232 lines
30 KiB
Plaintext
232 lines
30 KiB
Plaintext
Module: Screenpresso.exe, 64-bit
|
|
Full path: C:\Program Files\Learnpulse\Screenpresso\Screenpresso.exe
|
|
File version: 2.1.15.0
|
|
Description: Screenpresso
|
|
PID: 31860
|
|
Parent PID: 17172
|
|
Priority: 8
|
|
Threads: 16
|
|
Owner: AGRYNCO-NB\agrynco (S-1-5-21-4255264900-3681165211-3101920415-1001)
|
|
Session: 1
|
|
|
|
Started at: 6:17:34
|
|
Uptime: 00:04:13.6263716
|
|
|
|
Command Line:
|
|
"C:\Program Files\Learnpulse\Screenpresso\Screenpresso.exe" run --newinstance --restarted
|
|
|
|
Current Directory:
|
|
C:\Windows\system32\
|
|
|
|
Environment:
|
|
=::=::\
|
|
ALLUSERSPROFILE=C:\ProgramData
|
|
APPDATA=C:\Users\agrynco\AppData\Roaming
|
|
CommonProgramFiles=C:\Program Files\Common Files
|
|
CommonProgramFiles(x86)=C:\Program Files (x86)\Common Files
|
|
CommonProgramW6432=C:\Program Files\Common Files
|
|
COMPUTERNAME=AGRYNCO-NB
|
|
ComSpec=C:\Windows\system32\cmd.exe
|
|
DriverData=C:\Windows\System32\Drivers\DriverData
|
|
EFC_11936=1
|
|
FPS_BROWSER_APP_PROFILE_STRING=Internet Explorer
|
|
FPS_BROWSER_USER_PROFILE_STRING=Default
|
|
HOMEDRIVE=C:
|
|
HOMEPATH=\Users\agrynco
|
|
IGCCSVC_DB=AQAAANCMnd8BFdERjHoAwE/Cl+sBAAAAOJ66MrrVw0+QBhqk5hoEKwQAAAACAAAAAAAQZgAAAAEAACAAAADnIlH5GScq5R1YwQo2Cdo8Ywd0ZnJUWgTOe7r4V5F63wAAAAAOgAAAAAIAACAAAAAlDR5jYnr48atTqrib8QkVE8gaMuCWSNJWtk+jRzAnqmAAAAALixtyTpkBnS9kEaVJMR5ea2pX1V5u/MVPU0mJfqqQjVqIIvyG3dc/oZ+f7BajWsnfH7FhM0r+7l9Y5zMMoZkm2KAtRIvw/7Ty5HukYLvfOe223gFueFWm34eioL7L3xRAAAAAJzbevzwd+31hEaN3Oa+gjRBOMxyfyX5U0mEeaqvaPv/Ds59UhBmINpbz6//2aDTGdkpe40Lp2WLhU71srp61hw==
|
|
JetBrains Rider=C:\Program Files\JetBrains\JetBrains Rider 2023.2.3\bin;
|
|
LOCALAPPDATA=C:\Users\agrynco\AppData\Local
|
|
LOGONSERVER=\\AGRYNCO-NB
|
|
NUMBER_OF_PROCESSORS=20
|
|
NVM_HOME=C:\Users\agrynco\AppData\Roaming\nvm
|
|
NVM_SYMLINK=C:\Program Files\nodejs
|
|
OneDrive=C:\Users\agrynco\OneDrive
|
|
OneDriveConsumer=C:\Users\agrynco\OneDrive
|
|
OS=Windows_NT
|
|
Path=C:\Program Files\Common Files\Oracle\Java\javapath;C:\Windows\system32;C:\Windows;C:\Windows\System32\Wbem;C:\Windows\System32\WindowsPowerShell\v1.0\;C:\Windows\System32\OpenSSH\;C:\Program Files\Git\cmd;C:\Program Files\dotnet\;C:\Program Files\LINQPad7;C:\Program Files\Microsoft SQL Server\Client SDK\ODBC\170\Tools\Binn\;C:\Program Files\Microsoft SQL Server\150\Tools\Binn\;C:\Users\agrynco\AppData\Roaming\nvm;C:\Program Files\nodejs;C:\Program Files\WireGuard\;C:\Program Files (x86)\Microsoft SQL Server\160\DTS\Binn\;C:\Program Files\TortoiseGit\bin;C:\Program Files\Docker\Docker\resources\bin;C:\Program Files\PowerShell\7\;C:\Users\agrynco\AppData\Local\Microsoft\WindowsApps;C:\Users\agrynco\AppData\Local\Programs\Microsoft VS Code\bin;C:\Users\agrynco\.dotnet\tools;C:\Program Files\JetBrains\JetBrains Rider 2023.2.3\bin;;C:\Users\agrynco\AppData\Roaming\nvm;C:\Program Files\nodejs;C:\Program Files\Azure Data Studio\bin
|
|
PATHEXT=.COM;.EXE;.BAT;.CMD;.VBS;.VBE;.JS;.JSE;.WSF;.WSH;.MSC
|
|
POWERSHELL_DISTRIBUTION_CHANNEL=MSI:Windows 10 Pro
|
|
PROCESSOR_ARCHITECTURE=AMD64
|
|
PROCESSOR_IDENTIFIER=Intel64 Family 6 Model 154 Stepping 3, GenuineIntel
|
|
PROCESSOR_LEVEL=6
|
|
PROCESSOR_REVISION=9a03
|
|
ProgramData=C:\ProgramData
|
|
ProgramFiles=C:\Program Files
|
|
ProgramFiles(x86)=C:\Program Files (x86)
|
|
ProgramW6432=C:\Program Files
|
|
PSModulePath=C:\Program Files\WindowsPowerShell\Modules;C:\Windows\system32\WindowsPowerShell\v1.0\Modules
|
|
PUBLIC=C:\Users\Public
|
|
SESSIONNAME=Console
|
|
SONAR_TOKEN=sqp_4ba776407397ab3d628d0eea2a02bc040832cad0
|
|
SystemDrive=C:
|
|
SystemRoot=C:\Windows
|
|
TEMP=C:\Users\agrynco\AppData\Local\Temp
|
|
TMP=C:\Users\agrynco\AppData\Local\Temp
|
|
USERDOMAIN=AGRYNCO-NB
|
|
USERDOMAIN_ROAMINGPROFILE=AGRYNCO-NB
|
|
USERNAME=agrynco
|
|
USERPROFILE=C:\Users\agrynco
|
|
windir=C:\Windows
|
|
ZES_ENABLE_SYSMAN=1
|
|
|
|
GDI Objects: 53
|
|
USER Objects: 26
|
|
|
|
Processor Time: 00:00:00.2968750 0%
|
|
Privileged Time: 00:00:00.1562500 0%
|
|
User Time: 00:00:00.1406250 0%
|
|
Handle Count: 607
|
|
Page File Bytes: 84590592
|
|
Page File Bytes Peak: 86593536
|
|
Working Set: 104951808
|
|
Working Set Peak: 106287104
|
|
Pool Nonpaged Bytes: 43032
|
|
Pool Paged Bytes: 1005048
|
|
Private Bytes: 84590592
|
|
Page Faults: 63303 0/sec
|
|
Virtual Bytes: 5317713920
|
|
Virtual Bytes Peak: 5416587264
|
|
IO Data Bytes: 390047 0/sec
|
|
IO Read Bytes: 382986 0/sec
|
|
IO Write Bytes: 7061 0/sec
|
|
IO Other Bytes: 93068 0/sec
|
|
IO Data Operations: 470 0/sec
|
|
IO Read Operations: 408 0/sec
|
|
IO Write Operations: 62 0/sec
|
|
IO Other Operations: 2846 0/sec
|
|
|
|
Window title: Screenpresso
|
|
HWND: 0x30dde
|
|
Window style: 26CF0000 WS_MINIMIZE WS_CLIPSIBLINGS WS_CLIPCHILDREN WS_BORDER WS_DLGFRAME WS_SYSMENU WS_THICKFRAME WS_MINIMIZEBOX WS_MAXIMIZEBOX
|
|
Extended style: 00010100 WS_EX_WINDOWEDGE WS_EX_CONTROLPARENT
|
|
|
|
Modules:
|
|
Base Size Path (version info is not displayed)
|
|
0000018099150000 1348000 C:\Program Files\Learnpulse\Screenpresso\Screenpresso.exe
|
|
00007FF87BE10000 217000 C:\Windows\SYSTEM32\ntdll.dll
|
|
00007FF85BA60000 6B000 C:\Windows\SYSTEM32\MSCOREE.DLL
|
|
00007FF87AD80000 C4000 C:\Windows\System32\KERNEL32.dll
|
|
00007FF879480000 3A5000 C:\Windows\System32\KERNELBASE.dll
|
|
00007FF87A980000 B1000 C:\Windows\System32\ADVAPI32.dll
|
|
00007FF87ACA0000 A7000 C:\Windows\System32\msvcrt.dll
|
|
00007FF87ABD0000 A6000 C:\Windows\System32\sechost.dll
|
|
00007FF87AF00000 117000 C:\Windows\System32\RPCRT4.dll
|
|
00007FF85B030000 9B000 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscoreei.dll
|
|
00007FF87B8A0000 5E000 C:\Windows\System32\SHLWAPI.dll
|
|
00007FF878190000 18000 C:\Windows\SYSTEM32\kernel.appcore.dll
|
|
00007FF86CBB0000 A000 C:\Windows\SYSTEM32\VERSION.dll
|
|
00007FF85A440000 9A4000 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clr.dll
|
|
00007FF87BA00000 1AE000 C:\Windows\System32\USER32.dll
|
|
00007FF879240000 26000 C:\Windows\System32\win32u.dll
|
|
00007FF87AD50000 29000 C:\Windows\System32\GDI32.dll
|
|
00007FF859CF0000 C000 C:\Windows\SYSTEM32\VCRUNTIME140_1_CLR0400.dll
|
|
00007FF879830000 119000 C:\Windows\System32\gdi32full.dll
|
|
00007FF879270000 9A000 C:\Windows\System32\msvcp_win.dll
|
|
00007FF859CA0000 1B000 C:\Windows\SYSTEM32\VCRUNTIME140_CLR0400.dll
|
|
00007FF879950000 111000 C:\Windows\System32\ucrtbase.dll
|
|
00007FF859BD0000 CD000 C:\Windows\SYSTEM32\ucrtbase_clr0400.dll
|
|
00007FF87BBB0000 31000 C:\Windows\System32\IMM32.DLL
|
|
00007FF87A970000 8000 C:\Windows\System32\psapi.dll
|
|
00007FF857C40000 160F000 C:\Windows\assembly\NativeImages_v4.0.30319_64\mscorlib\987f639e2113a820112aca65fb12396c\mscorlib.ni.dll
|
|
00007FF87A440000 1A0000 C:\Windows\System32\ole32.dll
|
|
00007FF87A5E0000 389000 C:\Windows\System32\combase.dll
|
|
00007FF879A70000 7A000 C:\Windows\System32\bcryptPrimitives.dll
|
|
00007FF876210000 AB000 C:\Windows\system32\uxtheme.dll
|
|
00007FF8789F0000 1B000 C:\Windows\SYSTEM32\CRYPTSP.dll
|
|
00007FF8781B0000 35000 C:\Windows\system32\rsaenh.dll
|
|
00007FF8789D0000 C000 C:\Windows\SYSTEM32\CRYPTBASE.dll
|
|
00007FF878B10000 28000 C:\Windows\SYSTEM32\bcrypt.dll
|
|
00007FF8569E0000 C1C000 C:\Windows\assembly\NativeImages_v4.0.30319_64\System\8189c864e22b05b7e00154bea8c0a08a\System.ni.dll
|
|
00007FF855660000 A86000 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Core\62acf38f8023a408e0bccee3aab84043\System.Core.ni.dll
|
|
00007FF805930000 50E000 C:\Windows\assembly\NativeImages_v4.0.30319_64\WindowsBase\4a286a84002545f0e673f8e4e2c70ac7\WindowsBase.ni.dll
|
|
00007FF803E30000 E7B000 C:\Windows\assembly\NativeImages_v4.0.30319_64\PresentationCore\5cc17075f7708a5b30a3ab2407c6e6b6\PresentationCore.ni.dll
|
|
00007FF8026C0000 1761000 C:\Windows\assembly\NativeImages_v4.0.30319_64\Presentatio5ae0f00f#\2c1f90928a217f09dfd83c9bc28bdc22\PresentationFramework.ni.dll
|
|
00007FF802440000 277000 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xaml\b2f7b0590b08d1638f903f2b84fc65e5\System.Xaml.ni.dll
|
|
00007FF875200000 273000 C:\Windows\SYSTEM32\dwrite.dll
|
|
00007FF802290000 1A2000 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\wpfgfx_v0400.dll
|
|
00007FF87B500000 D7000 C:\Windows\System32\OLEAUT32.dll
|
|
00007FF8064A0000 8E000 C:\Windows\SYSTEM32\MSVCP140_CLR0400.dll
|
|
00007FF802160000 122000 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\WPF\PresentationNative_v0400.dll
|
|
00007FF857600000 12F000 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\clrjit.dll
|
|
00007FF855420000 133000 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Configuration\38f74f65631ee235715d96510c5f240d\System.Configuration.ni.dll
|
|
00007FF853230000 8B0000 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Xml\66398e51746259c154d8e90cfdb3c893\System.Xml.ni.dll
|
|
00007FF879BE0000 859000 C:\Windows\System32\shell32.dll
|
|
00007FF877060000 8F4000 C:\Windows\SYSTEM32\windows.storage.dll
|
|
00007FF876F20000 13E000 C:\Windows\SYSTEM32\wintypes.dll
|
|
00007FF87AAD0000 F3000 C:\Windows\System32\SHCORE.dll
|
|
00007FF8790B0000 26000 C:\Windows\SYSTEM32\profapi.dll
|
|
00007FF87BC80000 14F000 C:\Windows\System32\MSCTF.dll
|
|
00007FF806250000 9D000 C:\Windows\assembly\NativeImages_v4.0.30319_64\Presentatioaec034ca#\e4e79bc2434ddc2f7558edd63a108b86\PresentationFramework.Aero2.ni.dll
|
|
00007FF84A140000 1F3000 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Drawing\f921fc7a8aa294dce4d724297269ca87\System.Drawing.ni.dll
|
|
00007FF848860000 10E5000 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Windows.Forms\0f4ba34cff682d26c1424f8d69b1fc39\System.Windows.Forms.ni.dll
|
|
00007FF8579D0000 166000 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Management\53ee97c24475fca65c6082830817b6a5\System.Management.ni.dll
|
|
00007FF87AE50000 B0000 C:\Windows\System32\clbcatq.dll
|
|
00007FF86B080000 24000 C:\Windows\system32\wbem\wmiutils.dll
|
|
00007FF86ED80000 80000 C:\Windows\SYSTEM32\wbemcomn.dll
|
|
00007FF86CBF0000 10000 C:\Windows\system32\wbem\wbemprox.dll
|
|
00007FF857940000 2F000 C:\Windows\Microsoft.NET\Framework64\v4.0.30319\wminet_utils.dll
|
|
00007FF86B3C0000 14000 C:\Windows\system32\wbem\wbemsvc.dll
|
|
00007FF86B140000 F8000 C:\Windows\system32\wbem\fastprox.dll
|
|
00007FF86A4B0000 1D000 C:\Windows\SYSTEM32\amsi.dll
|
|
00007FF878740000 2C000 C:\Windows\SYSTEM32\USERENV.dll
|
|
00007FF86A390000 7C000 C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MpOav.dll
|
|
00007FF870F40000 1CE000 C:\Windows\SYSTEM32\mfplat.dll
|
|
00007FF878EA0000 4E000 C:\Windows\SYSTEM32\cfgmgr32.dll
|
|
00007FF870C00000 33000 C:\Windows\SYSTEM32\RTWorkQ.DLL
|
|
00007FF8645E0000 1B9000 C:\Windows\WinSxS\amd64_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.22621.2506_none_57f74dcece1b5ace\gdiplus.dll
|
|
00007FF8764C0000 2B000 C:\Windows\SYSTEM32\DWMAPI.dll
|
|
00007FF844930000 1A9000 C:\Windows\SYSTEM32\d3d9.dll
|
|
00007FF876530000 36000 C:\Windows\SYSTEM32\dxcore.dll
|
|
00007FF83BE90000 B0000 C:\Windows\SYSTEM32\d3d9on12.dll
|
|
00007FF8763B0000 F8000 C:\Windows\SYSTEM32\dxgi.dll
|
|
00007FF83E120000 29000 C:\Windows\SYSTEM32\d3d12.dll
|
|
00007FF83BAB0000 203000 C:\Windows\SYSTEM32\D3D12Core.dll
|
|
00007FF83BA80000 27000 C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6d2a6dd090ea32a4\igd12umd64.dll
|
|
00007FF83AB80000 EFF000 C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6d2a6dd090ea32a4\igd12um64xel.dll
|
|
00007FF879310000 166000 C:\Windows\System32\CRYPT32.dll
|
|
00007FF86AB90000 45000 C:\Windows\SYSTEM32\ControlLib.dll
|
|
00007FF869300000 8C000 C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6d2a6dd090ea32a4\IntelControlLib.dll
|
|
00007FF8736C0000 4A000 C:\Windows\SYSTEM32\directxdatabasehelper.dll
|
|
00007FF866220000 43B000 C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6d2a6dd090ea32a4\igdgmm64.dll
|
|
00007FF85DE70000 3ECB000 C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6d2a6dd090ea32a4\igc64.dll
|
|
00007FF8395E0000 2F000 C:\Windows\SYSTEM32\D3DSCache.dll
|
|
00007FF8392E0000 2F9000 C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6d2a6dd090ea32a4\igd12dxva64.dll
|
|
00007FF87B070000 474000 C:\Windows\System32\SETUPAPI.dll
|
|
00007FF838100000 11DA000 C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6d2a6dd090ea32a4\igddxvacommon64.dll
|
|
00007FF8363D0000 1D25000 C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6d2a6dd090ea32a4\media_bin_64.dll
|
|
00007FF8363A0000 27000 C:\Windows\System32\DriverStore\FileRepository\iigd_dch.inf_amd64_6d2a6dd090ea32a4\igdinfo64.dll
|
|
00007FF86C530000 285000 C:\Windows\SYSTEM32\twinapi.appcore.dll
|
|
00007FF864340000 293000 C:\Windows\WinSxS\amd64_microsoft.windows.common-controls_6595b64144ccf1df_6.0.22621.2506_none_270c5ae97388e100\comctl32.dll
|
|
00007FF874A60000 1B0000 C:\Windows\SYSTEM32\WindowsCodecs.dll
|
|
00007FF86ABE0000 B0000 C:\Windows\System32\TextShaping.dll
|
|
00007FF874260000 101000 C:\Windows\SYSTEM32\PROPSYS.dll
|
|
00007FF876140000 97000 C:\Windows\SYSTEM32\apphelp.dll
|
|
00007FF83E0C0000 1A000 C:\Windows\system32\NetworkExplorer.dll
|
|
00007FF8579A0000 28000 C:\Windows\SYSTEM32\edputil.dll
|
|
00007FF862D70000 EB000 C:\Windows\System32\Windows.StateRepositoryPS.dll
|
|
00007FF859480000 1F0000 C:\Windows\SYSTEM32\urlmon.dll
|
|
00007FF863E40000 2BC000 C:\Windows\SYSTEM32\iertutil.dll
|
|
00007FF86D0F0000 28000 C:\Windows\SYSTEM32\srvcli.dll
|
|
00007FF877C20000 C000 C:\Windows\SYSTEM32\netutils.dll
|
|
00007FF878490000 42000 C:\Windows\SYSTEM32\SspiCli.dll
|
|
00007FF86D0B0000 15000 C:\Windows\SYSTEM32\virtdisk.dll
|
|
00007FF878920000 4B000 C:\Windows\SYSTEM32\Wldp.dll
|
|
00007FF83DC70000 9D000 C:\Windows\System32\appresolver.dll
|
|
00007FF86B340000 60000 C:\Windows\System32\Bcp47Langs.dll
|
|
00007FF86BB50000 625000 C:\Windows\System32\OneCoreUAPCommonProxyStub.dll
|
|
00007FF862970000 AB000 C:\Windows\System32\OneCoreCommonProxyStub.dll
|
|
00007FF86D1B0000 1E000 C:\Windows\SYSTEM32\MPR.dll
|
|
00007FF83AAB0000 16000 C:\Windows\SYSTEM32\pcacli.dll
|
|
00007FF83F8B0000 9000 C:\Windows\System32\sfc_os.dll
|
|
00007FF878EF0000 F3000 C:\Windows\SYSTEM32\ServicingCommon.dll
|
|
00007FF859340000 132000 C:\ProgramData\Microsoft\Windows Defender\Platform\4.18.23100.2009-0\MPCLIENT.DLL
|
|
00007FF879AF0000 6C000 C:\Windows\System32\WINTRUST.dll
|
|
00007FF878E20000 12000 C:\Windows\System32\MSASN1.dll
|
|
00007FF878710000 26000 C:\Windows\SYSTEM32\gpapi.dll
|
|
00007FF852E60000 343000 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Runteb92aa12#\7f586dde4c7bc328f7850afc414f392c\System.Runtime.Serialization.ni.dll
|
|
00007FF849F50000 51000 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Numerics\c304ca3d7627f6a0e371e00d336dbeba\System.Numerics.ni.dll
|
|
00007FF84EBA0000 983000 C:\Windows\assembly\NativeImages_v4.0.30319_64\System.Data\1ead2e91b97b91350eca9d7cbc274fa2\System.Data.ni.dll
|
|
00007FF84E830000 36A000 C:\Windows\Microsoft.Net\assembly\GAC_64\System.Data\v4.0_4.0.0.0__b77a5c561934e089\System.Data.dll
|
|
00007FF879B60000 71000 C:\Windows\System32\WS2_32.dll
|
|
|