32\TabbtnEx.dll
pool: 0xffff9489610b5800 | file object: 0xffff9489610b5880 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b5990 | file object: 0xffff9489610b5a10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b5b20 | file object: 0xffff9489610b5ba0 | offsetby: 0x80
\Windows\SysWOW64\msmpeg2vdec.dll
pool: 0xffff9489610b5cb0 | file object: 0xffff9489610b5d30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b5e40 | file object: 0xffff9489610b5ec0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b6160 | file object: 0xffff9489610b61e0 | offsetby: 0x80
\Windows\System32\UsoClient.exe
pool: 0xffff9489610b62f0 | file object: 0xffff9489610b6370 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489610b6480 | file object: 0xffff9489610b6500 | offsetby: 0x80
\$Directory
pool: 0xffff9489610b6610 | file object: 0xffff9489610b6690 | offsetby: 0x80
\Windows\System32\trie.dll
pool: 0xffff9489610b67a0 | file object: 0xffff9489610b6820 | offsetby: 0x80
\Windows\System32\en-US\FXSRESM.dll.mui
pool: 0xffff9489610b6930 | file object: 0xffff9489610b69b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Css.Editor.dll
pool: 0xffff9489610b6ac0 | file object: 0xffff9489610b6b40 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\ngen.log
pool: 0xffff9489610b6c50 | file object: 0xffff9489610b6cd0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-io-l1-1-1.dll
pool: 0xffff9489610b6de0 | file object: 0xffff9489610b6e60 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-base-util-l1-1-0.dll
pool: 0xffff9489610b7100 | file object: 0xffff9489610b7180 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489610b7290 | file object: 0xffff9489610b7310 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-heap-l1-1-0.dll
pool: 0xffff9489610b7420 | file object: 0xffff9489610b74a0 | offsetby: 0x80
\Windows\System32\fhsettingsprovider.dll
pool: 0xffff9489610b75b0 | file object: 0xffff9489610b7630 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-util-l1-1-0.dll
pool: 0xffff9489610b7740 | file object: 0xffff9489610b77c0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\ngen.log
pool: 0xffff9489610b78d0 | file object: 0xffff9489610b7950 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-crt-heap-l1-1-0.dll
pool: 0xffff9489610b7a60 | file object: 0xffff9489610b7ae0 | offsetby: 0x80
\Windows\System32\downlevel\ucrtbase.dll
pool: 0xffff9489610b7bf0 | file object: 0xffff9489610b7c70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610b7d80 | file object: 0xffff9489610b7e00 | offsetby: 0x80
\Windows\System32\OneBackupHandler.dll
pool: 0xffff9489610b80a0 | file object: 0xffff9489610b8120 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-crt-math-l1-1-0.dll
pool: 0xffff9489610b8230 | file object: 0xffff9489610b82b0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-crt-conio-l1-1-0.dll
pool: 0xffff9489610b83c0 | file object: 0xffff9489610b8440 | offsetby: 0x80
\Windows\Prefetch\RUNDLL32.EXE-23EA2E5B.pf
pool: 0xffff9489610b8550 | file object: 0xffff9489610b85d0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-url-l1-1-0.dll
pool: 0xffff9489610b86e0 | file object: 0xffff9489610b8760 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-file-l1-1-0.dll
pool: 0xffff9489610b8870 | file object: 0xffff9489610b88f0 | offsetby: 0x80
\Windows\System32\en-US\crypt32.dll.mui
pool: 0xffff9489610b8a00 | file object: 0xffff9489610b8a80 | offsetby: 0x80
\Windows\System32\DeviceSetupManager.dll
pool: 0xffff9489610b8b90 | file object: 0xffff9489610b8c10 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-core-file-l2-1-1.dll
pool: 0xffff9489610b8d20 | file object: 0xffff9489610b8da0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-com-l1-1-0.dll
pool: 0xffff9489610b9040 | file object: 0xffff9489610b90c0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-io-l1-1-0.dll
pool: 0xffff9489610b91d0 | file object: 0xffff9489610b9250 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-crt-time-l1-1-0.dll
pool: 0xffff9489610b9360 | file object: 0xffff9489610b93e0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-realtime-l1-1-0.dll
pool: 0xffff9489610b94f0 | file object: 0xffff9489610b9570 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-shcore-stream-l1-1-0.dll
pool: 0xffff9489610b9680 | file object: 0xffff9489610b9700 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-profile-l1-1-0.dll
pool: 0xffff9489610b9810 | file object: 0xffff9489610b9890 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-timezone-l1-1-0.dll
pool: 0xffff9489610b99a0 | file object: 0xffff9489610b9a20 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-crt-multibyte-l1-1-0.dll
pool: 0xffff9489610b9b30 | file object: 0xffff9489610b9bb0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-registry-l2-1-0.dll
pool: 0xffff9489610b9cc0 | file object: 0xffff9489610b9d40 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-core-file-l2-1-0.dll
pool: 0xffff9489610b9e50 | file object: 0xffff9489610b9ed0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-synch-l1-2-0.dll
pool: 0xffff9489610ba170 | file object: 0xffff9489610ba1f0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-crt-string-l1-1-0.dll
pool: 0xffff9489610ba300 | file object: 0xffff9489610ba380 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-crt-locale-l1-1-0.dll
pool: 0xffff9489610ba490 | file object: 0xffff9489610ba510 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-debug-l1-1-1.dll
pool: 0xffff9489610ba620 | file object: 0xffff9489610ba6a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610ba7b0 | file object: 0xffff9489610ba830 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-crt-runtime-l1-1-0.dll
pool: 0xffff9489610ba940 | file object: 0xffff9489610ba9c0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-crt-stdio-l1-1-0.dll
pool: 0xffff9489610baad0 | file object: 0xffff9489610bab50 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-synch-l1-1-0.dll
pool: 0xffff9489610bac60 | file object: 0xffff9489610bace0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-wow64-l1-1-0.dll
pool: 0xffff9489610badf0 | file object: 0xffff9489610bae70 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-sysinfo-l1-2-1.dll
pool: 0xffff9489610bb110 | file object: 0xffff9489610bb190 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-file-l1-2-0.dll
pool: 0xffff9489610bb2a0 | file object: 0xffff9489610bb320 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-string-l1-1-0.dll
pool: 0xffff9489610bb430 | file object: 0xffff9489610bb4b0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-service-core-l1-1-0.dll
pool: 0xffff9489610bb5c0 | file object: 0xffff9489610bb640 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-console-l1-1-0.dll
pool: 0xffff9489610bb750 | file object: 0xffff9489610bb7d0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-sysinfo-l1-1-0.dll
pool: 0xffff9489610bb8e0 | file object: 0xffff9489610bb960 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-service-core-l1-1-1.dll
pool: 0xffff9489610bba70 | file object: 0xffff9489610bbaf0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-version-l1-1-0.dll
pool: 0xffff9489610bbc00 | file object: 0xffff9489610bbc80 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-sysinfo-l1-2-0.dll
pool: 0xffff9489610bbd90 | file object: 0xffff9489610bbe10 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-file-l1-2-1.dll
pool: 0xffff9489610bc0b0 | file object: 0xffff9489610bc130 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-debug-l1-1-0.dll
pool: 0xffff9489610bc240 | file object: 0xffff9489610bc2c0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-comm-l1-1-0.dll
pool: 0xffff9489610bc3d0 | file object: 0xffff9489610bc450 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-registry-l1-1-0.dll
pool: 0xffff9489610bc560 | file object: 0xffff9489610bc5e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\msvcp140.dll
pool: 0xffff9489610bc6f0 | file object: 0xffff9489610bc770 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-security-provider-L1-1-0.dll
pool: 0xffff9489610bc880 | file object: 0xffff9489610bc900 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-Eventing-Provider-L1-1-0.dll
pool: 0xffff9489610bca10 | file object: 0xffff9489610bca90 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-interlocked-l1-1-0.dll
pool: 0xffff9489610bcba0 | file object: 0xffff9489610bcc20 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-stringloader-l1-1-1.dll
pool: 0xffff9489610bcd30 | file object: 0xffff9489610bcdb0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-localization-l1-2-0.dll
pool: 0xffff9489610bd050 | file object: 0xffff9489610bd0d0 | offsetby: 0x80
\Windows\SystemApps\ShellExperienceHost_cw5n1h2txyewy\resources.pri
pool: 0xffff9489610bd1e0 | file object: 0xffff9489610bd260 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-errorhandling-l1-1-1.dll
pool: 0xffff9489610bd370 | file object: 0xffff9489610bd3f0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-datetime-l1-1-0.dll
pool: 0xffff9489610bd500 | file object: 0xffff9489610bd580 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-crt-environment-l1-1-0.dll
pool: 0xffff9489610bd690 | file object: 0xffff9489610bd710 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-namedpipe-l1-1-0.dll
pool: 0xffff9489610bd820 | file object: 0xffff9489610bd8a0 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-devices-config-L1-1-1.dll
pool: 0xffff9489610bd9b0 | file object: 0xffff9489610bda30 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-stringansi-l1-1-0.dll
pool: 0xffff9489610bdb40 | file object: 0xffff9489610bdbc0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-datetime-l1-1-1.dll
pool: 0xffff9489610bdcd0 | file object: 0xffff9489610bdd50 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-service-private-l1-1-1.dll
pool: 0xffff9489610bde60 | file object: 0xffff9489610bdee0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-security-base-l1-1-0.dll
pool: 0xffff9489610be180 | file object: 0xffff9489610be200 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-security-sddl-l1-1-0.dll
pool: 0xffff9489610be310 | file object: 0xffff9489610be390 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-eventing-consumer-l1-1-0.dll
pool: 0xffff9489610be4a0 | file object: 0xffff9489610be520 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-Eventing-Legacy-L1-1-0.dll
pool: 0xffff9489610be630 | file object: 0xffff9489610be6b0 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-devices-config-L1-1-0.dll
pool: 0xffff9489610be7c0 | file object: 0xffff9489610be840 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-delayload-l1-1-0.dll
pool: 0xffff9489610be950 | file object: 0xffff9489610be9d0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-service-private-l1-1-0.dll
pool: 0xffff9489610beae0 | file object: 0xffff9489610beb60 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-EventLog-Legacy-L1-1-0.dll
pool: 0xffff9489610bec70 | file object: 0xffff9489610becf0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-shutdown-l1-1-0.dll
pool: 0xffff9489610bee00 | file object: 0xffff9489610bee80 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-crt-filesystem-l1-1-0.dll
pool: 0xffff9489610bf120 | file object: 0xffff9489610bf1a0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-service-winsvc-l1-1-0.dll
pool: 0xffff9489610bf2b0 | file object: 0xffff9489610bf330 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-threadpool-l1-2-0.dll
pool: 0xffff9489610bf440 | file object: 0xffff9489610bf4c0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-rtlsupport-l1-1-0.dll
pool: 0xffff9489610bf5d0 | file object: 0xffff9489610bf650 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-localization-l1-2-1.dll
pool: 0xffff9489610bf760 | file object: 0xffff9489610bf7e0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-kernel32-legacy-l1-1-0.dll
pool: 0xffff9489610bf8f0 | file object: 0xffff9489610bf970 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-Core-Kernel32-Private-L1-1-1.dll
pool: 0xffff9489610bfa80 | file object: 0xffff9489610bfb00 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-0.dll
pool: 0xffff9489610bfc10 | file object: 0xffff9489610bfc90 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-Eventing-Controller-L1-1-0.dll
pool: 0xffff9489610bfda0 | file object: 0xffff9489610bfe20 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-threadpool-private-l1-1-0.dll
pool: 0xffff9489610c00c0 | file object: 0xffff9489610c0140 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-security-cryptoapi-l1-1-0.dll
pool: 0xffff9489610c0250 | file object: 0xffff9489610c02d0 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-Eventing-ClassicProvider-L1-1-0.dll
pool: 0xffff9489610c03e0 | file object: 0xffff9489610c0460 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\MsMpEng.exe
pool: 0xffff9489610c0570 | file object: 0xffff9489610c05f0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-kernel32-legacy-l1-1-1.dll
pool: 0xffff9489610c0700 | file object: 0xffff9489610c0780 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-core-localization-obsolete-l1-2-0.dll
pool: 0xffff9489610c0890 | file object: 0xffff9489610c0910 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-privateprofile-l1-1-0.dll
pool: 0xffff9489610c0a20 | file object: 0xffff9489610c0aa0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-shlwapi-legacy-l1-1-0.dll
pool: 0xffff9489610c0bb0 | file object: 0xffff9489610c0c30 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-service-management-l2-1-0.dll
pool: 0xffff9489610c0d40 | file object: 0xffff9489610c0dc0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-service-management-l1-1-0.dll
pool: 0xffff9489610c1060 | file object: 0xffff9489610c10e0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-threadpool-legacy-l1-1-0.dll
pool: 0xffff9489610c11f0 | file object: 0xffff9489610c1270 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-processenvironment-l1-1-0.dll
pool: 0xffff9489610c1380 | file object: 0xffff9489610c1400 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-security-lsapolicy-l1-1-0.dll
pool: 0xffff9489610c1510 | file object: 0xffff9489610c1590 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-Core-Kernel32-Private-L1-1-0.dll
pool: 0xffff9489610c16a0 | file object: 0xffff9489610c1720 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-processenvironment-l1-2-0.dll
pool: 0xffff9489610c1830 | file object: 0xffff9489610c18b0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-privateprofile-l1-1-1.dll
pool: 0xffff9489610c19c0 | file object: 0xffff9489610c1a40 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-processthreads-l1-1-0.dll
pool: 0xffff9489610c1b50 | file object: 0xffff9489610c1bd0 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-processthreads-l1-1-2.dll
pool: 0xffff9489610c1ce0 | file object: 0xffff9489610c1d60 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-shlwapi-obsolete-l1-1-0.dll
pool: 0xffff9489610c1e70 | file object: 0xffff9489610c1ef0 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-Core-Heap-Obsolete-L1-1-0.dll
pool: 0xffff9489610c2000 | file object: 0xffff9489610c2080 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-Security-Lsalookup-L2-1-0.dll
pool: 0xffff9489610c2190 | file object: 0xffff9489610c2210 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-errorhandling-l1-1-0.dll
pool: 0xffff9489610c2320 | file object: 0xffff9489610c23a0 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-Security-Lsalookup-L2-1-1.dll
pool: 0xffff9489610c24b0 | file object: 0xffff9489610c2530 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-libraryloader-l1-1-1.dll
pool: 0xffff9489610c2640 | file object: 0xffff9489610c26c0 | offsetby: 0x80
\Windows\System32\downlevel\API-MS-Win-core-string-obsolete-l1-1-0.dll
pool: 0xffff9489610c27d0 | file object: 0xffff9489610c2850 | offsetby: 0x80
\Windows\System32\downlevel\api-ms-win-core-processthreads-l1-1-1.dll
pool: 0xffff9489610c2960 | file object: 0xffff9489610c29e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\WebClient\Diagnostics\ToolWindows\en\Microsoft.VisualStudio.WebClient.Diagnostics.HtmlToolHost.resources.dll
pool: 0xffff9489610c2af0 | file object: 0xffff9489610c2b70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\System.Threading.Tasks.Dataflow.dll
pool: 0xffff9489610c2c80 | file object: 0xffff9489610c2d00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\Packages\1033\Htmledui.dll
pool: 0xffff9489610c2e10 | file object: 0xffff9489610c2e90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\Packages\1033\mswebprjui.dll
pool: 0xffff9489610c3130 | file object: 0xffff9489610c31b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489610c32c0 | file object: 0xffff9489610c3340 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\WebClient\Diagnostics\ToolWindows\Microsoft.VisualStudio.WebClient.Diagnostics.HtmlToolHost.dll
pool: 0xffff9489610c3450 | file object: 0xffff9489610c34d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\1033\Microsoft.VisualStudio.Windows.FormsUI.dll
pool: 0xffff9489610c35e0 | file object: 0xffff9489610c3660 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\_Instances\0f5aa209\product.svg
pool: 0xffff9489610c3770 | file object: 0xffff9489610c37f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\1033\Microsoft.VisualStudio.DesignUI.dll
pool: 0xffff9489610c3900 | file object: 0xffff9489610c3980 | offsetby: 0x80
\Users\User\AppData\Local\Microsoft\VisualStudio\Packages\_Instances\0f5aa209\state.json
pool: 0xffff9489610c3a90 | file object: 0xffff9489610c3b10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Git.CoreServices.dll
pool: 0xffff9489610c3c20 | file object: 0xffff9489610c3ca0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489610c3db0 | file object: 0xffff9489610c3e30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Windows.Forms\Microsoft.VisualStudio.WinForms.Package.dll
pool: 0xffff948961102160 | file object: 0xffff9489611021e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\XamlLanguageService\en\Microsoft.VisualStudio.DesignTools.XamlLanguageService.resources.dll
pool: 0xffff9489611022f0 | file object: 0xffff948961102370 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.Community.x64,version=16.6.30013.169,chip=x64\_package.json
pool: 0xffff948961102480 | file object: 0xffff948961102500 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_64\Microsoft.AppV.AppvClientComConsumer\v4.0_10.0.0.0__31bf3856ad364e35\Microsoft.AppV.AppvClientComConsumer.dll
pool: 0xffff948961102610 | file object: 0xffff948961102690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611027a0 | file object: 0xffff948961102820 | offsetby: 0x80
\$Directory
pool: 0xffff948961102930 | file object: 0xffff9489611029b0 | offsetby: 0x80
\$Directory
pool: 0xffff948961102ac0 | file object: 0xffff948961102b40 | offsetby: 0x80
\$Directory
pool: 0xffff948961102c50 | file object: 0xffff948961102cd0 | offsetby: 0x80
\Windows\System32\energy.dll
pool: 0xffff948961102de0 | file object: 0xffff948961102e60 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Confe64a9051#\db14181143f09a81576d6aaee8456d8d\System.Configuration.Install.ni.dll
pool: 0xffff948961103100 | file object: 0xffff948961103180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961103290 | file object: 0xffff948961103310 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\VC\vcpackages\1033\VCProjectUI.dll
pool: 0xffff948961103420 | file object: 0xffff9489611034a0 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ProjectSystem,version=16.6.213.44640\_package.json
pool: 0xffff9489611035b0 | file object: 0xffff948961103630 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948961103740 | file object: 0xffff9489611037c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611038d0 | file object: 0xffff948961103950 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961103a60 | file object: 0xffff948961103ae0 | offsetby: 0x80
\$Directory
pool: 0xffff948961103bf0 | file object: 0xffff948961103c70 | offsetby: 0x80
\$Directory
pool: 0xffff948961103d80 | file object: 0xffff948961103e00 | offsetby: 0x80
\$Directory
pool: 0xffff9489611040a0 | file object: 0xffff948961104120 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\VsDebugPresentationPackage.dll
pool: 0xffff948961104230 | file object: 0xffff9489611042b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611043c0 | file object: 0xffff948961104440 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.ComponentModel.DataAnnotations\v4.0_4.0.0.0__31bf3856ad364e35\System.ComponentModel.DataAnnotations.dll
pool: 0xffff948961104550 | file object: 0xffff9489611045d0 | offsetby: 0x80
\ProgramData\USOPrivate\UpdateStore\UpdateCspStore.xml
pool: 0xffff9489611046e0 | file object: 0xffff948961104760 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.ProjectSystem.Query,version=16.6.213.44640\_package.json
pool: 0xffff948961104870 | file object: 0xffff9489611048f0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\internal-f6a94c248219f0f4046ba1dd12402f4c.code
pool: 0xffff948961104a00 | file object: 0xffff948961104a80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Publish\Environments\Microsoft.WebTools.Environments.VS.pkgdef
pool: 0xffff948961104b90 | file object: 0xffff948961104c10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLCommon\130\Microsoft.VisualStudio.Data.Tools.SqlCommonPackage.pkgdef
pool: 0xffff948961104d20 | file object: 0xffff948961104da0 | offsetby: 0x80
\$Directory
pool: 0xffff948961105040 | file object: 0xffff9489611050c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611051d0 | file object: 0xffff948961105250 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961105360 | file object: 0xffff9489611053e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Azure.DevSpaces.Tools.Common.dll
pool: 0xffff9489611054f0 | file object: 0xffff948961105570 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\kvmquii2.aaf\Microsoft.VisualStudio.Azure.Fabric.DiagnosticEvents.dll
pool: 0xffff948961105680 | file object: 0xffff948961105700 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Publish\Microsoft.Publish.Framework.Web.dll
pool: 0xffff948961105810 | file object: 0xffff948961105890 | offsetby: 0x80
\$Directory
pool: 0xffff9489611059a0 | file object: 0xffff948961105a20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961105b30 | file object: 0xffff948961105bb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961105cc0 | file object: 0xffff948961105d40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961105e50 | file object: 0xffff948961105ed0 | offsetby: 0x80
\$Directory
pool: 0xffff948961106170 | file object: 0xffff9489611061f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ClientDiagnostics\AppResponsiveness\Microsoft.VisualStudio.AppResponsiveness.dll
pool: 0xffff948961106300 | file object: 0xffff948961106380 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\Packages\1033\dirprjui.dll
pool: 0xffff948961106490 | file object: 0xffff948961106510 | offsetby: 0x80
\$Directory
pool: 0xffff948961106620 | file object: 0xffff9489611066a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611067b0 | file object: 0xffff948961106830 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\AppInsights\Core\Microsoft.VisualStudio.ApplicationInsights.dll
pool: 0xffff948961106940 | file object: 0xffff9489611069c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961106ad0 | file object: 0xffff948961106b50 | offsetby: 0x80
\$Directory
pool: 0xffff948961106c60 | file object: 0xffff948961106ce0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961106df0 | file object: 0xffff948961106e70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961107110 | file object: 0xffff948961107190 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.DiagnosticsHub.SDK.dll
pool: 0xffff9489611072a0 | file object: 0xffff948961107320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961107430 | file object: 0xffff9489611074b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611075c0 | file object: 0xffff948961107640 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\DAC\150\Microsoft.Data.Tools.Schema.Sql.dll
pool: 0xffff948961107750 | file object: 0xffff9489611077d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\node_modules\wer-api-windows\build\Release\WerAPIWin.node
pool: 0xffff9489611078e0 | file object: 0xffff948961107960 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961107a70 | file object: 0xffff948961107af0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Unit Test Explorer\TestWIExtension\Microsoft.TeamFoundation.TestManagement.TestMethodAssociationExtension.dll
pool: 0xffff948961107c00 | file object: 0xffff948961107c80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Editor.Implementation.dll
pool: 0xffff948961107d90 | file object: 0xffff948961107e10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\AppInsights\Core\Microsoft.VisualStudio.ApplicationInsights.dll
pool: 0xffff9489611080b0 | file object: 0xffff948961108130 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\DiagnosticsHub\Microsoft.DiagnosticsHub.VisualStudio.Package.dll
pool: 0xffff948961108240 | file object: 0xffff9489611082c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611083d0 | file object: 0xffff948961108450 | offsetby: 0x80
\$Directory
pool: 0xffff948961108560 | file object: 0xffff9489611085e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611086f0 | file object: 0xffff948961108770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961108880 | file object: 0xffff948961108900 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Scaffolding\Microsoft.AspNet.Scaffolding.12.0.dll
pool: 0xffff948961108a10 | file object: 0xffff948961108a90 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\ContextTagKeys-f8bc121811aa319ca943138e66a7dd05.codede
pool: 0xffff948961108ba0 | file object: 0xffff948961108c20 | offsetby: 0x80
\Program Files (x86)\Common Files\Microsoft\ExtensionManager\Extensions\Microsoft\Windows Kits\10\Windows Store SDK\extension.vsixmanifest
pool: 0xffff948961108d30 | file object: 0xffff948961108db0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.Editor.dll
pool: 0xffff948961109050 | file object: 0xffff9489611090d0 | offsetby: 0x80
\Program Files (x86)\Common Files\Microsoft\ExtensionManager\Extensions\Microsoft\Windows Kits\10\Desktop SDK\extension.vsixmanifest
pool: 0xffff9489611091e0 | file object: 0xffff948961109260 | offsetby: 0x80
\$Directory
pool: 0xffff948961109370 | file object: 0xffff9489611093f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Library Manager\Microsoft.Web.LibraryManager.Vsix.dll
pool: 0xffff948961109500 | file object: 0xffff948961109580 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft.windows.c..-controls.resources_6595b64144ccf1df_6.0.18362.752_en-us_fccbfed23fb8e8f9\comctl32.dll.mui
pool: 0xffff948961109690 | file object: 0xffff948961109710 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\node_modules\enable-wer-windows\build\Release\enableWerWin.node
pool: 0xffff948961109820 | file object: 0xffff9489611098a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Package Management\Microsoft.WebTools.PackageManagement.dll
pool: 0xffff9489611099b0 | file object: 0xffff948961109a30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.ExternalAccess.Razor.dll
pool: 0xffff948961109b40 | file object: 0xffff948961109bc0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.C8fd77a78#\f8c544786c47eda53f7f528058372e6d\Microsoft.CodeAnalysis.Workspaces.ni.dll.aux
pool: 0xffff948961109cd0 | file object: 0xffff948961109d50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\ProjectSystem\Microsoft.WebTools.ProjectSystem.Components.dll
pool: 0xffff948961109e60 | file object: 0xffff948961109ee0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.EditorFeatures.dll
pool: 0xffff94896110a180 | file object: 0xffff94896110a200 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.DeveloperTools.dll
pool: 0xffff94896110a310 | file object: 0xffff94896110a390 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V0adf9eae#\c2a72c43646b7b8a852459613edd3d6c\Microsoft.VisualStudio.CoreUtility.ni.dll.aux
pool: 0xffff94896110a4a0 | file object: 0xffff94896110a520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896110a630 | file object: 0xffff94896110a6b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896110a7c0 | file object: 0xffff94896110a840 | offsetby: 0x80
\Program Files (x86)\Common Files\Microsoft\ExtensionManager\Extensions\Microsoft\Windows Kits\10\SDK ARM Additions\extension.vsixmanifest
pool: 0xffff94896110a950 | file object: 0xffff94896110a9d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.DesignTools.RuntimeHostBase.dll
pool: 0xffff94896110aae0 | file object: 0xffff94896110ab60 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\RemoteDependencyData-3a2396b997d558b9422c496664e0579f.codel
pool: 0xffff94896110ac70 | file object: 0xffff94896110acf0 | offsetby: 0x80
\$Directory
pool: 0xffff94896110ae00 | file object: 0xffff94896110ae80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896110b120 | file object: 0xffff94896110b1a0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Thre3435c1dc#\b149f9ffd2c306451dc4a043ae8f6aa3\System.Threading.Tasks.Dataflow.ni.dll.aux
pool: 0xffff94896110b2b0 | file object: 0xffff94896110b330 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Unit Test Explorer\TestWIExtension\Microsoft.TeamFoundation.TestManagement.TestMethodAssociationExtension.dll
pool: 0xffff94896110b440 | file object: 0xffff94896110b4c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\node_modules\native-windows-registry\build\Release\windows-registry.node
pool: 0xffff94896110b5d0 | file object: 0xffff94896110b650 | offsetby: 0x80
\$Directory
pool: 0xffff94896110b760 | file object: 0xffff94896110b7e0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V0435ba73#\42aa16524b84092894291acfc9017625\Microsoft.VisualStudio.ErrorListPkg.ni.dll.aux
pool: 0xffff94896110b8f0 | file object: 0xffff94896110b970 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ErrorList\Microsoft.VisualStudio.ErrorListPkg.dll
pool: 0xffff94896110ba80 | file object: 0xffff94896110bb00 | offsetby: 0x80
\$Directory
pool: 0xffff94896110bc10 | file object: 0xffff94896110bc90 | offsetby: 0x80
\$Directory
pool: 0xffff94896110bda0 | file object: 0xffff94896110be20 | offsetby: 0x80
\Users\User\Desktop\lpus-0.3-alpha
pool: 0xffff94896110c0c0 | file object: 0xffff94896110c140 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896110c250 | file object: 0xffff94896110c2d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Git.HostingProvider.GitHub.imagemanifest
pool: 0xffff94896110c3e0 | file object: 0xffff94896110c460 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.Commenting.Presentation.imagemanifest
pool: 0xffff94896110c570 | file object: 0xffff94896110c5f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\ProjectSystem\Microsoft.WebTools.ProjectSystem.Components.dll
pool: 0xffff94896110c700 | file object: 0xffff94896110c780 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Microsoft.VisualStudio.WindowsAzure.dll
pool: 0xffff94896110c890 | file object: 0xffff94896110c910 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\Microsoft.AspNetCore.Razor.Language.dll
pool: 0xffff94896110ca20 | file object: 0xffff94896110caa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896110cbb0 | file object: 0xffff94896110cc30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Azure.DevSpaces.Tools.Package.dll
pool: 0xffff94896110cd40 | file object: 0xffff94896110cdc0 | offsetby: 0x80
\$Directory
pool: 0xffff94896110d060 | file object: 0xffff94896110d0e0 | offsetby: 0x80
\$Directory
pool: 0xffff94896110d1f0 | file object: 0xffff94896110d270 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Microsoft.VisualStudio.WindowsAzure.dll
pool: 0xffff94896110d380 | file object: 0xffff94896110d400 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896110d510 | file object: 0xffff94896110d590 | offsetby: 0x80
\$Directory
pool: 0xffff94896110d6a0 | file object: 0xffff94896110d720 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.TeamFoundation.WorkItemTracking.dll
pool: 0xffff94896110d830 | file object: 0xffff94896110d8b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\oj55wdle.bv5\Microsoft.VisualStudio.Azure.DevSpaces.Tools.Package.dll
pool: 0xffff94896110d9c0 | file object: 0xffff94896110da40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\PackageIconMonikers.imagemanifest
pool: 0xffff94896110db50 | file object: 0xffff94896110dbd0 | offsetby: 0x80
\$Directory
pool: 0xffff94896110dce0 | file object: 0xffff94896110dd60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\MDD\Debugger\Microsoft.Kofe.Package.dll
pool: 0xffff94896110de70 | file object: 0xffff94896110def0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896110e000 | file object: 0xffff94896110e080 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\vc.imagemanifest
pool: 0xffff94896110e190 | file object: 0xffff94896110e210 | offsetby: 0x80
\$Directory
pool: 0xffff94896110e320 | file object: 0xffff94896110e3a0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Runtime.Serialization\v4.0_4.0.0.0__b77a5c561934e089\System.Runtime.Serialization.dll
pool: 0xffff94896110e4b0 | file object: 0xffff94896110e530 | offsetby: 0x80
\$Directory
pool: 0xffff94896110e640 | file object: 0xffff94896110e6c0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\LocalState\AppIconCache\100\Microsoft_MicrosoftEdge_8wekyb3d8bbwe!MicrosoftEdge
pool: 0xffff94896110e7d0 | file object: 0xffff94896110e850 | offsetby: 0x80
\$Directory
pool: 0xffff94896110e960 | file object: 0xffff94896110e9e0 | offsetby: 0x80
\Windows\SysWOW64\msctfui.dll
pool: 0xffff94896110eaf0 | file object: 0xffff94896110eb70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\1033\Microsoft.TeamFoundation.TestManagement.ClientPackageUI.dll
pool: 0xffff94896110ec80 | file object: 0xffff94896110ed00 | offsetby: 0x80
\ProgramData\Microsoft\VisualStudio\Packages\Microsoft.VisualStudio.LiveShareApi,version=16.6.30014.187\_package.json
pool: 0xffff94896110ee10 | file object: 0xffff94896110ee90 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\code\electron-browser\sharedProcess\sharedProcess.html
pool: 0xffff94896110f130 | file object: 0xffff94896110f1b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VCSharp_Proj_System_Reg_26672.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896110f2c0 | file object: 0xffff94896110f340 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.MicrosoftEdge_8wekyb3d8bbwe\AC\#!002\Microsoft\CryptnetUrlCache\MetaData\B398B80134F72209547439DB21AB308D_5FDD03068CBBD8A96F3AB9595BA10093
pool: 0xffff94896110f450 | file object: 0xffff94896110f4d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896110f5e0 | file object: 0xffff94896110f660 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\9398c2f6376963ae3affb4ff4239440f\System.Configuration.ni.dll.aux
pool: 0xffff94896110f770 | file object: 0xffff94896110f7f0 | offsetby: 0x80
\ProgramData\Microsoft\Windows Defender\Platform\4.18.2003.8-0\X86\MpOAV.dll
pool: 0xffff94896110f900 | file object: 0xffff94896110f980 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Configuration\9398c2f6376963ae3affb4ff4239440f\System.Configuration.ni.dll
pool: 0xffff94896110fa90 | file object: 0xffff94896110fb10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.VC.dll
pool: 0xffff94896110fc20 | file object: 0xffff94896110fca0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\1033\TfsProviderUI.dll
pool: 0xffff94896110fdb0 | file object: 0xffff94896110fe30 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.IO.Compression.FileSystem\v4.0_4.0.0.0__b77a5c561934e089\System.IO.Compression.FileSystem.dll
pool: 0xffff9489611100d0 | file object: 0xffff948961110150 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961110260 | file object: 0xffff9489611102e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools Shared\Microsoft.WebTools.Shared.VS.dll
pool: 0xffff9489611103f0 | file object: 0xffff948961110470 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestGeneration\Microsoft.VisualStudio.TestPlatform.TestGeneration.Package.dll
pool: 0xffff948961110580 | file object: 0xffff948961110600 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948961110710 | file object: 0xffff948961110790 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\natives_blob.bin
pool: 0xffff9489611108a0 | file object: 0xffff948961110920 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.TeamFoundation.VersionControl.dll
pool: 0xffff948961110a30 | file object: 0xffff948961110ab0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Team Tools\Performance Tools\1033\perfpkgui.dll
pool: 0xffff948961110bc0 | file object: 0xffff948961110c40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Shell.15.0.dll
pool: 0xffff948961110d50 | file object: 0xffff948961110dd0 | offsetby: 0x80
\$Directory
pool: 0xffff948961111070 | file object: 0xffff9489611110f0 | offsetby: 0x80
\$Directory
pool: 0xffff948961111200 | file object: 0xffff948961111280 | offsetby: 0x80
\Users\User\AppData\Local\Temp\VSCode Crashes\CrashpadMetrics.pmaive.pma
pool: 0xffff948961111390 | file object: 0xffff948961111410 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\utf32-b8d2ce492be77edd3f45180c05ab66fd.code
pool: 0xffff948961111520 | file object: 0xffff9489611115a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489611116b0 | file object: 0xffff948961111730 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ProjectSystemQuery\extension.vsixmanifest
pool: 0xffff948961111840 | file object: 0xffff9489611118c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Microsoft.VisualStudio.Validation.dll
pool: 0xffff9489611119d0 | file object: 0xffff948961111a50 | offsetby: 0x80
\Windows\System32\NcaApi.dll
pool: 0xffff948961111b60 | file object: 0xffff948961111be0 | offsetby: 0x80
\$Directory
pool: 0xffff948961111cf0 | file object: 0xffff948961111d70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961112010 | file object: 0xffff948961112090 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489611121a0 | file object: 0xffff948961112220 | offsetby: 0x80
\$Directory
pool: 0xffff948961112330 | file object: 0xffff9489611123b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611124c0 | file object: 0xffff948961112540 | offsetby: 0x80
\$Directory
pool: 0xffff948961112650 | file object: 0xffff9489611126d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611127e0 | file object: 0xffff948961112860 | offsetby: 0x80
\Windows\SysWOW64\rasapi32.dll
pool: 0xffff948961112970 | file object: 0xffff9489611129f0 | offsetby: 0x80
\Windows\SysWOW64\rtutils.dll
pool: 0xffff948961112b00 | file object: 0xffff948961112b80 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948961112c90 | file object: 0xffff948961112d10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961112e20 | file object: 0xffff948961112ea0 | offsetby: 0x80
\$Directory
pool: 0xffff948961113140 | file object: 0xffff9489611131c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611132d0 | file object: 0xffff948961113350 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961113460 | file object: 0xffff9489611134e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611135f0 | file object: 0xffff948961113670 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948961113780 | file object: 0xffff948961113800 | offsetby: 0x80
\Windows\SysWOW64\dhcpcsvc6.dll
pool: 0xffff948961113910 | file object: 0xffff948961113990 | offsetby: 0x80
\$Directory
pool: 0xffff948961113aa0 | file object: 0xffff948961113b20 | offsetby: 0x80
\Windows\SysWOW64\rasman.dll
pool: 0xffff948961113c30 | file object: 0xffff948961113cb0 | offsetby: 0x80
\$Directory
pool: 0xffff948961113dc0 | file object: 0xffff948961113e40 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\utf7-57846218bc4542ed804e7af862490f86.code
pool: 0xffff9489611140e0 | file object: 0xffff948961114160 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961114270 | file object: 0xffff9489611142f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\VSHiveStub.exe
pool: 0xffff948961114400 | file object: 0xffff948961114480 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961114590 | file object: 0xffff948961114610 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948961114720 | file object: 0xffff9489611147a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611148b0 | file object: 0xffff948961114930 | offsetby: 0x80
\$Directory
pool: 0xffff948961114a40 | file object: 0xffff948961114ac0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961114bd0 | file object: 0xffff948961114c50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961114d60 | file object: 0xffff948961114de0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961115080 | file object: 0xffff948961115100 | offsetby: 0x80
\$Directory
pool: 0xffff948961115210 | file object: 0xffff948961115290 | offsetby: 0x80
\$Directory
pool: 0xffff9489611153a0 | file object: 0xffff948961115420 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\devenv.isolation.ini
pool: 0xffff948961115530 | file object: 0xffff9489611155b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611156c0 | file object: 0xffff948961115740 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\chrome_100_percent.pak
pool: 0xffff948961115850 | file object: 0xffff9489611158d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611159e0 | file object: 0xffff948961115a60 | offsetby: 0x80
\$Directory
pool: 0xffff948961115b70 | file object: 0xffff948961115bf0 | offsetby: 0x80
\$Directory
pool: 0xffff948961115d00 | file object: 0xffff948961115d80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961116020 | file object: 0xffff9489611160a0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489611161b0 | file object: 0xffff948961116230 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948961116340 | file object: 0xffff9489611163c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611164d0 | file object: 0xffff948961116550 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961116660 | file object: 0xffff9489611166e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611167f0 | file object: 0xffff948961116870 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961116980 | file object: 0xffff948961116a00 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948961116b10 | file object: 0xffff948961116b90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961116ca0 | file object: 0xffff948961116d20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\master.pkgdef
pool: 0xffff948961116e30 | file object: 0xffff948961116eb0 | offsetby: 0x80
\$Directory
pool: 0xffff948961117150 | file object: 0xffff9489611171d0 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489611172e0 | file object: 0xffff948961117360 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961117470 | file object: 0xffff9489611174f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961117600 | file object: 0xffff948961117680 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961117790 | file object: 0xffff948961117810 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948961117920 | file object: 0xffff9489611179a0 | offsetby: 0x80
\$Directory
pool: 0xffff948961117ab0 | file object: 0xffff948961117b30 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\natives_blob.bin
pool: 0xffff948961117c40 | file object: 0xffff948961117cc0 | offsetby: 0x80
\$Directory
pool: 0xffff948961117dd0 | file object: 0xffff948961117e50 | offsetby: 0x80
\$Directory
pool: 0xffff9489611180f0 | file object: 0xffff948961118170 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961118280 | file object: 0xffff948961118300 | offsetby: 0x80
\$Directory
pool: 0xffff948961118410 | file object: 0xffff948961118490 | offsetby: 0x80
\$Directory
pool: 0xffff9489611185a0 | file object: 0xffff948961118620 | offsetby: 0x80
\$Directory
pool: 0xffff948961118730 | file object: 0xffff9489611187b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611188c0 | file object: 0xffff948961118940 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961118a50 | file object: 0xffff948961118ad0 | offsetby: 0x80
System\CurrentControlSet\Control\Session Manager\Environmenttion\36d0bbf456e19171162fb117487d13e6\System
pool: 0xffff948961118be0 | file object: 0xffff948961118c60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961118d70 | file object: 0xffff948961118df0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961119090 | file object: 0xffff948961119110 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961119220 | file object: 0xffff9489611192a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611193b0 | file object: 0xffff948961119430 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961119540 | file object: 0xffff9489611195c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611196d0 | file object: 0xffff948961119750 | offsetby: 0x80
Ɛ̄સ袛舎￿䫠惘钉￿退xšÀ୰袛舎￿..୰袛舎￿\Device\HarddiskVolume2\Users\User\AppData\Local\Microsoft\CLR_v4.0\UsageLogsmAnalytics.dll
pool: 0xffff948961119860 | file object: 0xffff9489611198e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611199f0 | file object: 0xffff948961119a70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961119b80 | file object: 0xffff948961119c00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961119d10 | file object: 0xffff948961119d90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111a030 | file object: 0xffff94896111a0b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111a1c0 | file object: 0xffff94896111a240 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111a350 | file object: 0xffff94896111a3d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Language.GenerateType.dll
pool: 0xffff94896111a4e0 | file object: 0xffff94896111a560 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111a670 | file object: 0xffff94896111a6f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111a800 | file object: 0xffff94896111a880 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111a990 | file object: 0xffff94896111aa10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111ab20 | file object: 0xffff94896111aba0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111acb0 | file object: 0xffff94896111ad30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111ae40 | file object: 0xffff94896111aec0 | offsetby: 0x80
\$Directory
pool: 0xffff94896111b160 | file object: 0xffff94896111b1e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111b2f0 | file object: 0xffff94896111b370 | offsetby: 0x80
\$Directory
pool: 0xffff94896111b480 | file object: 0xffff94896111b500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111b610 | file object: 0xffff94896111b690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111b7a0 | file object: 0xffff94896111b820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111b930 | file object: 0xffff94896111b9b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111bac0 | file object: 0xffff94896111bb40 | offsetby: 0x80
\$Directory
pool: 0xffff94896111bc50 | file object: 0xffff94896111bcd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111bde0 | file object: 0xffff94896111be60 | offsetby: 0x80
\$Directory
pool: 0xffff94896111c100 | file object: 0xffff94896111c180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111c290 | file object: 0xffff94896111c310 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111c420 | file object: 0xffff94896111c4a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896111c5b0 | file object: 0xffff94896111c630 | offsetby: 0x80
\$Directory
pool: 0xffff94896111c740 | file object: 0xffff94896111c7c0 | offsetby: 0x80
\Windows\System32\msg711.acm
pool: 0xffff94896111c8d0 | file object: 0xffff94896111c950 | offsetby: 0x80
\$Directory
pool: 0xffff94896111ca60 | file object: 0xffff94896111cae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111cbf0 | file object: 0xffff94896111cc70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111cd80 | file object: 0xffff94896111ce00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111d0a0 | file object: 0xffff94896111d120 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111d230 | file object: 0xffff94896111d2b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111d3c0 | file object: 0xffff94896111d440 | offsetby: 0x80
\$Directory
pool: 0xffff94896111d550 | file object: 0xffff94896111d5d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111d6e0 | file object: 0xffff94896111d760 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111d870 | file object: 0xffff94896111d8f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111da00 | file object: 0xffff94896111da80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111db90 | file object: 0xffff94896111dc10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111dd20 | file object: 0xffff94896111dda0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111e040 | file object: 0xffff94896111e0c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111e1d0 | file object: 0xffff94896111e250 | offsetby: 0x80
\$Directory
pool: 0xffff94896111e360 | file object: 0xffff94896111e3e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111e4f0 | file object: 0xffff94896111e570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111e680 | file object: 0xffff94896111e700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111e810 | file object: 0xffff94896111e890 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111e9a0 | file object: 0xffff94896111ea20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111eb30 | file object: 0xffff94896111ebb0 | offsetby: 0x80
\$Directory
pool: 0xffff94896111ecc0 | file object: 0xffff94896111ed40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111ee50 | file object: 0xffff94896111eed0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111f170 | file object: 0xffff94896111f1f0 | offsetby: 0x80
\$Directory
pool: 0xffff94896111f300 | file object: 0xffff94896111f380 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111f490 | file object: 0xffff94896111f510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111f620 | file object: 0xffff94896111f6a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111f7b0 | file object: 0xffff94896111f830 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111f940 | file object: 0xffff94896111f9c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111fad0 | file object: 0xffff94896111fb50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111fc60 | file object: 0xffff94896111fce0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896111fdf0 | file object: 0xffff94896111fe70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961120110 | file object: 0xffff948961120190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611202a0 | file object: 0xffff948961120320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961120430 | file object: 0xffff9489611204b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611205c0 | file object: 0xffff948961120640 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961120750 | file object: 0xffff9489611207d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611208e0 | file object: 0xffff948961120960 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961120a70 | file object: 0xffff948961120af0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961120c00 | file object: 0xffff948961120c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961120d90 | file object: 0xffff948961120e10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611210b0 | file object: 0xffff948961121130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961121240 | file object: 0xffff9489611212c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611213d0 | file object: 0xffff948961121450 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961121560 | file object: 0xffff9489611215e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611216f0 | file object: 0xffff948961121770 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Globalization\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Globalization.dll
pool: 0xffff948961121880 | file object: 0xffff948961121900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961121a10 | file object: 0xffff948961121a90 | offsetby: 0x80
\Windows\System32\imaadp32.acm
pool: 0xffff948961121ba0 | file object: 0xffff948961121c20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961121d30 | file object: 0xffff948961121db0 | offsetby: 0x80
\Windows\System32\msiexec.exe
pool: 0xffff948961122050 | file object: 0xffff9489611220d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Project\Microsoft.VisualStudio.ProjectSystem.VS.Implementation.dll
pool: 0xffff9489611221e0 | file object: 0xffff948961122260 | offsetby: 0x80
\Windows\System32\edgeangle.dll
pool: 0xffff948961122370 | file object: 0xffff9489611223f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961122500 | file object: 0xffff948961122580 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961122690 | file object: 0xffff948961122710 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961122820 | file object: 0xffff9489611228a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611229b0 | file object: 0xffff948961122a30 | offsetby: 0x80
\Windows\System32\AcLayers.dll
pool: 0xffff948961122b40 | file object: 0xffff948961122bc0 | offsetby: 0x80
\$Directory
pool: 0xffff948961122cd0 | file object: 0xffff948961122d50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961122e60 | file object: 0xffff948961122ee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961123180 | file object: 0xffff948961123200 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961123310 | file object: 0xffff948961123390 | offsetby: 0x80
\$Directory
pool: 0xffff9489611234a0 | file object: 0xffff948961123520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961123630 | file object: 0xffff9489611236b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611237c0 | file object: 0xffff948961123840 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961123950 | file object: 0xffff9489611239d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961123ae0 | file object: 0xffff948961123b60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961123c70 | file object: 0xffff948961123cf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961123e00 | file object: 0xffff948961123e80 | offsetby: 0x80
\Windows\System32\msgsm32.acm
pool: 0xffff948961124120 | file object: 0xffff9489611241a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611242b0 | file object: 0xffff948961124330 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961124440 | file object: 0xffff9489611244c0 | offsetby: 0x80
\Windows\System32\msadp32.acm
pool: 0xffff9489611245d0 | file object: 0xffff948961124650 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961124760 | file object: 0xffff9489611247e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611248f0 | file object: 0xffff948961124970 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961124a80 | file object: 0xffff948961124b00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961124c10 | file object: 0xffff948961124c90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961124da0 | file object: 0xffff948961124e20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611250c0 | file object: 0xffff948961125140 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961125250 | file object: 0xffff9489611252d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611253e0 | file object: 0xffff948961125460 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961125570 | file object: 0xffff9489611255f0 | offsetby: 0x80
\$Directory
pool: 0xffff948961125700 | file object: 0xffff948961125780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961125890 | file object: 0xffff948961125910 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961125a20 | file object: 0xffff948961125aa0 | offsetby: 0x80
\Windows\Prefetch\NGEN.EXE-AE594A6B.pf
pool: 0xffff948961125bb0 | file object: 0xffff948961125c30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961125d40 | file object: 0xffff948961125dc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961126060 | file object: 0xffff9489611260e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611261f0 | file object: 0xffff948961126270 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961126380 | file object: 0xffff948961126400 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961126510 | file object: 0xffff948961126590 | offsetby: 0x80
\Windows\System32\Windows.System.Profile.SystemManufacturers.dll
pool: 0xffff9489611266a0 | file object: 0xffff948961126720 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961126830 | file object: 0xffff9489611268b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611269c0 | file object: 0xffff948961126a40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961126b50 | file object: 0xffff948961126bd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961126ce0 | file object: 0xffff948961126d60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961126e70 | file object: 0xffff948961126ef0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationUI\v4.0_4.0.0.0__31bf3856ad364e35\PresentationUI.dll
pool: 0xffff948961127000 | file object: 0xffff948961127080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961127190 | file object: 0xffff948961127210 | offsetby: 0x80
\$Directory
pool: 0xffff948961127320 | file object: 0xffff9489611273a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611274b0 | file object: 0xffff948961127530 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961127640 | file object: 0xffff9489611276c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\icudtl.dat
pool: 0xffff9489611277d0 | file object: 0xffff948961127850 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961127960 | file object: 0xffff9489611279e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961127af0 | file object: 0xffff948961127b70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961127c80 | file object: 0xffff948961127d00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961127e10 | file object: 0xffff948961127e90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961128130 | file object: 0xffff9489611281b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611282c0 | file object: 0xffff948961128340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961128450 | file object: 0xffff9489611284d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611285e0 | file object: 0xffff948961128660 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961128770 | file object: 0xffff9489611287f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961128900 | file object: 0xffff948961128980 | offsetby: 0x80
\$Directory
pool: 0xffff948961128a90 | file object: 0xffff948961128b10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961128c20 | file object: 0xffff948961128ca0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961128db0 | file object: 0xffff948961128e30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611290d0 | file object: 0xffff948961129150 | offsetby: 0x80
\$Directory
pool: 0xffff948961129260 | file object: 0xffff9489611292e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611293f0 | file object: 0xffff948961129470 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.710_none_5f52d84058d0677f\smipi.dll
pool: 0xffff948961129580 | file object: 0xffff948961129600 | offsetby: 0x80
\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.18362.710_none_5f52d84058d0677f\smiengine.dll
pool: 0xffff948961129710 | file object: 0xffff948961129790 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611298a0 | file object: 0xffff948961129920 | offsetby: 0x80
\$Directory
pool: 0xffff948961129a30 | file object: 0xffff948961129ab0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961129bc0 | file object: 0xffff948961129c40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961129d50 | file object: 0xffff948961129dd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112a070 | file object: 0xffff94896112a0f0 | offsetby: 0x80
\$Directory
pool: 0xffff94896112a200 | file object: 0xffff94896112a280 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\MSBuild\Current\Bin\Microsoft.Build.dll
pool: 0xffff94896112a390 | file object: 0xffff94896112a410 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112a520 | file object: 0xffff94896112a5a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112a6b0 | file object: 0xffff94896112a730 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Diagnostics.Debug\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Diagnostics.Debug.dll
pool: 0xffff94896112a840 | file object: 0xffff94896112a8c0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Dynamic\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Dynamic.dll
pool: 0xffff94896112a9d0 | file object: 0xffff94896112aa50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112ab60 | file object: 0xffff94896112abe0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\Microsoft.Vd43b287e#\a6c34d669c104e28059503fd94417d62\Microsoft.VisualStudio.Validation.ni.dll.aux
pool: 0xffff94896112acf0 | file object: 0xffff94896112ad70 | offsetby: 0x80
\$Directory
pool: 0xffff94896112b010 | file object: 0xffff94896112b090 | offsetby: 0x80
\$Directory
pool: 0xffff94896112b1a0 | file object: 0xffff94896112b220 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\PresentationFramework-SystemData\v4.0_4.0.0.0__b77a5c561934e089\PresentationFramework-SystemData.dll
pool: 0xffff94896112b330 | file object: 0xffff94896112b3b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896112b4c0 | file object: 0xffff94896112b540 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112b650 | file object: 0xffff94896112b6d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112b7e0 | file object: 0xffff94896112b860 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112b970 | file object: 0xffff94896112b9f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112bb00 | file object: 0xffff94896112bb80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112bc90 | file object: 0xffff94896112bd10 | offsetby: 0x80
\$Directory
pool: 0xffff94896112be20 | file object: 0xffff94896112bea0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112c140 | file object: 0xffff94896112c1c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112c2d0 | file object: 0xffff94896112c350 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112c460 | file object: 0xffff94896112c4e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112c5f0 | file object: 0xffff94896112c670 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112c780 | file object: 0xffff94896112c800 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112c910 | file object: 0xffff94896112c990 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112caa0 | file object: 0xffff94896112cb20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112cc30 | file object: 0xffff94896112ccb0 | offsetby: 0x80
\$Directory
pool: 0xffff94896112cdc0 | file object: 0xffff94896112ce40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112d0e0 | file object: 0xffff94896112d160 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.B3325a29b#\fef67aa09711b657117f06089c94e5c0\Microsoft.Build.Framework.ni.dll.aux
pool: 0xffff94896112d270 | file object: 0xffff94896112d2f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112d400 | file object: 0xffff94896112d480 | offsetby: 0x80
\$Directory
pool: 0xffff94896112d590 | file object: 0xffff94896112d610 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112d720 | file object: 0xffff94896112d7a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112d8b0 | file object: 0xffff94896112d930 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112da40 | file object: 0xffff94896112dac0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112dbd0 | file object: 0xffff94896112dc50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112dd60 | file object: 0xffff94896112dde0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112e080 | file object: 0xffff94896112e100 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112e210 | file object: 0xffff94896112e290 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112e3a0 | file object: 0xffff94896112e420 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112e530 | file object: 0xffff94896112e5b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112e6c0 | file object: 0xffff94896112e740 | offsetby: 0x80
\$Directory
pool: 0xffff94896112e850 | file object: 0xffff94896112e8d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112e9e0 | file object: 0xffff94896112ea60 | offsetby: 0x80
\$Directory
pool: 0xffff94896112eb70 | file object: 0xffff94896112ebf0 | offsetby: 0x80
\$Directory
pool: 0xffff94896112ed00 | file object: 0xffff94896112ed80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112f020 | file object: 0xffff94896112f0a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112f1b0 | file object: 0xffff94896112f230 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112f340 | file object: 0xffff94896112f3c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112f4d0 | file object: 0xffff94896112f550 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112f660 | file object: 0xffff94896112f6e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112f7f0 | file object: 0xffff94896112f870 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112f980 | file object: 0xffff94896112fa00 | offsetby: 0x80
\$Directory
pool: 0xffff94896112fb10 | file object: 0xffff94896112fb90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112fca0 | file object: 0xffff94896112fd20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896112fe30 | file object: 0xffff94896112feb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961130150 | file object: 0xffff9489611301d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611302e0 | file object: 0xffff948961130360 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961130470 | file object: 0xffff9489611304f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961130600 | file object: 0xffff948961130680 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961130790 | file object: 0xffff948961130810 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961130920 | file object: 0xffff9489611309a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961130ab0 | file object: 0xffff948961130b30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961130c40 | file object: 0xffff948961130cc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961130dd0 | file object: 0xffff948961130e50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611310f0 | file object: 0xffff948961131170 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961131280 | file object: 0xffff948961131300 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961131410 | file object: 0xffff948961131490 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611315a0 | file object: 0xffff948961131620 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961131730 | file object: 0xffff9489611317b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611318c0 | file object: 0xffff948961131940 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961131a50 | file object: 0xffff948961131ad0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961131be0 | file object: 0xffff948961131c60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961131d70 | file object: 0xffff948961131df0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961132090 | file object: 0xffff948961132110 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961132220 | file object: 0xffff9489611322a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611323b0 | file object: 0xffff948961132430 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961132540 | file object: 0xffff9489611325c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611326d0 | file object: 0xffff948961132750 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961132860 | file object: 0xffff9489611328e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611329f0 | file object: 0xffff948961132a70 | offsetby: 0x80
\$Directory
pool: 0xffff948961132b80 | file object: 0xffff948961132c00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961132d10 | file object: 0xffff948961132d90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961133030 | file object: 0xffff9489611330b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611331c0 | file object: 0xffff948961133240 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961133350 | file object: 0xffff9489611333d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611334e0 | file object: 0xffff948961133560 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961133670 | file object: 0xffff9489611336f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961133800 | file object: 0xffff948961133880 | offsetby: 0x80
\$Directory
pool: 0xffff948961133990 | file object: 0xffff948961133a10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961133b20 | file object: 0xffff948961133ba0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961133cb0 | file object: 0xffff948961133d30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961133e40 | file object: 0xffff948961133ec0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961134160 | file object: 0xffff9489611341e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611342f0 | file object: 0xffff948961134370 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961134480 | file object: 0xffff948961134500 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961134610 | file object: 0xffff948961134690 | offsetby: 0x80
\$Directory
pool: 0xffff9489611347a0 | file object: 0xffff948961134820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961134930 | file object: 0xffff9489611349b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961134ac0 | file object: 0xffff948961134b40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961134c50 | file object: 0xffff948961134cd0 | offsetby: 0x80
\$Directory
pool: 0xffff948961134de0 | file object: 0xffff948961134e60 | offsetby: 0x80
\$Directory
pool: 0xffff948961135100 | file object: 0xffff948961135180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961135290 | file object: 0xffff948961135310 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961135420 | file object: 0xffff9489611354a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611355b0 | file object: 0xffff948961135630 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961135740 | file object: 0xffff9489611357c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611358d0 | file object: 0xffff948961135950 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961135a60 | file object: 0xffff948961135ae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961135bf0 | file object: 0xffff948961135c70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961135d80 | file object: 0xffff948961135e00 | offsetby: 0x80
\$Directory
pool: 0xffff9489611360a0 | file object: 0xffff948961136120 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961136230 | file object: 0xffff9489611362b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611363c0 | file object: 0xffff948961136440 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961136550 | file object: 0xffff9489611365d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611366e0 | file object: 0xffff948961136760 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961136870 | file object: 0xffff9489611368f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961136a00 | file object: 0xffff948961136a80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961136b90 | file object: 0xffff948961136c10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961136d20 | file object: 0xffff948961136da0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961137040 | file object: 0xffff9489611370c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611371d0 | file object: 0xffff948961137250 | offsetby: 0x80
\$Directory
pool: 0xffff948961137360 | file object: 0xffff9489611373e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611374f0 | file object: 0xffff948961137570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961137680 | file object: 0xffff948961137700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961137810 | file object: 0xffff948961137890 | offsetby: 0x80
\$Directory
pool: 0xffff9489611379a0 | file object: 0xffff948961137a20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961137b30 | file object: 0xffff948961137bb0 | offsetby: 0x80
\$Directory
pool: 0xffff948961137cc0 | file object: 0xffff948961137d40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961137e50 | file object: 0xffff948961137ed0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961138170 | file object: 0xffff9489611381f0 | offsetby: 0x80
\$Directory
pool: 0xffff948961138300 | file object: 0xffff948961138380 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961138490 | file object: 0xffff948961138510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961138620 | file object: 0xffff9489611386a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611387b0 | file object: 0xffff948961138830 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961138940 | file object: 0xffff9489611389c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961138ad0 | file object: 0xffff948961138b50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961138c60 | file object: 0xffff948961138ce0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961138df0 | file object: 0xffff948961138e70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961139110 | file object: 0xffff948961139190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611392a0 | file object: 0xffff948961139320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961139430 | file object: 0xffff9489611394b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611395c0 | file object: 0xffff948961139640 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961139750 | file object: 0xffff9489611397d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611398e0 | file object: 0xffff948961139960 | offsetby: 0x80
\$Directory
pool: 0xffff948961139a70 | file object: 0xffff948961139af0 | offsetby: 0x80
\$Directory
pool: 0xffff948961139c00 | file object: 0xffff948961139c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961139d90 | file object: 0xffff948961139e10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113a0b0 | file object: 0xffff94896113a130 | offsetby: 0x80
\$Directory
pool: 0xffff94896113a240 | file object: 0xffff94896113a2c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113a3d0 | file object: 0xffff94896113a450 | offsetby: 0x80
\$Directory
pool: 0xffff94896113a560 | file object: 0xffff94896113a5e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113a6f0 | file object: 0xffff94896113a770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113a880 | file object: 0xffff94896113a900 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113aa10 | file object: 0xffff94896113aa90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113aba0 | file object: 0xffff94896113ac20 | offsetby: 0x80
\$Directory
pool: 0xffff94896113ad30 | file object: 0xffff94896113adb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113b050 | file object: 0xffff94896113b0d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113b1e0 | file object: 0xffff94896113b260 | offsetby: 0x80
\$Directory
pool: 0xffff94896113b370 | file object: 0xffff94896113b3f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113b500 | file object: 0xffff94896113b580 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113b690 | file object: 0xffff94896113b710 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113b820 | file object: 0xffff94896113b8a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113b9b0 | file object: 0xffff94896113ba30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113bb40 | file object: 0xffff94896113bbc0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113bcd0 | file object: 0xffff94896113bd50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113be60 | file object: 0xffff94896113bee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113c180 | file object: 0xffff94896113c200 | offsetby: 0x80
\$Directory
pool: 0xffff94896113c310 | file object: 0xffff94896113c390 | offsetby: 0x80
\$Directory
pool: 0xffff94896113c4a0 | file object: 0xffff94896113c520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113c630 | file object: 0xffff94896113c6b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113c7c0 | file object: 0xffff94896113c840 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113c950 | file object: 0xffff94896113c9d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113cae0 | file object: 0xffff94896113cb60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113cc70 | file object: 0xffff94896113ccf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113ce00 | file object: 0xffff94896113ce80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113d120 | file object: 0xffff94896113d1a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113d2b0 | file object: 0xffff94896113d330 | offsetby: 0x80
\Windows\SysWOW64\es.dll
pool: 0xffff94896113d440 | file object: 0xffff94896113d4c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113d5d0 | file object: 0xffff94896113d650 | offsetby: 0x80
\$Directory
pool: 0xffff94896113d760 | file object: 0xffff94896113d7e0 | offsetby: 0x80
\$Directory
pool: 0xffff94896113d8f0 | file object: 0xffff94896113d970 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113da80 | file object: 0xffff94896113db00 | offsetby: 0x80
\$Directory
pool: 0xffff94896113dc10 | file object: 0xffff94896113dc90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113dda0 | file object: 0xffff94896113de20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113e0c0 | file object: 0xffff94896113e140 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113e250 | file object: 0xffff94896113e2d0 | offsetby: 0x80
\Windows\Fonts\malgun.ttf
pool: 0xffff94896113e3e0 | file object: 0xffff94896113e460 | offsetby: 0x80
\$Directory
pool: 0xffff94896113e570 | file object: 0xffff94896113e5f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113e700 | file object: 0xffff94896113e780 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113e890 | file object: 0xffff94896113e910 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113ea20 | file object: 0xffff94896113eaa0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113ebb0 | file object: 0xffff94896113ec30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113ed40 | file object: 0xffff94896113edc0 | offsetby: 0x80
\$Directory
pool: 0xffff94896113f060 | file object: 0xffff94896113f0e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113f1f0 | file object: 0xffff94896113f270 | offsetby: 0x80
\$Directory
pool: 0xffff94896113f380 | file object: 0xffff94896113f400 | offsetby: 0x80
\$Directory
pool: 0xffff94896113f510 | file object: 0xffff94896113f590 | offsetby: 0x80
\Windows\System32\sxs.dll
pool: 0xffff94896113f6a0 | file object: 0xffff94896113f720 | offsetby: 0x80
\$Directory
pool: 0xffff94896113f830 | file object: 0xffff94896113f8b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113f9c0 | file object: 0xffff94896113fa40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113fb50 | file object: 0xffff94896113fbd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113fce0 | file object: 0xffff94896113fd60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896113fe70 | file object: 0xffff94896113fef0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961140000 | file object: 0xffff948961140080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961140190 | file object: 0xffff948961140210 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961140320 | file object: 0xffff9489611403a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611404b0 | file object: 0xffff948961140530 | offsetby: 0x80
\Windows\System32\Tabbtn.dll
pool: 0xffff948961140640 | file object: 0xffff9489611406c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611407d0 | file object: 0xffff948961140850 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961140960 | file object: 0xffff9489611409e0 | offsetby: 0x80
\$Directory
pool: 0xffff948961140af0 | file object: 0xffff948961140b70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961140c80 | file object: 0xffff948961140d00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961140e10 | file object: 0xffff948961140e90 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V43ea1027#\d479772453f697d70b50e6be1905026c\Microsoft.VisualStudio.IntelliCode.ni.dll
pool: 0xffff948961141130 | file object: 0xffff9489611411b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611412c0 | file object: 0xffff948961141340 | offsetby: 0x80
\$Directory
pool: 0xffff948961141450 | file object: 0xffff9489611414d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611415e0 | file object: 0xffff948961141660 | offsetby: 0x80
\$Directory
pool: 0xffff948961141770 | file object: 0xffff9489611417f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961141900 | file object: 0xffff948961141980 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\HTML_Editor_Reg_for_VS_4090.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff948961141a90 | file object: 0xffff948961141b10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961141c20 | file object: 0xffff948961141ca0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961141db0 | file object: 0xffff948961141e30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961184160 | file object: 0xffff9489611841e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611842f0 | file object: 0xffff948961184370 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961184480 | file object: 0xffff948961184500 | offsetby: 0x80
\$Directory
pool: 0xffff948961184610 | file object: 0xffff948961184690 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611847a0 | file object: 0xffff948961184820 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961184930 | file object: 0xffff9489611849b0 | offsetby: 0x80
\$Directory
pool: 0xffff948961184ac0 | file object: 0xffff948961184b40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961184c50 | file object: 0xffff948961184cd0 | offsetby: 0x80
\Windows\System32\virtdisk.dll
pool: 0xffff948961184de0 | file object: 0xffff948961184e60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961185100 | file object: 0xffff948961185180 | offsetby: 0x80
\$Directory
pool: 0xffff948961185290 | file object: 0xffff948961185310 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961185420 | file object: 0xffff9489611854a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611855b0 | file object: 0xffff948961185630 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948961185740 | file object: 0xffff9489611857c0 | offsetby: 0x80
盠讳舎￿묨讈舎￿盰讳舎￿뭀讈舎￿
pool: 0xffff9489611858d0 | file object: 0xffff948961185950 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961185a60 | file object: 0xffff948961185ae0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961185bf0 | file object: 0xffff948961185c70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961185d80 | file object: 0xffff948961185e00 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\Config\machine.config
pool: 0xffff9489611860a0 | file object: 0xffff948961186120 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961186230 | file object: 0xffff9489611862b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611863c0 | file object: 0xffff948961186440 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961186550 | file object: 0xffff9489611865d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611866e0 | file object: 0xffff948961186760 | offsetby: 0x80
\Windows\System32\xpsservices.dll
pool: 0xffff948961186870 | file object: 0xffff9489611868f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961186a00 | file object: 0xffff948961186a80 | offsetby: 0x80
\$Directory
pool: 0xffff948961186b90 | file object: 0xffff948961186c10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961186d20 | file object: 0xffff948961186da0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961187040 | file object: 0xffff9489611870c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611871d0 | file object: 0xffff948961187250 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961187360 | file object: 0xffff9489611873e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611874f0 | file object: 0xffff948961187570 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961187680 | file object: 0xffff948961187700 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961187810 | file object: 0xffff948961187890 | offsetby: 0x80
\Windows\System32\en-US\iertutil.dll.mui
pool: 0xffff9489611879a0 | file object: 0xffff948961187a20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961187b30 | file object: 0xffff948961187bb0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961187cc0 | file object: 0xffff948961187d40 | offsetby: 0x80
\$Directory
pool: 0xffff948961187e50 | file object: 0xffff948961187ed0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961188170 | file object: 0xffff9489611881f0 | offsetby: 0x80
\$Directory
pool: 0xffff948961188300 | file object: 0xffff948961188380 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961188490 | file object: 0xffff948961188510 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961188620 | file object: 0xffff9489611886a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611887b0 | file object: 0xffff948961188830 | offsetby: 0x80
\$Directory
pool: 0xffff948961188940 | file object: 0xffff9489611889c0 | offsetby: 0x80
\Windows\System32\MusNotifyIcon.exe
pool: 0xffff948961188ad0 | file object: 0xffff948961188b50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961188c60 | file object: 0xffff948961188ce0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961188df0 | file object: 0xffff948961188e70 | offsetby: 0x80
\Windows\System32\en-US\msimsg.dll.mui
pool: 0xffff948961189110 | file object: 0xffff948961189190 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611892a0 | file object: 0xffff948961189320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961189430 | file object: 0xffff9489611894b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611895c0 | file object: 0xffff948961189640 | offsetby: 0x80
\$Directory
pool: 0xffff948961189750 | file object: 0xffff9489611897d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611898e0 | file object: 0xffff948961189960 | offsetby: 0x80
\$Directory
pool: 0xffff948961189a70 | file object: 0xffff948961189af0 | offsetby: 0x80
\$Directory
pool: 0xffff948961189c00 | file object: 0xffff948961189c80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961189d90 | file object: 0xffff948961189e10 | offsetby: 0x80
\Windows\System32\ScDeviceEnum.dll
pool: 0xffff94896118a0b0 | file object: 0xffff94896118a130 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118a240 | file object: 0xffff94896118a2c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118a3d0 | file object: 0xffff94896118a450 | offsetby: 0x80
\Windows\System32\drivers\HyperVideo.sys
pool: 0xffff94896118a560 | file object: 0xffff94896118a5e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\Microsoft.VisualStudio.TaskStatusCenter.imagemanifest
pool: 0xffff94896118a6f0 | file object: 0xffff94896118a770 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118a880 | file object: 0xffff94896118a900 | offsetby: 0x80
\Windows\System32\WinMetadata\Windows.Management.winmd
pool: 0xffff94896118aa10 | file object: 0xffff94896118aa90 | offsetby: 0x80
\$Directory
pool: 0xffff94896118aba0 | file object: 0xffff94896118ac20 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\webengine4.dll
pool: 0xffff94896118ad30 | file object: 0xffff94896118adb0 | offsetby: 0x80
\Windows\SystemResources\notepad.exe.mun
pool: 0xffff94896118b050 | file object: 0xffff94896118b0d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118b1e0 | file object: 0xffff94896118b260 | offsetby: 0x80
\$Directory
pool: 0xffff94896118b370 | file object: 0xffff94896118b3f0 | offsetby: 0x80
\$Directory
pool: 0xffff94896118b500 | file object: 0xffff94896118b580 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118b690 | file object: 0xffff94896118b710 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118b820 | file object: 0xffff94896118b8a0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118b9b0 | file object: 0xffff94896118ba30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118bb40 | file object: 0xffff94896118bbc0 | offsetby: 0x80
\Windows\Microsoft.NET\Framework\v4.0.30319\WPF\PenIMC2_v0400.dll
pool: 0xffff94896118bcd0 | file object: 0xffff94896118bd50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118be60 | file object: 0xffff94896118bee0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118c180 | file object: 0xffff94896118c200 | offsetby: 0x80
\$Directory
pool: 0xffff94896118c310 | file object: 0xffff94896118c390 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118c4a0 | file object: 0xffff94896118c520 | offsetby: 0x80
\$Directory
pool: 0xffff94896118c630 | file object: 0xffff94896118c6b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118c7c0 | file object: 0xffff94896118c840 | offsetby: 0x80
\Windows\System32\en-US\UIAutomationCore.dll.mui
pool: 0xffff94896118c950 | file object: 0xffff94896118c9d0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118cae0 | file object: 0xffff94896118cb60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\en-US\Microsoft.Azure.DataLakeToolsForVS.resources.dll
pool: 0xffff94896118cc70 | file object: 0xffff94896118ccf0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118ce00 | file object: 0xffff94896118ce80 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118d120 | file object: 0xffff94896118d1a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896118d2b0 | file object: 0xffff94896118d330 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Xaml\b812c8a0807ea063510a3855c48f871d\System.Xaml.ni.dll
pool: 0xffff94896118d440 | file object: 0xffff94896118d4c0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\User\globalStorage\state.vscdb
pool: 0xffff94896118d5d0 | file object: 0xffff94896118d650 | offsetby: 0x80
\Windows\ImmersiveControlPanel\SystemSettings.exe
pool: 0xffff94896118d760 | file object: 0xffff94896118d7e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118d8f0 | file object: 0xffff94896118d970 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TailoredProjectServices\Microsoft.VisualStudio.AppxPackage.dll
pool: 0xffff94896118da80 | file object: 0xffff94896118db00 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118dc10 | file object: 0xffff94896118dc90 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\eventEmitter2-4b496057bf9f7ebf2fd0c026d6bcbe96.code
pool: 0xffff94896118dda0 | file object: 0xffff94896118de20 | offsetby: 0x80
\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\PresentationNative_v0400.dll
pool: 0xffff94896118e0c0 | file object: 0xffff94896118e140 | offsetby: 0x80
\$Directory
pool: 0xffff94896118e250 | file object: 0xffff94896118e2d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896118e3e0 | file object: 0xffff94896118e460 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118e570 | file object: 0xffff94896118e5f0 | offsetby: 0x80
\Windows\Prefetch\CODEHELPER.EXE-B52A0B6A.pf
pool: 0xffff94896118e700 | file object: 0xffff94896118e780 | offsetby: 0x80
\$Directory
pool: 0xffff94896118e890 | file object: 0xffff94896118e910 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118ea20 | file object: 0xffff94896118eaa0 | offsetby: 0x80
\$Directory
pool: 0xffff94896118ebb0 | file object: 0xffff94896118ec30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118ed40 | file object: 0xffff94896118edc0 | offsetby: 0x80
\$Directory
pool: 0xffff94896118f060 | file object: 0xffff94896118f0e0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118f1f0 | file object: 0xffff94896118f270 | offsetby: 0x80
\$Directory
pool: 0xffff94896118f380 | file object: 0xffff94896118f400 | offsetby: 0x80
\Windows\SysWOW64\usp10.dll
pool: 0xffff94896118f510 | file object: 0xffff94896118f590 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118f6a0 | file object: 0xffff94896118f720 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118f830 | file object: 0xffff94896118f8b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\libGLESv2.dll
pool: 0xffff94896118f9c0 | file object: 0xffff94896118fa40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118fb50 | file object: 0xffff94896118fbd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118fce0 | file object: 0xffff94896118fd60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896118fe70 | file object: 0xffff94896118fef0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961190000 | file object: 0xffff948961190080 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961190190 | file object: 0xffff948961190210 | offsetby: 0x80
\$Directory
pool: 0xffff948961190320 | file object: 0xffff9489611903a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611904b0 | file object: 0xffff948961190530 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961190640 | file object: 0xffff9489611906c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611907d0 | file object: 0xffff948961190850 | offsetby: 0x80
\$Directory
pool: 0xffff948961190960 | file object: 0xffff9489611909e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\coloader80.dll
pool: 0xffff948961190af0 | file object: 0xffff948961190b70 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961190c80 | file object: 0xffff948961190d00 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\RequestParser-71abcccedc702d1d236b0718ac613ad4.code
pool: 0xffff948961190e10 | file object: 0xffff948961190e90 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961191130 | file object: 0xffff9489611911b0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611912c0 | file object: 0xffff948961191340 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961191450 | file object: 0xffff9489611914d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Data.Package.dll
pool: 0xffff9489611915e0 | file object: 0xffff948961191660 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961191770 | file object: 0xffff9489611917f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\EBF\Microsoft.VisualStudio.Workspace.ExternalBuildFramework.VS.dll
pool: 0xffff948961191900 | file object: 0xffff948961191980 | offsetby: 0x80
\$Directory
pool: 0xffff948961191a90 | file object: 0xffff948961191b10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961191c20 | file object: 0xffff948961191ca0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961191db0 | file object: 0xffff948961191e30 | offsetby: 0x80
\$Directory
pool: 0xffff9489611920d0 | file object: 0xffff948961192150 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961192260 | file object: 0xffff9489611922e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\msenvmnu.dll
pool: 0xffff9489611923f0 | file object: 0xffff948961192470 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff948961192580 | file object: 0xffff948961192600 | offsetby: 0x80
\$Directory
pool: 0xffff948961192710 | file object: 0xffff948961192790 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611928a0 | file object: 0xffff948961192920 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961192a30 | file object: 0xffff948961192ab0 | offsetby: 0x80
\$Directory
pool: 0xffff948961192bc0 | file object: 0xffff948961192c40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961192d50 | file object: 0xffff948961192dd0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961193070 | file object: 0xffff9489611930f0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961193200 | file object: 0xffff948961193280 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961193390 | file object: 0xffff948961193410 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961193520 | file object: 0xffff9489611935a0 | offsetby: 0x80
܎Ġ■遫舎￿皠膃舎￿皰膃舎￿镨詧舎￿PŁ膐ṋ䰸ﴳ㩀ǖ <SRU.log
pool: 0xffff9489611936b0 | file object: 0xffff948961193730 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961193840 | file object: 0xffff9489611938c0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611939d0 | file object: 0xffff948961193a50 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961193b60 | file object: 0xffff948961193be0 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961193cf0 | file object: 0xffff948961193d70 | offsetby: 0x80
\Windows\Fonts\l_10646.ttf
pool: 0xffff948961194010 | file object: 0xffff948961194090 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611941a0 | file object: 0xffff948961194220 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.NET.Native.Runtime.2.2_2.2.27011.0_x64__8wekyb3d8bbwe\mrt100_app.dll
pool: 0xffff948961194330 | file object: 0xffff9489611943b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\zkaemjb2.lop\Microsoft.VisualStudio.CloudExplorer.Package.dll
pool: 0xffff9489611944c0 | file object: 0xffff948961194540 | offsetby: 0x80
\Program Files\WindowsApps\Microsoft.NET.Native.Framework.2.2_2.2.27011.0_x64__8wekyb3d8bbwe\SharedLibrary.dll
pool: 0xffff948961194650 | file object: 0xffff9489611946d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\DSLTextTemplating_FileAssoc_Sxs.pkgdef
pool: 0xffff9489611947e0 | file object: 0xffff948961194860 | offsetby: 0x80
\Windows\Globalization\ELS\SpellDictionaries\MsSp7en-US.lex
pool: 0xffff948961194970 | file object: 0xffff9489611949f0 | offsetby: 0x80
\$Directory
pool: 0xffff948961194b00 | file object: 0xffff948961194b80 | offsetby: 0x80
\$Directory
pool: 0xffff948961194c90 | file object: 0xffff948961194d10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Project\Microsoft.VisualStudio.ProjectSystem.VS.Implementation.dll
pool: 0xffff948961194e20 | file object: 0xffff948961194ea0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.Licensing.dll
pool: 0xffff948961195140 | file object: 0xffff9489611951c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611952d0 | file object: 0xffff948961195350 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\aepxgmna.u04\EngineRegistration.pkgdef
pool: 0xffff948961195460 | file object: 0xffff9489611954e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\DSLTextTemplatingRegistry_x86.pkgdef
pool: 0xffff9489611955f0 | file object: 0xffff948961195670 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Storm (HDInsight)\AzureHDInsightHBaseLookupStormApplication\AzureHDInsightHBaseReader.png
pool: 0xffff948961195780 | file object: 0xffff948961195800 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961195910 | file object: 0xffff948961195990 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961195aa0 | file object: 0xffff948961195b20 | offsetby: 0x80
\$Directory
pool: 0xffff948961195c30 | file object: 0xffff948961195cb0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\out\vs\code\electron-browser\sharedProcess\sharedProcessMain.js
pool: 0xffff948961195dc0 | file object: 0xffff948961195e40 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611960e0 | file object: 0xffff948961196160 | offsetby: 0x80
\$Directory
pool: 0xffff948961196270 | file object: 0xffff9489611962f0 | offsetby: 0x80
\$Directory
pool: 0xffff948961196400 | file object: 0xffff948961196480 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\ReachFramework\v4.0_4.0.0.0__31bf3856ad364e35\ReachFramework.dll
pool: 0xffff948961196590 | file object: 0xffff948961196610 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961196720 | file object: 0xffff9489611967a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Automation\DebuggerProxy.dll
pool: 0xffff9489611968b0 | file object: 0xffff948961196930 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.Data.Entity.Design.Package.dll
pool: 0xffff948961196a40 | file object: 0xffff948961196ac0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.LanguageServer.Protocol.dll
pool: 0xffff948961196bd0 | file object: 0xffff948961196c50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\1ni0dpci.ttf\Microsoft.Asal.VisualStudio.Extension.pkgdef
pool: 0xffff948961196d60 | file object: 0xffff948961196de0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\System.Manaa57fc8cc#\28e8adc5e3ae445974edcbe3a41580ee\System.Management.Automation.ni.dll.aux
pool: 0xffff948961197080 | file object: 0xffff948961197100 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Storm (HDInsight)\SqlAzureWriterStormApplication\SqlAzureWriter.png
pool: 0xffff948961197210 | file object: 0xffff948961197290 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TemplateEngine\Microsoft.VisualStudio.TemplateEngine.Wizard.dll
pool: 0xffff9489611973a0 | file object: 0xffff948961197420 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Buffers\50a032ec3821266c01113ec919d4ee57\System.Buffers.ni.dll
pool: 0xffff948961197530 | file object: 0xffff9489611975b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Windows.Forms\Microsoft.VisualStudio.WinForms.Package.dll
pool: 0xffff9489611976c0 | file object: 0xffff948961197740 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\StreamJsonRpc\547ef36f7c7a5b0edc7988234f027229\StreamJsonRpc.ni.dll
pool: 0xffff948961197850 | file object: 0xffff9489611978d0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\sharedProcessMain-b8f1cedb7cdc03f46103d15d6810f2cd.code
pool: 0xffff9489611979e0 | file object: 0xffff948961197a60 | offsetby: 0x80
\$Directory
pool: 0xffff948961197b70 | file object: 0xffff948961197bf0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\smartbuffer-54770b323d64feba84a57a8b7087d62b.code
pool: 0xffff948961197d00 | file object: 0xffff948961197d80 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\legacy-streams-89da51a4371b70802d092d9ec655456f.code
pool: 0xffff948961198020 | file object: 0xffff9489611980a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\aepxgmna.u04\ReferenceAssemblyRegistration.pkgdef
pool: 0xffff9489611981b0 | file object: 0xffff948961198230 | offsetby: 0x80
\Users\User\.vscode\extensions\ms-vscode-remote.remote-wsl-0.44.2\package.json
pool: 0xffff948961198340 | file object: 0xffff9489611983c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Storm (HDInsight)\AzureDocumentDBLookupStormApplication\DocumentDBReader.png
pool: 0xffff9489611984d0 | file object: 0xffff948961198550 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.VisualStudio.ServerExplorer.dll
pool: 0xffff948961198660 | file object: 0xffff9489611986e0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\CorrelationIdManager-32c0083fbbfd4ab6a2d3990aa1e1f4da.code
pool: 0xffff9489611987f0 | file object: 0xffff948961198870 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_32\System.Transactions\v4.0_4.0.0.0__b77a5c561934e089\System.Transactions.dll
pool: 0xffff948961198980 | file object: 0xffff948961198a00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Application\Core_IDE_VS7_Registration_1693.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff948961198b10 | file object: 0xffff948961198b90 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\clone-8d55c253899343328175884b426555aa.code
pool: 0xffff948961198ca0 | file object: 0xffff948961198d20 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\System.Memory\4a18f3a290fc140c9e98d16d4c2c1064\System.Memory.ni.dll
pool: 0xffff948961198e30 | file object: 0xffff948961198eb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Application\DEVENV_Exe_4776_____x86.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff948961199150 | file object: 0xffff9489611991d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ClientDiagnostics\Microsoft.VisualStudio.ClientDiagnostics.dll
pool: 0xffff9489611992e0 | file object: 0xffff948961199360 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ClientDiagnostics\en\Microsoft.VisualStudio.ClientDiagnostics.resources.dll
pool: 0xffff948961199470 | file object: 0xffff9489611994f0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-d103e826f0409b845f4909ab8c1d2f73.code
pool: 0xffff948961199600 | file object: 0xffff948961199680 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff948961199790 | file object: 0xffff948961199810 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\aepxgmna.u04\Microsoft.VisualStudio.Debugger.VSCodeDebuggerHost.pkgdef
pool: 0xffff948961199920 | file object: 0xffff9489611999a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Application\Msenv.Devenv.Pkgdef
pool: 0xffff948961199ab0 | file object: 0xffff948961199b30 | offsetby: 0x80
\$Directory
pool: 0xffff948961199c40 | file object: 0xffff948961199cc0 | offsetby: 0x80
\$Directory
pool: 0xffff948961199dd0 | file object: 0xffff948961199e50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\txxba55a.20s\extension.vsixmanifest
pool: 0xffff94896119a0f0 | file object: 0xffff94896119a170 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Application\VS_Advt_Reg_Entries_5950.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896119a280 | file object: 0xffff94896119a300 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.ServiceHub.Resources.dll
pool: 0xffff94896119a410 | file object: 0xffff94896119a490 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.TemplateWizardInterface.dll
pool: 0xffff94896119a5a0 | file object: 0xffff94896119a620 | offsetby: 0x80
\$Directory
pool: 0xffff94896119a730 | file object: 0xffff94896119a7b0 | offsetby: 0x80
\$Directory
pool: 0xffff94896119a8c0 | file object: 0xffff94896119a940 | offsetby: 0x80
\$Directory
pool: 0xffff94896119aa50 | file object: 0xffff94896119aad0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\mu2fxzxx.q20\extension.vsixmanifest
pool: 0xffff94896119abe0 | file object: 0xffff94896119ac60 | offsetby: 0x80
\$Directory
pool: 0xffff94896119ad70 | file object: 0xffff94896119adf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\Microsoft.WebTools.Azure.VS.Package.dll
pool: 0xffff94896119b090 | file object: 0xffff94896119b110 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Application\MSM_Registry_Entries_1241.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896119b220 | file object: 0xffff94896119b2a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\DataDesign\extension.vsixmanifest
pool: 0xffff94896119b3b0 | file object: 0xffff94896119b430 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Build\1fa474da32f28b94083ce0794fd1c61f\Microsoft.Build.ni.dll.aux
pool: 0xffff94896119b540 | file object: 0xffff94896119b5c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Publish\extension.vsixmanifest
pool: 0xffff94896119b6d0 | file object: 0xffff94896119b750 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web\Mvc\extension.vsixmanifest
pool: 0xffff94896119b860 | file object: 0xffff94896119b8e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.VisualStudio.OnlineEnvironment.Client.dll
pool: 0xffff94896119b9f0 | file object: 0xffff94896119ba70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.VSHelp.dll
pool: 0xffff94896119bb80 | file object: 0xffff94896119bc00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\Microsoft.VisualStudio.CoreUtility.dll
pool: 0xffff94896119bd10 | file object: 0xffff94896119bd90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\TestPlatform\extension.vsixmanifest
pool: 0xffff94896119c030 | file object: 0xffff94896119c0b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\DiagnosticsHub\Microsoft.DiagnosticsHub.VisualStudio.Package.dll
pool: 0xffff94896119c1c0 | file object: 0xffff94896119c240 | offsetby: 0x80
\$Directory
pool: 0xffff94896119c350 | file object: 0xffff94896119c3d0 | offsetby: 0x80
\$Directory
pool: 0xffff94896119c4e0 | file object: 0xffff94896119c560 | offsetby: 0x80
\$Directory
pool: 0xffff94896119c670 | file object: 0xffff94896119c6f0 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Management\v4.0_4.0.0.0__b03f5f7f11d50a3a\System.Management.dll
pool: 0xffff94896119c800 | file object: 0xffff94896119c880 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.Console.dll
pool: 0xffff94896119c990 | file object: 0xffff94896119ca10 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff94896119cb20 | file object: 0xffff94896119cba0 | offsetby: 0x80
\$Directory
pool: 0xffff94896119ccb0 | file object: 0xffff94896119cd30 | offsetby: 0x80
\$Directory
pool: 0xffff94896119ce40 | file object: 0xffff94896119cec0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\extension.vsixmanifest
pool: 0xffff94896119d160 | file object: 0xffff94896119d1e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Controller\Microsoft.ServiceHub.Controller.exe
pool: 0xffff94896119d2f0 | file object: 0xffff94896119d370 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Project\extension.vsixmanifest
pool: 0xffff94896119d480 | file object: 0xffff94896119d500 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Modeling\16.0\extension.vsixmanifest
pool: 0xffff94896119d610 | file object: 0xffff94896119d690 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\DataDesign\Microsoft.VisualStudio.DataDesign.WpfComponents.dll
pool: 0xffff94896119d7a0 | file object: 0xffff94896119d820 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Application\VS_Common_Dir_Reg_Entries_1871.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896119d930 | file object: 0xffff94896119d9b0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\perl\package.nls.json
pool: 0xffff94896119dac0 | file object: 0xffff94896119db40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.VSHelp80.dll
pool: 0xffff94896119dc50 | file object: 0xffff94896119dcd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Shell\extension.vsixmanifest
pool: 0xffff94896119dde0 | file object: 0xffff94896119de60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Application\VS_Shell_InstalledKey_enu.pkgdef
pool: 0xffff94896119e100 | file object: 0xffff94896119e180 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Search\extension.vsixmanifest
pool: 0xffff94896119e290 | file object: 0xffff94896119e310 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\extension.vsixmanifest
pool: 0xffff94896119e420 | file object: 0xffff94896119e4a0 | offsetby: 0x80
\$Directory
pool: 0xffff94896119e5b0 | file object: 0xffff94896119e630 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\Microsoft.WebTools.Azure.VS.Package.dll
pool: 0xffff94896119e740 | file object: 0xffff94896119e7c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TemplateEngine\extension.vsixmanifest
pool: 0xffff94896119e8d0 | file object: 0xffff94896119e950 | offsetby: 0x80
\$Directory
pool: 0xffff94896119ea60 | file object: 0xffff94896119eae0 | offsetby: 0x80
\$Directory
pool: 0xffff94896119ebf0 | file object: 0xffff94896119ec70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\extension.vsixmanifest
pool: 0xffff94896119ed80 | file object: 0xffff94896119ee00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\.NetNative\extension.vsixmanifest
pool: 0xffff94896119f0a0 | file object: 0xffff94896119f120 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\Vsix\extension.vsixmanifest
pool: 0xffff94896119f230 | file object: 0xffff94896119f2b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\CodeSense\Framework\Microsoft.VisualStudio.CodeSense.dll
pool: 0xffff94896119f3c0 | file object: 0xffff94896119f440 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Application\VS_Root_Folder_Reg_Entries_1872.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff94896119f550 | file object: 0xffff94896119f5d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Web\ASPX\Microsoft.VisualStudio.Web.HTML.Implementation.dll
pool: 0xffff94896119f6e0 | file object: 0xffff94896119f760 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editor\extension.vsixmanifest
pool: 0xffff94896119f870 | file object: 0xffff94896119f8f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\FSharp\extension.vsixmanifest
pool: 0xffff94896119fa00 | file object: 0xffff94896119fa80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\en\Microsoft.VisualStudio.ProductKeyDialog.resources.dll
pool: 0xffff94896119fb90 | file object: 0xffff94896119fc10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\IntelliCode\extension.vsixmanifest
pool: 0xffff94896119fd20 | file object: 0xffff94896119fda0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a0040 | file object: 0xffff9489611a00c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Database\extension.vsixmanifest
pool: 0xffff9489611a01d0 | file object: 0xffff9489611a0250 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\extension.vsixmanifest
pool: 0xffff9489611a0360 | file object: 0xffff9489611a03e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TextMate\extension.vsixmanifest
pool: 0xffff9489611a04f0 | file object: 0xffff9489611a0570 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\Editor\extension.vsixmanifest
pool: 0xffff9489611a0680 | file object: 0xffff9489611a0700 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\AppInsights\Core\extension.vsixmanifest
pool: 0xffff9489611a0810 | file object: 0xffff9489611a0890 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Commands\extension.vsixmanifest
pool: 0xffff9489611a09a0 | file object: 0xffff9489611a0a20 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a0b30 | file object: 0xffff9489611a0bb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Storm (HDInsight)\AzureDocumentDBWriterStormApplication\DocumentDBWriter.png
pool: 0xffff9489611a0cc0 | file object: 0xffff9489611a0d40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ErrorList\extension.vsixmanifest
pool: 0xffff9489611a0e50 | file object: 0xffff9489611a0ed0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLDB\SSDTUpdate\extension.vsixmanifest
pool: 0xffff9489611a1170 | file object: 0xffff9489611a11f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\PerfMarkers\extension.vsixmanifest
pool: 0xffff9489611a1300 | file object: 0xffff9489611a1380 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Setup.Download.dll
pool: 0xffff9489611a1490 | file object: 0xffff9489611a1510 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\extension.vsixmanifest
pool: 0xffff9489611a1620 | file object: 0xffff9489611a16a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NavigateTo\extension.vsixmanifest
pool: 0xffff9489611a17b0 | file object: 0xffff9489611a1830 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TypeScript\extension.vsixmanifest
pool: 0xffff9489611a1940 | file object: 0xffff9489611a19c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a1ad0 | file object: 0xffff9489611a1b50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\DotNetAsync\extension.vsixmanifest
pool: 0xffff9489611a1c60 | file object: 0xffff9489611a1ce0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a1df0 | file object: 0xffff9489611a1e70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\extension.vsixmanifest
pool: 0xffff9489611a2110 | file object: 0xffff9489611a2190 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestWindow\extension.vsixmanifest
pool: 0xffff9489611a22a0 | file object: 0xffff9489611a2320 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools Shared\extension.vsixmanifest
pool: 0xffff9489611a2430 | file object: 0xffff9489611a24b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a25c0 | file object: 0xffff9489611a2640 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a2750 | file object: 0xffff9489611a27d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a28e0 | file object: 0xffff9489611a2960 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Web\ASPX\extension.vsixmanifest
pool: 0xffff9489611a2a70 | file object: 0xffff9489611a2af0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.CommandBars.dll
pool: 0xffff9489611a2c00 | file object: 0xffff9489611a2c80 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Browser Link\Microsoft.WebTools.BrowserLink.Package.dll
pool: 0xffff9489611a2d90 | file object: 0xffff9489611a2e10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Terminal\extension.vsixmanifest
pool: 0xffff9489611a30b0 | file object: 0xffff9489611a3130 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\SQLEditor\Vsix\extension.vsixmanifest
pool: 0xffff9489611a3240 | file object: 0xffff9489611a32c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\VC\ClassWizard\extension.vsixmanifest
pool: 0xffff9489611a33d0 | file object: 0xffff9489611a3450 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a3560 | file object: 0xffff9489611a35e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Web\Exports\extension.vsixmanifest
pool: 0xffff9489611a36f0 | file object: 0xffff9489611a3770 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a3880 | file object: 0xffff9489611a3900 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\extension.vsixmanifest
pool: 0xffff9489611a3a10 | file object: 0xffff9489611a3a90 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a3ba0 | file object: 0xffff9489611a3c20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\CodeSense\Framework\extension.vsixmanifest
pool: 0xffff9489611a3d30 | file object: 0xffff9489611a3db0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\Debugger\extension.vsixmanifest
pool: 0xffff9489611a4050 | file object: 0xffff9489611a40d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a41e0 | file object: 0xffff9489611a4260 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\Project\extension.vsixmanifest
pool: 0xffff9489611a4370 | file object: 0xffff9489611a43f0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a4500 | file object: 0xffff9489611a4580 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a4690 | file object: 0xffff9489611a4710 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\CPUSampling\extension.vsixmanifest
pool: 0xffff9489611a4820 | file object: 0xffff9489611a48a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\DesignTools\extension.vsixmanifest
pool: 0xffff9489611a49b0 | file object: 0xffff9489611a4a30 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a4b40 | file object: 0xffff9489611a4bc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\EventsViewer\extension.vsixmanifest
pool: 0xffff9489611a4cd0 | file object: 0xffff9489611a4d50 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a4e60 | file object: 0xffff9489611a4ee0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\extension.vsixmanifest
pool: 0xffff9489611a5180 | file object: 0xffff9489611a5200 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\CallHierarchy_Registration.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611a5310 | file object: 0xffff9489611a5390 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a54a0 | file object: 0xffff9489611a5520 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.CSharp.Features.dll
pool: 0xffff9489611a5630 | file object: 0xffff9489611a56b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\CodeSharing_shproj_Ext_Reg_AppId_VisualStudio.pkgdef
pool: 0xffff9489611a57c0 | file object: 0xffff9489611a5840 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\qlbscfin.1er\GoogleTestAdapter.TestAdapter.dll
pool: 0xffff9489611a5950 | file object: 0xffff9489611a59d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\DiagnosticsHub\extension.vsixmanifest
pool: 0xffff9489611a5ae0 | file object: 0xffff9489611a5b60 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_64\Presentatioaec034ca#\49fd7f160080030d6769eb7ee2496166\PresentationFramework.Aero2.ni.dll
pool: 0xffff9489611a5c70 | file object: 0xffff9489611a5cf0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a5e00 | file object: 0xffff9489611a5e80 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Presentatioaec034ca#\4bf5ee82004ade79bc23d02868dcddb6\PresentationFramework.Aero2.ni.dll
pool: 0xffff9489611a6120 | file object: 0xffff9489611a61a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CodeAnalysis\extension.vsixmanifest
pool: 0xffff9489611a62b0 | file object: 0xffff9489611a6330 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\TreeNavigation\extension.vsixmanifest
pool: 0xffff9489611a6440 | file object: 0xffff9489611a64c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\DesktopBridge\extension.vsixmanifest
pool: 0xffff9489611a65d0 | file object: 0xffff9489611a6650 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a6760 | file object: 0xffff9489611a67e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a68f0 | file object: 0xffff9489611a6970 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\CompSvcsPkg_Reg___VS_9402.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611a6a80 | file object: 0xffff9489611a6b00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Instrumentation\extension.vsixmanifest
pool: 0xffff9489611a6c10 | file object: 0xffff9489611a6c90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\LanguageServer\extension.vsixmanifest
pool: 0xffff9489611a6da0 | file object: 0xffff9489611a6e20 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a70c0 | file object: 0xffff9489611a7140 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ManagedProjectSystem\extension.vsixmanifest
pool: 0xffff9489611a7250 | file object: 0xffff9489611a72d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.PerfWatson.Provider.dll
pool: 0xffff9489611a73e0 | file object: 0xffff9489611a7460 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a7570 | file object: 0xffff9489611a75f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ProjectServices\extension.vsixmanifest
pool: 0xffff9489611a7700 | file object: 0xffff9489611a7780 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\initialization-574a00fe2545a0a3ea075113ac0e8638.code
pool: 0xffff9489611a7890 | file object: 0xffff9489611a7910 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a7a20 | file object: 0xffff9489611a7aa0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V0ca2bbda#\283c8aaf5396174da5aaee13d6600e2a\Microsoft.VisualStudio.Text.UI.ni.dll
pool: 0xffff9489611a7bb0 | file object: 0xffff9489611a7c30 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V333c2ff7#\d26c79bb302080e444ee0fcb8c49970f\Microsoft.VisualStudio.Imaging.ni.dll
pool: 0xffff9489611a7d40 | file object: 0xffff9489611a7dc0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a8060 | file object: 0xffff9489611a80e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Browser Link\Microsoft.WebTools.BrowserLink.Package.dll
pool: 0xffff9489611a81f0 | file object: 0xffff9489611a8270 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a8380 | file object: 0xffff9489611a8400 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ProductUpdate\extension.vsixmanifest
pool: 0xffff9489611a8510 | file object: 0xffff9489611a8590 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Html.VS.dll
pool: 0xffff9489611a86a0 | file object: 0xffff9489611a8720 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a8830 | file object: 0xffff9489611a88b0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.S0b6afd4f#\e089e372d4e480f3b3a573fee5c6d39e\Microsoft.ServiceHub.Framework.ni.dll
pool: 0xffff9489611a89c0 | file object: 0xffff9489611a8a40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Web\Razor\v3.0\extension.vsixmanifest
pool: 0xffff9489611a8b50 | file object: 0xffff9489611a8bd0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a8ce0 | file object: 0xffff9489611a8d60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\XamlDiagnostics\extension.vsixmanifest
pool: 0xffff9489611a8e70 | file object: 0xffff9489611a8ef0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\Microsoft.VisualStudio.Editor.Razor.dll
pool: 0xffff9489611a9000 | file object: 0xffff9489611a9080 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\ParallelDebugger\extension.vsixmanifest
pool: 0xffff9489611a9190 | file object: 0xffff9489611a9210 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\UniversalFlavor\extension.vsixmanifest
pool: 0xffff9489611a9320 | file object: 0xffff9489611a93a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Windows.Forms\extension.vsixmanifest
pool: 0xffff9489611a94b0 | file object: 0xffff9489611a9530 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web\Mvc\Scaffolding\extension.vsixmanifest
pool: 0xffff9489611a9640 | file object: 0xffff9489611a96c0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vcb674816#\9de6b6c97cc60dd52b798b6550f39bde\Microsoft.VisualStudio.GraphModel.ni.dll
pool: 0xffff9489611a97d0 | file object: 0xffff9489611a9850 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CallHierarchy\extension.vsixmanifest
pool: 0xffff9489611a9960 | file object: 0xffff9489611a99e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611a9af0 | file object: 0xffff9489611a9b70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\DirProj_Reg_Common_10256.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611a9c80 | file object: 0xffff9489611a9d00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\Package\extension.vsixmanifest
pool: 0xffff9489611a9e10 | file object: 0xffff9489611a9e90 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V32c79513#\4f3d2e14a23c19ad206849aadadeb908\Microsoft.VisualStudio.Utilities.ni.dll
pool: 0xffff9489611aa130 | file object: 0xffff9489611aa1b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611aa2c0 | file object: 0xffff9489611aa340 | offsetby: 0x80
\$Directory
pool: 0xffff9489611aa450 | file object: 0xffff9489611aa4d0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vbeb7089b#\48b49df053d0a613956774d2497fca4a\Microsoft.VisualStudio.Threading.ni.dll
pool: 0xffff9489611aa5e0 | file object: 0xffff9489611aa660 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Visual Studio MPF\10.0\extension.vsixmanifest
pool: 0xffff9489611aa770 | file object: 0xffff9489611aa7f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\MDD\Debugger\Microsoft.MIDebugPackage.dll
pool: 0xffff9489611aa900 | file object: 0xffff9489611aa980 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vf87aed9a#\199990435bc032175e09a7d8b1245277\Microsoft.VisualStudio.Telemetry.ni.dll
pool: 0xffff9489611aaa90 | file object: 0xffff9489611aab10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Visual Studio MPF\11.0\extension.vsixmanifest
pool: 0xffff9489611aac20 | file object: 0xffff9489611aaca0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611aadb0 | file object: 0xffff9489611aae30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\DotNetObjectAlloc\extension.vsixmanifest
pool: 0xffff9489611ab0d0 | file object: 0xffff9489611ab150 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\Dbg_JScr_ExprEval_6471.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611ab260 | file object: 0xffff9489611ab2e0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vc03598f6#\4be44b39853cd8edb69e65a12544955f\Microsoft.VisualStudio.Text.Data.ni.dll
pool: 0xffff9489611ab3f0 | file object: 0xffff9489611ab470 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Build\b42b80c1d84644538410872279eff89a\Microsoft.Build.ni.dll.aux
pool: 0xffff9489611ab580 | file object: 0xffff9489611ab600 | offsetby: 0x80
\$Directory
pool: 0xffff9489611ab710 | file object: 0xffff9489611ab790 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ReferenceManager\extension.vsixmanifest
pool: 0xffff9489611ab8a0 | file object: 0xffff9489611ab920 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Portable Library Tools\extension.vsixmanifest
pool: 0xffff9489611aba30 | file object: 0xffff9489611abab0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611abbc0 | file object: 0xffff9489611abc40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\AppInsights\Contracts\extension.vsixmanifest
pool: 0xffff9489611abd50 | file object: 0xffff9489611abdd0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V7702e130#\435cf86f324c6dbfa667566b8ab82479\Microsoft.VisualStudio.CommonIDE.ni.dll
pool: 0xffff9489611ac070 | file object: 0xffff9489611ac0f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\WCF Connected Service\extension.vsixmanifest
pool: 0xffff9489611ac200 | file object: 0xffff9489611ac280 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Visual Studio MPF\12.0\extension.vsixmanifest
pool: 0xffff9489611ac390 | file object: 0xffff9489611ac410 | offsetby: 0x80
\$Directory
pool: 0xffff9489611ac520 | file object: 0xffff9489611ac5a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\C_msdia.dll_x86.pkgdef
pool: 0xffff9489611ac6b0 | file object: 0xffff9489611ac730 | offsetby: 0x80
\$Directory
pool: 0xffff9489611ac840 | file object: 0xffff9489611ac8c0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vc7739fa8#\d8422e9cf10153b868dbe1d3665eb348\Microsoft.VisualStudio.Text.Logic.ni.dll
pool: 0xffff9489611ac9d0 | file object: 0xffff9489611aca50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Visual Studio MPF\14.0\extension.vsixmanifest
pool: 0xffff9489611acb60 | file object: 0xffff9489611acbe0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Editorconfig\Wizard\extension.vsixmanifest
pool: 0xffff9489611accf0 | file object: 0xffff9489611acd70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CodingConventions\extension.vsixmanifest
pool: 0xffff9489611ad010 | file object: 0xffff9489611ad090 | offsetby: 0x80
\$Directory
pool: 0xffff9489611ad1a0 | file object: 0xffff9489611ad220 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vc1f51adf#\5f9b542a15c5d14a88940a2ff8efdfe3\Microsoft.VisualStudio.Shell.15.0.ni.dll
pool: 0xffff9489611ad330 | file object: 0xffff9489611ad3b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Performance Tools\extension.vsixmanifest
pool: 0xffff9489611ad4c0 | file object: 0xffff9489611ad540 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\TailoredProjectServices\extension.vsixmanifest
pool: 0xffff9489611ad650 | file object: 0xffff9489611ad6d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Storm (HDInsight)\HybridStormSample\StormSample.png
pool: 0xffff9489611ad7e0 | file object: 0xffff9489611ad860 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Library Manager\en\Microsoft.Web.LibraryManager.Vsix.resources.dll
pool: 0xffff9489611ad970 | file object: 0xffff9489611ad9f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Html.Editor.dll
pool: 0xffff9489611adb00 | file object: 0xffff9489611adb80 | offsetby: 0x80
\$Directory
pool: 0xffff9489611adc90 | file object: 0xffff9489611add10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.VisualBasic.Features.dll
pool: 0xffff9489611ade20 | file object: 0xffff9489611adea0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611ae140 | file object: 0xffff9489611ae1c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Storm (HDInsight)\AzureEventHubsReaderStormApplication\AzureEventHubsReader.png
pool: 0xffff9489611ae2d0 | file object: 0xffff9489611ae350 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\InteractiveWindow\extension.vsixmanifest
pool: 0xffff9489611ae460 | file object: 0xffff9489611ae4e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Azure\WebJobs\extension.vsixmanifest
pool: 0xffff9489611ae5f0 | file object: 0xffff9489611ae670 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\MetricsPackage.vrg.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611ae780 | file object: 0xffff9489611ae800 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VC\LanguageServer\extension.vsixmanifest
pool: 0xffff9489611ae910 | file object: 0xffff9489611ae990 | offsetby: 0x80
\$Directory
pool: 0xffff9489611aeaa0 | file object: 0xffff9489611aeb20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\Dir_Proj_Reg_for_VS_3599.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611aec30 | file object: 0xffff9489611aecb0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611aedc0 | file object: 0xffff9489611aee40 | offsetby: 0x80
\$Directory
pool: 0xffff9489611af0e0 | file object: 0xffff9489611af160 | offsetby: 0x80
\$Directory
pool: 0xffff9489611af270 | file object: 0xffff9489611af2f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Shared.Editor.dll
pool: 0xffff9489611af400 | file object: 0xffff9489611af480 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Languages\Microsoft.WebTools.Languages.Html.VS.dll
pool: 0xffff9489611af590 | file object: 0xffff9489611af610 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.ProjectFlavoring.dll
pool: 0xffff9489611af720 | file object: 0xffff9489611af7a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Library Manager\extension.vsixmanifest
pool: 0xffff9489611af8b0 | file object: 0xffff9489611af930 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\XamlLanguageService\extension.vsixmanifest
pool: 0xffff9489611afa40 | file object: 0xffff9489611afac0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\Storage\extension.vsixmanifest
pool: 0xffff9489611afbd0 | file object: 0xffff9489611afc50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ClientDiagnostics\extension.vsixmanifest
pool: 0xffff9489611afd60 | file object: 0xffff9489611afde0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b0080 | file object: 0xffff9489611b0100 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Visual Studio MPF\16.0\extension.vsixmanifest
pool: 0xffff9489611b0210 | file object: 0xffff9489611b0290 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b03a0 | file object: 0xffff9489611b0420 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vf3bd3225#\78eeb9b9b84334bc8125768ca34ad057\Microsoft.VisualStudio.ProjectSystem.ni.dll
pool: 0xffff9489611b0530 | file object: 0xffff9489611b05b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b06c0 | file object: 0xffff9489611b0740 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b0850 | file object: 0xffff9489611b08d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\EBF\Microsoft.VisualStudio.Workspace.ExternalBuildFramework.VS.dll
pool: 0xffff9489611b09e0 | file object: 0xffff9489611b0a60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\MSVB7_Snippets_Registration_39641.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611b0b70 | file object: 0xffff9489611b0bf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\Pro_SKU_License_Key_7238.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611b0d00 | file object: 0xffff9489611b0d80 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b1020 | file object: 0xffff9489611b10a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b11b0 | file object: 0xffff9489611b1230 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\MSSCCIHostActive.rgi_41972.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611b1340 | file object: 0xffff9489611b13c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Common\extension.vsixmanifest
pool: 0xffff9489611b14d0 | file object: 0xffff9489611b1550 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\MSVB7_Registration_for_VB_3609.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611b1660 | file object: 0xffff9489611b16e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\VSIXInstaller.exe
pool: 0xffff9489611b17f0 | file object: 0xffff9489611b1870 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CrossRepositorySearch\extension.vsixmanifest
pool: 0xffff9489611b1980 | file object: 0xffff9489611b1a00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Publish\Microsoft.WebTools.Publish.dll
pool: 0xffff9489611b1b10 | file object: 0xffff9489611b1b90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Language\GenerateType\extension.vsixmanifest
pool: 0xffff9489611b1ca0 | file object: 0xffff9489611b1d20 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611b1e30 | file object: 0xffff9489611b1eb0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\extension.vsixmanifest
pool: 0xffff9489611b2150 | file object: 0xffff9489611b21d0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V0435ba73#\42aa16524b84092894291acfc9017625\Microsoft.VisualStudio.ErrorListPkg.ni.dll
pool: 0xffff9489611b22e0 | file object: 0xffff9489611b2360 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VisualStudio\Editors\extension.vsixmanifest
pool: 0xffff9489611b2470 | file object: 0xffff9489611b24f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\KeyVault\extension.vsixmanifest
pool: 0xffff9489611b2600 | file object: 0xffff9489611b2680 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V54ab70ba#\adf1aa41f76bda708de6572c3087d0a3\Microsoft.VisualStudio.Shell.Connected.ni.dll.aux
pool: 0xffff9489611b2790 | file object: 0xffff9489611b2810 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V54ab70ba#\adf1aa41f76bda708de6572c3087d0a3\Microsoft.VisualStudio.Shell.Connected.ni.dll
pool: 0xffff9489611b2920 | file object: 0xffff9489611b29a0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V68a56f61#\db66e07b814f5d2beb116bcdb0f97f80\Microsoft.VisualStudio.Text.Internal.ni.dll
pool: 0xffff9489611b2ab0 | file object: 0xffff9489611b2b30 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b2c40 | file object: 0xffff9489611b2cc0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V0980bc02#\da1f4a7f2c163d38ccdb1edc51f8be25\Microsoft.VisualStudio.ExtensionEngine.ni.dll
pool: 0xffff9489611b2dd0 | file object: 0xffff9489611b2e50 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\bom-handling-310098ea16c14fe700db16d1550743d5.code
pool: 0xffff9489611b30f0 | file object: 0xffff9489611b3170 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\Publish_DLL_PublishURLDefault_Reg_VS_x86_enu.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611b3280 | file object: 0xffff9489611b3300 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Common\Microsoft.VisualStudio.PowerShellTools.Package.dll
pool: 0xffff9489611b3410 | file object: 0xffff9489611b3490 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\TreeNavigation\GraphProvider\extension.vsixmanifest
pool: 0xffff9489611b35a0 | file object: 0xffff9489611b3620 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\e1xcjrpa.qg3\Microsoft.VisualStudio.Docker.Shared.dll
pool: 0xffff9489611b3730 | file object: 0xffff9489611b37b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Common\Microsoft.VisualStudio.PowerShellTools.Package.dll
pool: 0xffff9489611b38c0 | file object: 0xffff9489611b3940 | offsetby: 0x80
\Windows\Microsoft.NET\assembly\GAC_MSIL\System.Windows.Input.Manipulations\v4.0_4.0.0.0__b77a5c561934e089\System.Windows.Input.Manipulations.dll
pool: 0xffff9489611b3a50 | file object: 0xffff9489611b3ad0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\xterm-addon-web-links-b5449ff0f5dfc4281273ebf134341592.code
pool: 0xffff9489611b3be0 | file object: 0xffff9489611b3c60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Resource Manager\Microsoft.VisualStudio.Azure.ResourceManager.Package.dll
pool: 0xffff9489611b3d70 | file object: 0xffff9489611b3df0 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\php\package.nls.json
pool: 0xffff9489611b4090 | file object: 0xffff9489611b4110 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Web Tools\Publish\Microsoft.WebTools.Publish.dll
pool: 0xffff9489611b4220 | file object: 0xffff9489611b42a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b43b0 | file object: 0xffff9489611b4430 | offsetby: 0x80
\Program Files\WindowsPowerShell\Modules\PSReadline\2.0.0\PSReadLine.format.ps1xml
pool: 0xffff9489611b4540 | file object: 0xffff9489611b45c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b46d0 | file object: 0xffff9489611b4750 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TypeScript\Microsoft.VisualStudio.LanguageServices.TypeScript.dll
pool: 0xffff9489611b4860 | file object: 0xffff9489611b48e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\NavigateTo\FileProvider\extension.vsixmanifest
pool: 0xffff9489611b49f0 | file object: 0xffff9489611b4a70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ReferenceManager\Microsoft.VisualStudio.ReferenceManager.Contracts.dll
pool: 0xffff9489611b4b80 | file object: 0xffff9489611b4c00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\Publish_DLL_Reg_VS_x86_enu.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611b4d10 | file object: 0xffff9489611b4d90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ConnectedServices\Authentication\extension.vsixmanifest
pool: 0xffff9489611b5030 | file object: 0xffff9489611b50b0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vc1ae403b#\3c03c57713a87b7021cb5aee7432562c\Microsoft.VisualStudio.Shell.ViewManager.ni.dll
pool: 0xffff9489611b51c0 | file object: 0xffff9489611b5240 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b5350 | file object: 0xffff9489611b53d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b54e0 | file object: 0xffff9489611b5560 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools Diagnostics\extension.vsixmanifest
pool: 0xffff9489611b5670 | file object: 0xffff9489611b56f0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b5800 | file object: 0xffff9489611b5880 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\PseudoFolders_Reg_8676.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611b5990 | file object: 0xffff9489611b5a10 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V0c1ea960#\523deb4c222d8a15fc739fb29d83760f\Microsoft.VisualStudio.Platform.VSEditor.ni.dll
pool: 0xffff9489611b5b20 | file object: 0xffff9489611b5ba0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\TfsProviderStub.dll
pool: 0xffff9489611b5cb0 | file object: 0xffff9489611b5d30 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611b5e40 | file object: 0xffff9489611b5ec0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\CrossRepositorySearch\Microsoft.VisualStudio.Platform.CrossRepositorySearch.Implementation.dll
pool: 0xffff9489611b6160 | file object: 0xffff9489611b61e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\RazorLanguageServices\Microsoft.VisualStudio.LanguageServerClient.Razor.dll
pool: 0xffff9489611b62f0 | file object: 0xffff9489611b6370 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\Razor_Registry_Component_x86.pkgdef
pool: 0xffff9489611b6480 | file object: 0xffff9489611b6500 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Resource Manager\Microsoft.VisualStudio.Azure.ResourceManager.Package.dll
pool: 0xffff9489611b6610 | file object: 0xffff9489611b6690 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\v2.9\Microsoft.VisualStudio.WindowsAzure.2.9.dll
pool: 0xffff9489611b67a0 | file object: 0xffff9489611b6820 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\RemoteDebugger\extension.vsixmanifest
pool: 0xffff9489611b6930 | file object: 0xffff9489611b69b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b6ac0 | file object: 0xffff9489611b6b40 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\theme-defaults\themes\dark_defaults.json
pool: 0xffff9489611b6c50 | file object: 0xffff9489611b6cd0 | offsetby: 0x80
\Users\User\AppData\Local\Packages\Microsoft.Windows.Cortana_cw5n1h2txyewy\AppData\CacheStorage\CacheStorage.edbe.edb
pool: 0xffff9489611b6de0 | file object: 0xffff9489611b6e60 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b7100 | file object: 0xffff9489611b7180 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611b7290 | file object: 0xffff9489611b7310 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ClientDiagnostics\AppAnalysis\extension.vsixmanifest
pool: 0xffff9489611b7420 | file object: 0xffff9489611b74a0 | offsetby: 0x80
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0210~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff9489611b75b0 | file object: 0xffff9489611b7630 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Unit Test Explorer\TestWIExtension\extension.vsixmanifest
pool: 0xffff9489611b7740 | file object: 0xffff9489611b77c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\ResW_FileExtension_Registration.pkgdef
pool: 0xffff9489611b78d0 | file object: 0xffff9489611b7950 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\v2.9\Microsoft.VisualStudio.WindowsAzure.2.9.dll
pool: 0xffff9489611b7a60 | file object: 0xffff9489611b7ae0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b7bf0 | file object: 0xffff9489611b7c70 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b7d80 | file object: 0xffff9489611b7e00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Deployment Project\extension.vsixmanifest
pool: 0xffff9489611b80a0 | file object: 0xffff9489611b8120 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b8230 | file object: 0xffff9489611b82b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b83c0 | file object: 0xffff9489611b8440 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Windows Azure Tools\Resource Manager\extension.vsixmanifest
pool: 0xffff9489611b8550 | file object: 0xffff9489611b85d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ExtensionManager\ServiceModule\extension.vsixmanifest
pool: 0xffff9489611b86e0 | file object: 0xffff9489611b8760 | offsetby: 0x80
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0213~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff9489611b8870 | file object: 0xffff9489611b88f0 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\Performance-30dcbc240602aeae31e5378d463de197.code
pool: 0xffff9489611b8a00 | file object: 0xffff9489611b8a80 | offsetby: 0x80
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Features-Package0215~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff9489611b8b90 | file object: 0xffff9489611b8c10 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\index-c9395222a801b833bb955ee085933241.code
pool: 0xffff9489611b8d20 | file object: 0xffff9489611b8da0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V8f714998#\5f5f47935425aabde94941695a79c961\Microsoft.VisualStudio.Language.Intellisense.ni.dll
pool: 0xffff9489611b9040 | file object: 0xffff9489611b90c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b91d0 | file object: 0xffff9489611b9250 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\extension.vsixmanifest
pool: 0xffff9489611b9360 | file object: 0xffff9489611b93e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Storm (HDInsight)\StormSample\StormSample.png
pool: 0xffff9489611b94f0 | file object: 0xffff9489611b9570 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\Microsoft.CodeAnalysis.dll
pool: 0xffff9489611b9680 | file object: 0xffff9489611b9700 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\WebClient\Diagnostics\ToolWindows\Microsoft.VisualStudio.WebClient.Diagnostics.HtmlToolHost.dll
pool: 0xffff9489611b9810 | file object: 0xffff9489611b9890 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b99a0 | file object: 0xffff9489611b9a20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ClientDiagnostics\AppResponsiveness\extension.vsixmanifest
pool: 0xffff9489611b9b30 | file object: 0xffff9489611b9bb0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611b9cc0 | file object: 0xffff9489611b9d40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Architecture Tools\Providers\Solution\extension.vsixmanifest
pool: 0xffff9489611b9e50 | file object: 0xffff9489611b9ed0 | offsetby: 0x80
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Desktop-Required-Package04~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff9489611ba170 | file object: 0xffff9489611ba1f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Shell.Connected.dll
pool: 0xffff9489611ba300 | file object: 0xffff9489611ba380 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\TLBINF32_Reg_VS_5752.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611ba490 | file object: 0xffff9489611ba510 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\languagepacks.json
pool: 0xffff9489611ba620 | file object: 0xffff9489611ba6a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Microsoft.Data.Entity.Design.Package.dll
pool: 0xffff9489611ba7b0 | file object: 0xffff9489611ba830 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611ba940 | file object: 0xffff9489611ba9c0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\Microsoft Office 365 Connected Service\extension.vsixmanifest
pool: 0xffff9489611baad0 | file object: 0xffff9489611bab50 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489611bac60 | file object: 0xffff9489611bace0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VB_Debug_Registration_x86.8E110D54_B611_4106_AA24_D1D63302A114.pkgdef
pool: 0xffff9489611badf0 | file object: 0xffff9489611bae70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\SxS.MSVSEditors_Reg_VS_27145.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611bb110 | file object: 0xffff9489611bb190 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vc38f2c7b#\f2e57c4255181688c6098454703e6ace\Microsoft.VisualStudio.Platform.WindowManagement.ni.dll
pool: 0xffff9489611bb2a0 | file object: 0xffff9489611bb320 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611bb430 | file object: 0xffff9489611bb4b0 | offsetby: 0x80
\Windows\System32\twext.dll
pool: 0xffff9489611bb5c0 | file object: 0xffff9489611bb640 | offsetby: 0x80
\Users\User\AppData\Roaming\Microsoft\Windows\PowerShell\PSReadLine\ConsoleHost_history.txte-16.pngge.nls.json
pool: 0xffff9489611bb750 | file object: 0xffff9489611bb7d0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611bb8e0 | file object: 0xffff9489611bb960 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\WebClient\Diagnostics\ToolWindows\extension.vsixmanifest
pool: 0xffff9489611bba70 | file object: 0xffff9489611bbaf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\FSharp\FSharp.ProjectSystem.FSharp.dll
pool: 0xffff9489611bbc00 | file object: 0xffff9489611bbc80 | offsetby: 0x80
\$Directory
pool: 0xffff9489611bbd90 | file object: 0xffff9489611bbe10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Microsoft\ADL Tools\2.4.6000.1\ProjectTemplates\Storm (HDInsight)\AzureEventHubsWriterStormApplication\AzureEventHubsWriter.png
pool: 0xffff9489611bc0b0 | file object: 0xffff9489611bc130 | offsetby: 0x80
[NOT READABLE]
pool: 0xffff9489611bc240 | file object: 0xffff9489611bc2c0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\FSharp.Projd4f911f5#\5d4e838b73f97bcf3c602b48fdf9de6f\FSharp.ProjectSystem.FSharp.ni.dll.aux
pool: 0xffff9489611bc3d0 | file object: 0xffff9489611bc450 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VB7to8DL_DLL_Reg_27312.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611bc560 | file object: 0xffff9489611bc5e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VB_Project_Package_745_____x86.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611bc6f0 | file object: 0xffff9489611bc770 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TailoredProjectServices\Microsoft.VisualStudio.TailoredProjectServices.dll
pool: 0xffff9489611bc880 | file object: 0xffff9489611bc900 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VB_Install_Dir_Registry_Entry_1882.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611bca10 | file object: 0xffff9489611bca90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\XamlDiagnostics\en\Microsoft.VisualStudio.DesignTools.Diagnostics.resources.dll
pool: 0xffff9489611bcba0 | file object: 0xffff9489611bcc20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\MDD\Debugger\Microsoft.MIDebugPackage.dll
pool: 0xffff9489611bcd30 | file object: 0xffff9489611bcdb0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611bd050 | file object: 0xffff9489611bd0d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\WebClient\Diagnostics\EdgeDebugAdapter\extension.vsixmanifest
pool: 0xffff9489611bd1e0 | file object: 0xffff9489611bd260 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\InteractiveWindow\Microsoft.VisualStudio.VsInteractiveWindow.dll
pool: 0xffff9489611bd370 | file object: 0xffff9489611bd3f0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611bd500 | file object: 0xffff9489611bd580 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\NuGet\NuGet.VisualStudio.OnlineEnvironment.Client.dll
pool: 0xffff9489611bd690 | file object: 0xffff9489611bd710 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Architecture Tools\GraphProviderPackage\extension.vsixmanifest
pool: 0xffff9489611bd820 | file object: 0xffff9489611bd8a0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611bd9b0 | file object: 0xffff9489611bda30 | offsetby: 0x80
\$Directory
pool: 0xffff9489611bdb40 | file object: 0xffff9489611bdbc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\Microsoft.VisualStudio.Workspace.VSIntegration.dll
pool: 0xffff9489611bdcd0 | file object: 0xffff9489611bdd50 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\OpenFolder\Microsoft.VisualStudio.Workspace.VSIntegration.dll
pool: 0xffff9489611bde60 | file object: 0xffff9489611bdee0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\WebClient\Diagnostics\WebDiagnosticsAttach\extension.vsixmanifest
pool: 0xffff9489611be180 | file object: 0xffff9489611be200 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\LanguageServices\extension.vsixmanifest
pool: 0xffff9489611be310 | file object: 0xffff9489611be390 | offsetby: 0x80
\Windows\System32\CatRoot\{F750E6C3-38EE-11D1-85E5-00C04FC295EE}\Microsoft-Windows-Client-Desktop-Required-Package0410~31bf3856ad364e35~amd64~~10.0.18362.752.cat
pool: 0xffff9489611be4a0 | file object: 0xffff9489611be520 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611be630 | file object: 0xffff9489611be6b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\WebClient\Diagnostics\ChromeDebugAdapter\extension.vsixmanifest
pool: 0xffff9489611be7c0 | file object: 0xffff9489611be840 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vf3bd3225#\78eeb9b9b84334bc8125768ca34ad057\Microsoft.VisualStudio.ProjectSystem.ni.dll.aux
pool: 0xffff9489611be950 | file object: 0xffff9489611be9d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Architecture Tools\Providers\ManagedProvider\extension.vsixmanifest
pool: 0xffff9489611beae0 | file object: 0xffff9489611beb60 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\Installer\resources\app\ServiceHub\Services\Microsoft.VisualStudio.Setup.Service\Microsoft.VisualStudio.Setup.Service.dll
pool: 0xffff9489611bec70 | file object: 0xffff9489611becf0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.OLE.Interop.dll
pool: 0xffff9489611bee00 | file object: 0xffff9489611bee80 | offsetby: 0x80
\$Directory
pool: 0xffff9489611bf120 | file object: 0xffff9489611bf1a0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Architecture Tools\Providers\NativeCode\extension.vsixmanifest
pool: 0xffff9489611bf2b0 | file object: 0xffff9489611bf330 | offsetby: 0x80
\$Directory
pool: 0xffff9489611bf440 | file object: 0xffff9489611bf4c0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vf617de63#\8f4c9f433e3eecc359b6151995ee9dfe\Microsoft.VisualStudio.ExtensionManager.Implementation.ni.dll
pool: 0xffff9489611bf5d0 | file object: 0xffff9489611bf650 | offsetby: 0x80
\$Directory
pool: 0xffff9489611bf760 | file object: 0xffff9489611bf7e0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611bf8f0 | file object: 0xffff9489611bf970 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\ExpressionEvaluators\extension.vsixmanifest
pool: 0xffff9489611bfa80 | file object: 0xffff9489611bfb00 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.V4922f139#\61af53389ff02fcc3c805311b78b9d03\Microsoft.VisualStudio.ProjectSystem.Implementation.ni.dll.aux
pool: 0xffff9489611bfc10 | file object: 0xffff9489611bfc90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ManagedLanguages\VBCSharp\SourceBasedTestDiscovery\extension.vsixmanifest
pool: 0xffff9489611bfda0 | file object: 0xffff9489611bfe20 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\VSLangProj.dll
pool: 0xffff9489611c00c0 | file object: 0xffff9489611c0140 | offsetby: 0x80
\$Directory
pool: 0xffff9489611c0250 | file object: 0xffff9489611c02d0 | offsetby: 0x80
\Windows\assembly\NativeImages_v4.0.30319_32\Microsoft.Vfd40090d#\e4df24a7300b1474c0f8d8a5e7f3fe52\Microsoft.VisualStudio.Composition.ni.dll.aux
pool: 0xffff9489611c03e0 | file object: 0xffff9489611c0460 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PublicAssemblies\Microsoft.VisualStudio.Shell.Interop.11.0.dll
pool: 0xffff9489611c0570 | file object: 0xffff9489611c05f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.Composition.dll
pool: 0xffff9489611c0700 | file object: 0xffff9489611c0780 | offsetby: 0x80
\$Directory
pool: 0xffff9489611c0890 | file object: 0xffff9489611c0910 | offsetby: 0x80
\Users\User\AppData\Roaming\Code\CachedData\5763d909d5f12fe19f215cbfdd29a91c0fa9208a\extension-85a109d586eeec5d8f7d59ee983619be.code
pool: 0xffff9489611c0a20 | file object: 0xffff9489611c0aa0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.TeamFoundation.Build.dll
pool: 0xffff9489611c0bb0 | file object: 0xffff9489611c0c30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.CodeReview.Components.dll
pool: 0xffff9489611c0d40 | file object: 0xffff9489611c0dc0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.TeamFoundation.Git.Provider.dll
pool: 0xffff9489611c1060 | file object: 0xffff9489611c10e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\PrivateAssemblies\Microsoft.VisualStudio.VisualC.Utilities.dll
pool: 0xffff9489611c11f0 | file object: 0xffff9489611c1270 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.Merge.dll
pool: 0xffff9489611c1380 | file object: 0xffff9489611c1400 | offsetby: 0x80
\Users\User\AppData\Local\Programs\Microsoft VS Code\resources\app\extensions\coffeescript\package.nls.json
pool: 0xffff9489611c1510 | file object: 0xffff9489611c1590 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.TeamFoundation.SharePointReporting.dll
pool: 0xffff9489611c16a0 | file object: 0xffff9489611c1720 | offsetby: 0x80
.\Device\HarddiskVolume2E\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Schedule\TaskCache\Tasks\{A6432082-89BD-434D-9C61-D7FE6D91CCB9}x
pool: 0xffff9489611c1830 | file object: 0xffff9489611c18b0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611c19c0 | file object: 0xffff9489611c1a40 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VB_Project_Reg_VS_26699.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611c1b50 | file object: 0xffff9489611c1bd0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TeamFoundation\Team Explorer\Microsoft.VisualStudio.TeamFoundation.dll
pool: 0xffff9489611c1ce0 | file object: 0xffff9489611c1d60 | offsetby: 0x80
[NOT A VALID _UNICODE_STRING]
pool: 0xffff9489611c1e70 | file object: 0xffff9489611c1ef0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Terminal\Microsoft.VisualStudio.Terminal.Implementation.dll
pool: 0xffff9489611c2000 | file object: 0xffff9489611c2080 | offsetby: 0x80
\$Directory
pool: 0xffff9489611c2190 | file object: 0xffff9489611c2210 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\Packages\Debugger\1033\vsdebugui.dll
pool: 0xffff9489611c2320 | file object: 0xffff9489611c23a0 | offsetby: 0x80
\Windows\System32\AppxSip.dll
pool: 0xffff9489611c24b0 | file object: 0xffff9489611c2530 | offsetby: 0x80
\Windows\System32\WindowsPowerShell\v1.0\PSEvents.dll
pool: 0xffff9489611c2640 | file object: 0xffff9489611c26c0 | offsetby: 0x80
\$Directory
pool: 0xffff9489611c27d0 | file object: 0xffff9489611c2850 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\ReferenceManager\Microsoft.VisualStudio.ReferenceManager.Providers.dll
pool: 0xffff9489611c2960 | file object: 0xffff9489611c29e0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VB_Project_Reg_VS_26704.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611c2af0 | file object: 0xffff9489611c2b70 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestWindow\Microsoft.VisualStudio.TestWindow.dll
pool: 0xffff9489611c2c80 | file object: 0xffff9489611c2d00 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\VisualStudio\Editors\Microsoft.VisualStudio.Editors.dll
pool: 0xffff9489611c2e10 | file object: 0xffff9489611c2e90 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VCSh_LangService_Reg_26668.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611c3130 | file object: 0xffff9489611c31b0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\XamlDiagnostics\Microsoft.VisualStudio.DesignTools.Diagnostics.dll
pool: 0xffff9489611c32c0 | file object: 0xffff9489611c3340 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VSDTP.Fidalgo_x86.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611c3450 | file object: 0xffff9489611c34d0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VS_Community_Root_Folder_Reg.pkgdef
pool: 0xffff9489611c35e0 | file object: 0xffff9489611c3660 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\Terminal\Microsoft.VisualStudio.Terminal.Implementation.dll
pool: 0xffff9489611c3770 | file object: 0xffff9489611c37f0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VS_Diagnostics_IntelliTraceShell_Component.pkgdef
pool: 0xffff9489611c3900 | file object: 0xffff9489611c3980 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VCSh_Dir_Registry_Entry_5156.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611c3a90 | file object: 0xffff9489611c3b10 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Microsoft\TestGeneration\Microsoft.VisualStudio.TestPlatform.TestGeneration.Package.dll
pool: 0xffff9489611c3c20 | file object: 0xffff9489611c3ca0 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\Extensions\Community\VB_Project_Reg_VS_26699b.3643236F_FC70_11D3_A536_0090278A1BB8.pkgdef
pool: 0xffff9489611c3db0 | file object: 0xffff9489611c3e30 | offsetby: 0x80
\Program Files (x86)\Microsoft Visual Studio\2019\Community\Common7\IDE\CommonExtensions\Platform\Debugger\VsDebugCoreUI.dll
NtUnloadDriver() -> 0x0
Reference in New Issue View Git Blame Copy Permalink