EurekaLog 7.4.8.0 RC 1 Application: ------------------------------------------------------- 1.1 Start Date : Fri, 20 Sep 2019 13:14:20 +0500 1.2 Name/Description: mcclient.exe 1.3 Version Number : 7.7.0.0 1.4 Parameters : 1.5 Compilation Date: Wed, 21 Aug 2019 16:40:48 +0500 1.6 Up Time : 22 second(s) Exception: --------------------------------------------------------------------------------------- 2.1 Date : Fri, 20 Sep 2019 13:14:42 +0500 2.2 Address : 004F35E0 2.3 Module Name : mcclient.exe 2.4 Module Version: 7.7.0.0 2.5 Type : EComponentError 2.6 Message : A component named htmlpopupmenuautoscrollplugin_2 already exists. 2.7 ID : A0EB0000 2.8 Count : 1 2.9 Status : New 2.10 Note : 2.11 Sent : 1 User: ------------------------------------------------------- 3.1 ID : Bikkinin_RT 3.2 Name : 453 3.3 Email : 3.4 Company : 3.5 Privileges: SeLockMemoryPrivilege - OFF SeIncreaseQuotaPrivilege - OFF SeSecurityPrivilege - OFF SeTakeOwnershipPrivilege - OFF SeLoadDriverPrivilege - OFF SeSystemProfilePrivilege - OFF SeSystemtimePrivilege - OFF SeProfileSingleProcessPrivilege - OFF SeIncreaseBasePriorityPrivilege - OFF SeCreatePagefilePrivilege - OFF SeBackupPrivilege - OFF SeRestorePrivilege - OFF SeShutdownPrivilege - OFF SeDebugPrivilege - OFF SeSystemEnvironmentPrivilege - OFF SeChangeNotifyPrivilege - ON SeRemoteShutdownPrivilege - OFF SeUndockPrivilege - OFF SeManageVolumePrivilege - OFF SeImpersonatePrivilege - ON SeCreateGlobalPrivilege - ON SeIncreaseWorkingSetPrivilege - OFF SeTimeZonePrivilege - OFF SeCreateSymbolicLinkPrivilege - OFF Active Controls: ----------------------------------------------------------------------------------------------------------------------- 4.1 Form Class : TMainForm 4.2 Form Text : MyChat Client 7.7.0 - Биккинин Рустам Тимирханович (вн. 11-55) [ООО "Югранефтегазпроект"] (В сети) 4.3 Control Class: TRichView 4.4 Control Text : Computer: --------------------------------------------------------------------------------- 5.1 Name : BIKKININRT 5.2 Total Memory : 17115295744 (15,94 Gb) 5.3 Free Memory : 5800284160 (5,40 Gb) 5.4 Total Disk : 209609289728 (195,21 Gb) 5.5 Free Disk : 72474968064 (67,50 Gb) 5.6 System Up Time : 4 day(s), 4 hour(s), 2 minute(s), 48 second(s) 5.7 Processor : Intel(R) Core(TM) i5-4460 CPU @ 3.20GHz 5.8 Display Mode : 1920 x 1080, 32 bit 5.9 Display DPI : 96 5.10 Video Card : ATI Radeon HD 4670 (driver 8.632.1.2000 - RAM 1073741824) 5.11 Printer : HP LaserJet M1319f MFP (driver 2012.1122.1.61401) 5.12 Virtual Machine: Operating System: ---------------------------------------------------- 6.1 Type : Microsoft Windows 7 (64 bit) 6.2 Build # : 7601 (6.1.7601.18015) 6.3 Update : Service pack 1 6.4 Language : Russian (0419) 6.5 Charset : 204/1251 6.6 Install Language: Russian (0419) 6.7 UI Language : Russian (0419) Network: --------------------------------------------------- 7.1 IP Address: 010.205.250.040 - 000.000.000.000 7.2 Submask : 255.255.254.000 - 000.000.000.000 7.3 Gateway : 010.205.250.005 - 000.000.000.000 7.4 DNS 1 : 010.205.250.002 - 000.000.000.000 7.5 DNS 2 : 010.205.250.013 - 000.000.000.000 7.6 DHCP : OFF ON Steps to reproduce: ------------ 8.1 Text: Custom Information: ------------------------------------------------------------------- 9.1 ServerHWID: 279650760_3787_6-15-2-600000000 9.2 License : COMMERCIAL 9.3 ClientHWID: 43AA042E41149577E61434116B405B742B201D6E740345F7A Call Stack Information: ----------------------------------------------------------------------------------------------------------------------------------------------------------- |Methods |Details|Stack |Address |Module |Offset |Unit |Class |Procedure/Method |Line | ----------------------------------------------------------------------------------------------------------------------------------------------------------- |*Exception Thread: ID=12072; Parent=0; Priority=0 | |Class=; Name=MAIN | |DeadLock=0; Wait Chain= | |Comment= | |---------------------------------------------------------------------------------------------------------------------------------------------------------| |7FFFFFFE|03 |00000000|004F35E0|mcclient.exe |000F35E0|System.Classes |TComponent |ValidateRename | | |00000020|03 |0018F9A8|004F3D7E|mcclient.exe |000F3D7E|System.Classes |TComponent |SetName | | |00000020|03 |0018F9B4|0040C6D3|mcclient.exe |0000C6D3|System | |_UStrCat | | |00000020|04 |0018F9C4|01127DD6|mcclient.exe |00D27DD6|fm_main |TMainForm |HTMLPopupMenuAutoscrollPopup |6428[47] | |00000020|04 |0018F9FC|0085B3BD|mcclient.exe |0045B3BD|SkinMenus |TspSkinPopupMenu |Popup |4025[1] | |00000020|04 |0018FA04|0108842A|mcclient.exe |00C8842A|service | |MyMouseX |1801[2] | |00000020|04 |0018FA28|00E80A07|mcclient.exe |00A80A07|frame_txtchannel |TChannelFrame |rvRVMouseUp |1044[54] | |00000020|04 |0018FA84|00B3A50D|mcclient.exe |0073A50D|RVRVData |TRichViewRVData |DoRVMouseUp |705[2] | |00000020|04 |0018FAAC|00BDCB31|mcclient.exe |007DCB31|CRVFData |TCustomRVFormattedData|MouseUp |6479[74] | |00000020|03 |0018FADC|76816CE3|user32.dll |00016CE3|USER32 | | (possible GetThreadDesktop+128) | | |00000020|03 |0018FB08|010000F9|mcclient.exe |00C000F9|ABSRelationalAlgebra|TABSAO |SetResultFields | | |00000020|04 |0018FB20|00B2B26D|mcclient.exe |0072B26D|RVCtrlData |TRVControlData |MouseUp |343[2] | |00000020|04 |0018FB3C|00C740CB|mcclient.exe |008740CB|RichView |TCustomRichView |MouseUp |2012[4] | |00000020|03 |0018FB58|76822835|user32.dll |00022835|USER32 | | (possible GetKeyState+158) | | |00000020|03 |0018FB5C|76822819|user32.dll |00022819|USER32 | | (possible GetKeyState+130) | | |00000020|03 |0018FB78|0062792C|mcclient.exe |0022792C|Vcl.Controls |TControl |DoMouseUp | | |00000020|03 |0018FB90|006279C9|mcclient.exe |002279C9|Vcl.Controls |TControl |WMRButtonUp | | |00000020|03 |0018FB9C|00626F9D|mcclient.exe |00226F9D|Vcl.Controls |TControl |WndProc | | |00000020|03 |0018FBB0|00626F9D|mcclient.exe |00226F9D|Vcl.Controls |TControl |WndProc | | |00000020|03 |0018FBC4|76816D4C|user32.dll |00016D4C|USER32 | | (possible GetThreadDesktop+233) | | |00000020|03 |0018FBC8|76816DE3|user32.dll |00016DE3|USER32 | | (possible GetThreadDesktop+384) | | |00000020|03 |0018FBE8|76816DEE|user32.dll |00016DEE|USER32 | | (possible GetThreadDesktop+395) | | |00000020|03 |0018FC04|0062BA31|mcclient.exe |0022BA31|Vcl.Controls |TWinControl |WndProc | | |00000020|03 |0018FC14|0062B660|mcclient.exe |0022B660|Vcl.Controls |TWinControl |WndProc | | |00000020|03 |0018FC24|0040A384|mcclient.exe |0000A384|System |TMonitor |TryEnter | | |00000020|03 |0018FC2C|00409F94|mcclient.exe |00009F94|System |TMonitor |Enter | | |00000020|03 |0018FC34|0040A384|mcclient.exe |0000A384|System |TMonitor |TryEnter | | |00000020|03 |0018FC38|00409E5C|mcclient.exe |00009E5C|System |TMonitor |CheckOwningThread | | |00000020|03 |0018FC40|0040A116|mcclient.exe |0000A116|System |TMonitor |Exit | | |00000020|03 |0018FC4C|0040A167|mcclient.exe |0000A167|System |TMonitor |Exit | | |00000020|03 |0018FC54|005DC1DA|mcclient.exe |001DC1DA|Vcl.Graphics | |FreeMemoryContexts | | |00000020|03 |0018FC58|005DC1E2|mcclient.exe |001DC1E2|Vcl.Graphics | |FreeMemoryContexts | | |00000020|03 |0018FC64|0062B074|mcclient.exe |0022B074|Vcl.Controls |TWinControl |MainWndProc | | |00000020|03 |0018FC6C|0062B089|mcclient.exe |0022B089|Vcl.Controls |TWinControl |MainWndProc | | |00000020|03 |0018FC94|0062B2B4|mcclient.exe |0022B2B4|Vcl.Controls |TWinControl |IsControlMouseMsg | | |00000020|03 |0018FCC8|0062BA31|mcclient.exe |0022BA31|Vcl.Controls |TWinControl |WndProc | | |00000020|03 |0018FCE8|76816D8B|user32.dll |00016D8B|USER32 | | (possible GetThreadDesktop+296) | | |00000020|03 |0018FCEC|76816D4C|user32.dll |00016D4C|USER32 | | (possible GetThreadDesktop+233) | | |00000020|04 |0018FD14|00C7BA21|mcclient.exe |0087BA21|RichView |TCustomRichView |WndProc |5169[18] | |00000020|03 |0018FD28|0062B074|mcclient.exe |0022B074|Vcl.Controls |TWinControl |MainWndProc | | |00000020|03 |0018FD3C|0062B09E|mcclient.exe |0022B09E|Vcl.Controls |TWinControl |MainWndProc | | |00000020|03 |0018FD58|004F5428|mcclient.exe |000F5428|System.Classes | |StdWndProc | | |00000020|03 |0018FD70|768162F7|user32.dll |000162F7|USER32 | | (possible gapfnScSendMessage+815) | | |00000020|03 |0018FD9C|76816D35|user32.dll |00016D35|USER32 | | (possible GetThreadDesktop+210) | | |00000020|03 |0018FDE0|76816CE3|user32.dll |00016CE3|USER32 | | (possible GetThreadDesktop+128) | | |00000020|03 |0018FDE8|76F30137|ntdll.dll |00010137|ntdll | |KiUserCallbackDispatcher | | |00000020|03 |0018FE14|768177BF|user32.dll |000177BF|USER32 | | (possible CharPrevW+307) | | |00000020|03 |0018FE48|76817252|user32.dll |00017252|USER32 | |GetPropW | | |00000020|03 |0018FE5C|00716204|mcclient.exe |00316204|Vcl.Forms |TApplication |CancelHint | | |00000020|03 |0018FE74|76817885|user32.dll |00017885|USER32 | |DispatchMessageW | | |00000020|03 |0018FE84|00714E83|mcclient.exe |00314E83|Vcl.Forms |TApplication |ProcessMessage | | |00000020|03 |0018FEA0|00714EC6|mcclient.exe |00314EC6|Vcl.Forms |TApplication |HandleMessage | | |00000020|03 |0018FEC4|00715201|mcclient.exe |00315201|Vcl.Forms |TApplication |Run | | |00000020|03 |0018FECC|0071520E|mcclient.exe |0031520E|Vcl.Forms |TApplication |Run | | |00000020|04 |0018FEF4|0115DC9C|mcclient.exe |00D5DC9C|mcclient | |Initialization |492[285] | |00000020|03 |0018FF8C|75F5343B|kernel32.dll |0001343B|kernel32 | |BaseThreadInitThunk | | |---------------------------------------------------------------------------------------------------------------------------------------------------------| | | |Running Thread: ID=4200; Parent=0; Priority=0 | |Class=; Name= | |DeadLock=0; Wait Chain=thread: [ 1068 / 4200 ] is blocked | |Comment= | |---------------------------------------------------------------------------------------------------------------------------------------------------------| |7FFFFFFE|03 |00000000|76F4018D|ntdll.dll |0002018D|ntdll | |ZwWaitForMultipleObjects | | |00000020|03 |03CBFDF8|76F6F6AA|ntdll.dll |0004F6AA|ntdll | | (possible _allmul+1130) | | |00000020|03 |03CBFF8C|75F5343B|kernel32.dll |0001343B|kernel32 | |BaseThreadInitThunk | | |---------------------------------------------------------------------------------------------------------------------------------------------------------| | | |Running Thread: ID=8960; Parent=0; Priority=0 | |Class=; Name= | |DeadLock=0; Wait Chain= | |Comment= | |---------------------------------------------------------------------------------------------------------------------------------------------------------| |7FFFFFFE|03 |00000000|76F41F76|ntdll.dll |00021F76|ntdll | |NtWaitForWorkViaWorkerFactory | | |00000020|03 |042BFE3C|76F6FA99|ntdll.dll |0004FA99|ntdll | | (possible TpSetTimer+749) | | |00000020|03 |042BFF8C|75F5343B|kernel32.dll |0001343B|kernel32 | |BaseThreadInitThunk | | |---------------------------------------------------------------------------------------------------------------------------------------------------------| | | |Running Thread: ID=13068; Parent=0; Priority=0 | |Class=; Name= | |DeadLock=0; Wait Chain=thread: [ 330C / 13068 ] is blocked | |Comment= | |---------------------------------------------------------------------------------------------------------------------------------------------------------| |7FFFFFFE|03 |00000000|76F4018D|ntdll.dll |0002018D|ntdll | |ZwWaitForMultipleObjects | | |00000020|03 |0654FDD4|7614176F|KERNELBASE.dll|0001176F|KERNELBASE | | (possible WaitForMultipleObjectsEx+250)| | |00000020|03 |0654FE70|75F519F7|kernel32.dll |000119F7|kernel32 | |WaitForMultipleObjectsEx | | |00000020|03 |0654FEA0|009933FC|mcclient.exe |005933FC|MemData |TData |SetBlobSize | | |00000020|03 |0654FEB8|7682087C|user32.dll |0002087C|USER32 | | (possible PeekMessageW+682) | | |00000020|03 |0654FF0C|76820B7C|user32.dll |00020B7C|USER32 | |MsgWaitForMultipleObjects | | |00000020|03 |0654FF28|69817995|GdiPlus.dll |00047995|gdiplus | | (possible GdipCreateSolidFill+2260) | | |00000020|03 |0654FF74|698178B4|GdiPlus.dll |000478B4|gdiplus | | (possible GdipCreateSolidFill+2035) | | |00000020|03 |0654FF8C|75F5343B|kernel32.dll |0001343B|kernel32 | |BaseThreadInitThunk | | |---------------------------------------------------------------------------------------------------------------------------------------------------------| | | |Running Thread: ID=3536; Parent=0; Priority=0 | |Class=; Name= | |DeadLock=0; Wait Chain= | |Comment= | |---------------------------------------------------------------------------------------------------------------------------------------------------------| |7FFFFFFE|03 |00000000|76F41F76|ntdll.dll |00021F76|ntdll | |NtWaitForWorkViaWorkerFactory | | |00000020|03 |0907FE3C|76F6FA99|ntdll.dll |0004FA99|ntdll | | (possible TpSetTimer+749) | | |00000020|03 |0907FF8C|75F5343B|kernel32.dll |0001343B|kernel32 | |BaseThreadInitThunk | | |---------------------------------------------------------------------------------------------------------------------------------------------------------| | | |Running Thread: ID=3840; Parent=0; Priority=0 | |Class=; Name= | |DeadLock=0; Wait Chain= | |Comment= | |---------------------------------------------------------------------------------------------------------------------------------------------------------| |7FFFFFFE|03 |00000000|76F41F76|ntdll.dll |00021F76|ntdll | |NtWaitForWorkViaWorkerFactory | | |00000020|03 |0935FE3C|76F6FA99|ntdll.dll |0004FA99|ntdll | | (possible TpSetTimer+749) | | |00000020|03 |0935FF8C|75F5343B|kernel32.dll |0001343B|kernel32 | |BaseThreadInitThunk | | |---------------------------------------------------------------------------------------------------------------------------------------------------------| | | |Running Thread: ID=10908; Parent=0; Priority=1 | |Class=; Name= | |DeadLock=0; Wait Chain= | |Comment= | |---------------------------------------------------------------------------------------------------------------------------------------------------------| |7FFFFFFE|03 |00000000|76F3F989|ntdll.dll |0001F989|ntdll | |ZwRemoveIoCompletion | | |00000020|03 |0A89FF8C|75F5343B|kernel32.dll |0001343B|kernel32 | |BaseThreadInitThunk | | |---------------------------------------------------------------------------------------------------------------------------------------------------------| | | |Running Thread: ID=12544; Parent=0; Priority=-3 | |Class=; Name= | |DeadLock=0; Wait Chain=thread: [ 3100 / 12544 ] is blocked | |Comment= | |---------------------------------------------------------------------------------------------------------------------------------------------------------| |7FFFFFFE|03 |00000000|76F3F901|ntdll.dll |0001F901|ntdll | |NtWaitForSingleObject | | |00000020|03 |0B80FE94|76141623|KERNELBASE.dll|00011623|KERNELBASE | |WaitForSingleObjectEx | | |00000020|03 |0B80FF00|75F5118F|kernel32.dll |0001118F|kernel32 | |WaitForSingleObjectEx | | |00000020|03 |0B80FF18|75F51143|kernel32.dll |00011143|kernel32 | |WaitForSingleObject | | |00000020|01 |0B80FF2C|67F62748|bass.dll |00002748| | | | | |00000020|03 |0B80FF8C|75F5343B|kernel32.dll |0001343B|kernel32 | |BaseThreadInitThunk | | |---------------------------------------------------------------------------------------------------------------------------------------------------------| | | |Running Thread: ID=12884; Parent=0; Priority=15 | |Class=; Name= | |DeadLock=0; Wait Chain=thread: [ 3254 / 12884 ] is blocked | |Comment= | |---------------------------------------------------------------------------------------------------------------------------------------------------------| |7FFFFFFE|03 |00000000|76F3F901|ntdll.dll |0001F901|ntdll | |NtWaitForSingleObject | | |00000020|03 |0B94FECC|76141623|KERNELBASE.dll|00011623|KERNELBASE | |WaitForSingleObjectEx | | |00000020|03 |0B94FF10|76F529C8|ntdll.dll |000329C8|ntdll | |RtlQueryPerformanceCounter | | |00000020|03 |0B94FF14|75F6FDE2|kernel32.dll |0002FDE2|kernel32 | | (possible CreateEventExA+75) | | |00000020|03 |0B94FF38|75F5118F|kernel32.dll |0001118F|kernel32 | |WaitForSingleObjectEx | | |00000020|03 |0B94FF50|75F51143|kernel32.dll |00011143|kernel32 | |WaitForSingleObject | | |00000020|03 |0B94FF8C|75F5343B|kernel32.dll |0001343B|kernel32 | |BaseThreadInitThunk | | |---------------------------------------------------------------------------------------------------------------------------------------------------------| | | |Running Thread: ID=13356; Parent=0; Priority=2 | |Class=; Name= | |DeadLock=0; Wait Chain=thread: [ 342C / 13356 ] is blocked | |Comment= | |---------------------------------------------------------------------------------------------------------------------------------------------------------| |7FFFFFFE|03 |00000000|76F4018D|ntdll.dll |0002018D|ntdll | |ZwWaitForMultipleObjects | | |00000020|03 |0BA8FE2C|7614176F|KERNELBASE.dll|0001176F|KERNELBASE | | (possible WaitForMultipleObjectsEx+250)| | |00000020|03 |0BA8FEC8|75F519F7|kernel32.dll |000119F7|kernel32 | |WaitForMultipleObjectsEx | | |00000020|03 |0BA8FF10|75F52687|kernel32.dll |00012687|kernel32 | |WaitForMultipleObjects | | |00000020|03 |0BA8FF2C|67F7DC9E|bass.dll |0001DC9E|bass | | (possible BASS_GetCPU+2473) | | |00000020|03 |0BA8FF8C|75F5343B|kernel32.dll |0001343B|kernel32 | |BaseThreadInitThunk | | |---------------------------------------------------------------------------------------------------------------------------------------------------------| | | |Running Thread: ID=8980; Parent=0; Priority=15 | |Class=; Name= | |DeadLock=0; Wait Chain=thread: [ 2314 / 8980 ] is blocked | |Comment= | |---------------------------------------------------------------------------------------------------------------------------------------------------------| |7FFFFFFE|03 |00000000|76F3F901|ntdll.dll |0001F901|ntdll | |NtWaitForSingleObject | | |00000020|03 |0BBCFEF4|76141623|KERNELBASE.dll|00011623|KERNELBASE | |WaitForSingleObjectEx | | |00000020|03 |0BBCFF30|761415C1|KERNELBASE.dll|000115C1|KERNELBASE | |WaitForSingleObjectEx | | |00000020|03 |0BBCFF38|76F4E721|ntdll.dll |0002E721|ntdll | | (possible RtlMultiByteToUnicodeN+276) | | |00000020|03 |0BBCFF48|76142EC7|KERNELBASE.dll|00012EC7|KERNELBASE | |LoadLibraryExA | | |00000020|03 |0BBCFF60|75F5118F|kernel32.dll |0001118F|kernel32 | |WaitForSingleObjectEx | | |00000020|01 |0BBCFF78|67F61E11|bass.dll |00001E11| | | | | |00000020|03 |0BBCFF8C|75F5343B|kernel32.dll |0001343B|kernel32 | |BaseThreadInitThunk | | |---------------------------------------------------------------------------------------------------------------------------------------------------------| | | |Running Thread: ID=12964; Parent=0; Priority=-2 | |Class=; Name= | |DeadLock=0; Wait Chain=thread: [ 32A4 / 12964 ] is blocked | |Comment= | |---------------------------------------------------------------------------------------------------------------------------------------------------------| |7FFFFFFE|03 |00000000|76F3FDC1|ntdll.dll |0001FDC1|ntdll | |NtDelayExecution | | |00000020|03 |0C68FE90|76143D91|KERNELBASE.dll|00013D91|KERNELBASE | |SleepEx | | |00000020|03 |0C68FEE0|76821306|user32.dll |00021306|USER32 | |PostMessageW | | |00000020|03 |0C68FEF8|76144662|KERNELBASE.dll|00014662|KERNELBASE | |Sleep | | |00000020|03 |0C68FF08|004F28DD|mcclient.exe |000F28DD|System.Classes |TThread |Sleep | | |00000020|04 |0C68FF10|00F2E1A4|mcclient.exe |00B2E1A4|mcclcore |TParse |Execute |530[25] | |00000020|03 |0C68FF4C|004F1A16|mcclient.exe |000F1A16|System.Classes | |ThreadProc | | |00000020|03 |0C68FF54|004F1A21|mcclient.exe |000F1A21|System.Classes | |ThreadProc | | |00000020|04 |0C68FF7C|0059ABF4|mcclient.exe |0019ABF4|EThreadsManager | |NakedBeginThreadWrapper |1331[5] | |00000020|03 |0C68FF8C|75F5343B|kernel32.dll |0001343B|kernel32 | |BaseThreadInitThunk | | ----------------------------------------------------------------------------------------------------------------------------------------------------------- Mosules Information: --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |Handle |Name |Description |Version |Size |Modified |Path | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |00340000|uxtheme.dll |Библиотека тем UxTheme (Microsoft) |6.1.7600.16385 |245760 |2009-07-14 06:11:24|C:\Windows\System32\ | |00400000|mcclient.exe | |7.7.0.0 |19670104|2019-08-21 16:53:02|C:\Program Files (x86)\MyChat Client\ | |0A8A0000|AntiCAPS.dll | | |1024512 |2017-06-29 11:46:55|C:\Users\Bikkinin_RT\AppData\Local\MyChat Client\plugins\AntiCAPS\bin\ | |0AAF0000|Beeper.dll | | |1023488 |2017-06-29 11:46:55|C:\Users\Bikkinin_RT\AppData\Local\MyChat Client\plugins\Beeper\bin\ | |0AD40000|VNCClient.dll | | |2139648 |2015-11-27 15:41:22|C:\Users\Bikkinin_RT\AppData\Local\MyChat Client\plugins\VNCClient\bin\ | |0B0A0000|VNCServer.dll | | |1109504 |2017-06-29 11:46:55|C:\Users\Bikkinin_RT\AppData\Local\MyChat Client\plugins\VNCServer\bin\ | |0F050000|PilotShellExtensions.dll |Pilot component which enables integration with the Windows Explorer|17.0.6.0 |1079656 |2019-07-17 19:36:42|C:\Program Files (x86)\Common Files\ASCON Shared\Pilot-ShellExt\ | |11000000|libeay32.dll |OpenSSL Shared Library |1.0.2.14 |1371136 |2017-12-07 17:08:22|C:\Program Files (x86)\MyChat Client\ | |12000000|ssleay32.dll |OpenSSL Shared Library |1.0.2.14 |337920 |2017-12-07 17:08:22|C:\Program Files (x86)\MyChat Client\ | |5BAA0000|AudioSes.dll |Сеанс обработки звука |6.1.7601.24475 |195072 |2019-05-16 20:17:52|C:\Windows\System32\ | |5C4A0000|slc.dll |Software Licensing Client DLL |6.1.7600.16385 |27136 |2009-07-14 06:16:15|C:\Windows\System32\ | |5C4B0000|cscapi.dll |Offline Files Win32 API |6.1.7601.24197 |34304 |2018-06-29 20:09:59|C:\Windows\System32\ | |5C4C0000|idndl.dll |Downlevel DLL |6.1.7600.16385 |33792 |2009-07-14 06:15:27|C:\Windows\System32\ | |5C4D0000|ntshrui.dll |Расширения оболочки, обеспечивающие доступ к ресурсам |6.1.7601.17755 |442880 |2012-01-04 13:58:41|C:\Windows\System32\ | |5C540000|linkinfo.dll |Windows Volume Tracking |6.1.7600.16385 |22016 |2009-07-14 06:15:36|C:\Windows\System32\ | |5C550000|FileSyncShell.dll |Microsoft OneDrive Shell Extension |19.152.801.8 |1288824 |2019-09-15 16:53:10|C:\Users\Bikkinin_RT\AppData\Local\Microsoft\OneDrive\19.152.0801.0008\ | |5E140000|MMDevAPI.dll |MMDevice API |6.1.7601.17514 |213504 |2010-11-21 08:23:51|C:\Windows\System32\ | |5E180000|avrt.dll |Multimedia Realtime Runtime |6.1.7600.16385 |14336 |2009-07-14 06:14:58|C:\Windows\System32\ | |5EFF0000|WindowsCodecs.dll |Microsoft Windows Codecs Library |6.2.9200.22551 |1230848 |2018-08-30 06:47:47|C:\Windows\System32\ | |60490000|oleacc.dll |Active Accessibility Core Component |7.0.0.0 |233472 |2011-08-27 09:26:27|C:\Windows\System32\ | |604D0000|winrnr.dll |LDAP RnR Provider DLL |6.1.7600.16385 |20992 |2009-07-14 06:16:19|C:\Windows\System32\ | |604E0000|pnrpnsp.dll |Поставщик пространства имен PNRP |6.1.7600.16385 |65024 |2009-07-14 06:16:12|C:\Windows\System32\ | |60500000|NapiNSP.dll |Поставщик оболочки совместимости для имен электронной почты |6.1.7600.16385 |52224 |2009-07-14 06:16:02|C:\Windows\System32\ | |60540000|msacm32.dll |Фильтр диспетчера аудиосжатия Microsoft |6.1.7600.16385 |72192 |2009-07-14 06:15:42|C:\Windows\System32\ | |633E0000|propsys.dll |Система страниц свойств (Microsoft) |7.0.7601.17514 |988160 |2010-11-21 08:24:08|C:\Windows\System32\ | |650F0000|browcli.dll |Browser Service Client DLL |6.1.7601.17887 |41984 |2012-07-05 02:14:34|C:\Windows\System32\ | |65520000|nlaapi.dll |Network Location Awareness 2 |6.1.7601.24000 |52224 |2018-01-01 07:00:07|C:\Windows\System32\ | |67E70000|dwmapi.dll |Интерфейс API диспетчера окон рабочего стола (Майкрософт) |6.1.7601.18917 |67584 |2015-07-09 22:42:54|C:\Windows\System32\ | |67EB0000|api-ms-win-core-synch-l1-2-0.DLL |ApiSet Stub DLL |10.0.10586.788 |12128 |2017-01-18 20:35:50|C:\Windows\System32\ | |67ED0000|cpwinet.dll |Модуль исправления функционирования wininet.dll |4.0.4745.0 |37800 |2017-06-30 02:10:50|C:\Program Files (x86)\Common Files\Crypto Pro\AppCompat\ | |67F60000|bass.dll |BASS |2.4.14.0 |127669 |2019-01-16 15:34:32|C:\Program Files (x86)\MyChat Client\ | |680A0000|winsta.dll |Winstation Library |6.1.7601.18540 |157696 |2014-07-17 06:40:03|C:\Windows\System32\ | |680D0000|apphelp.dll |Клиентская библиотека совместимости приложений |6.1.7601.19050 |295936 |2015-10-29 22:49:58|C:\Windows\System32\ | |684E0000|FWPUCLNT.DLL |API пользовательского режима FWP/IPsec |6.1.7601.24000 |216576 |2018-01-01 07:00:02|C:\Windows\System32\ | |68520000|rasadhlp.dll |Remote Access AutoDial Helper |6.1.7600.16385 |11776 |2009-07-14 06:16:12|C:\Windows\System32\ | |68530000|mdnsNSP.dll |Bonjour Namespace Provider |3.1.0.1 |122128 |2015-08-12 16:03:38|C:\Program Files (x86)\Bonjour\ | |68760000|dnsapi.dll |Динамическая библиотека API DNS-клиента |6.1.7601.24168 |269824 |2018-06-08 20:54:41|C:\Windows\System32\ | |697D0000|GdiPlus.dll |Microsoft GDI+ |6.1.7601.24467 |1636352 |2019-05-23 06:58:18|C:\Windows\winsxs\x86_microsoft.windows.gdiplus_6595b64144ccf1df_1.1.7601.24467_none_5c08a697a00c8eef\ | |699E0000|winspool.drv |Драйвер диспетчера очереди Windows |6.1.7601.17514 |320000 |2010-11-21 08:24:08|C:\Windows\System32\ | |6A100000|winmm.dll |MCI API DLL |6.1.7601.17514 |194048 |2010-11-21 08:24:16|C:\Windows\System32\ | |6A580000|wship6.dll |Библиотека DLL помощника Winsock2 (TL/IPv6) |6.1.7600.16385 |10752 |2009-07-14 06:16:20|C:\Windows\System32\ | |6A590000|dhcpcsvc.dll |Служба DHCP-клиента |6.1.7600.16385 |61952 |2009-07-14 06:15:11|C:\Windows\System32\ | |6A5B0000|dhcpcsvc6.DLL |Клиент DHCPv6 |6.1.7601.17970 |44032 |2012-10-09 22:40:31|C:\Windows\System32\ | |6A600000|WSHTCPIP.DLL |Библиотека DLL помощника службы Winsock2 (TL/IPv4) |6.1.7600.16385 |9216 |2009-07-14 06:16:20|C:\Windows\System32\ | |6A610000|mswsock.dll |Расширение поставщика службы API Microsoft Windows Sockets 2.0 |6.1.7601.23451 |231424 |2016-05-11 20:19:16|C:\Windows\System32\ | |6B540000|wsock32.dll |Windows Socket 32-Bit DLL |6.1.7600.16385 |15360 |2009-07-14 06:16:20|C:\Windows\System32\ | |6C8E0000|ntmarta.dll |Поставщик Windows NT MARTA |6.1.7600.16385 |121856 |2009-07-14 06:16:11|C:\Windows\System32\ | |6E880000|hunspelldll.dll | | |223232 |2006-05-27 16:34:22|C:\Program Files (x86)\MyChat Client\ | |718D0000|olepro32.dll | |6.1.7601.23452 |90624 |2016-05-12 20:18:31|C:\Windows\System32\ | |718F0000|msimg32.dll |GDIEXT Client DLL |6.1.7601.24467 |4608 |2019-05-23 06:58:32|C:\Windows\System32\ | |71900000|comctl32.dll |Библиотека элементов управления взаимодействия с пользователем |6.10.7601.24460 |1681408 |2019-05-09 20:17:10|C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_6.0.7601.24460_none_2b1e532a457961ba\ | |734C0000|rsaenh.dll |Microsoft Enhanced Cryptographic Provider |6.1.7600.16385 |242936 |2009-07-14 06:17:54|C:\Windows\System32\ | |73500000|cpadvai.dll |Модуль исправления функционирования advapi32 |4.0.5211.0 |54936 |2017-06-30 02:08:06|C:\Program Files (x86)\Common Files\Crypto Pro\AppCompat\ | |73510000|cryptsp.dll |Cryptographic Service Provider API |6.1.7601.24460 |80896 |2019-05-09 20:17:23|C:\Windows\System32\ | |737C0000|version.dll |Version Checking and File Installation Libraries |6.1.7600.16385 |21504 |2009-07-14 06:16:17|C:\Windows\System32\ | |737D0000|mpr.dll |Библиотека маршрутизации для нескольких служб доступа |6.1.7600.16385 |64000 |2009-07-14 06:15:41|C:\Windows\System32\ | |737F0000|comctl32.dll |Библиотека общих элементов управления |5.82.7601.18837 |530432 |2015-04-24 22:56:58|C:\Windows\winsxs\x86_microsoft.windows.common-controls_6595b64144ccf1df_5.82.7601.18837_none_ec86b8d6858ec0bc\| |73A30000|winnsi.dll |Network Store Information RPC interface |6.1.7601.23889 |16384 |2017-08-11 11:19:44|C:\Windows\System32\ | |73A40000|IPHLPAPI.DLL |IP Helper API |6.1.7601.17514 |103936 |2010-11-21 08:24:32|C:\Windows\System32\ | |73A60000|powrprof.dll |DLL модуля поддержки профиля управления питанием |6.1.7600.16385 |145408 |2009-07-14 06:16:12|C:\Windows\System32\ | |73A90000|samcli.dll |Security Accounts Manager Client DLL |6.1.7601.17514 |51200 |2010-11-21 08:23:54|C:\Windows\System32\ | |73AA0000|wkscli.dll |Workstation Service Client DLL |6.1.7601.17514 |47104 |2010-11-21 08:23:51|C:\Windows\System32\ | |73AB0000|srvcli.dll |Server Service Client DLL |6.1.7601.17514 |90112 |2010-11-21 08:24:16|C:\Windows\System32\ | |73AD0000|netutils.dll |Net Win32 API Helpers DLL |6.1.7601.17514 |22528 |2010-11-21 08:24:16|C:\Windows\System32\ | |73AE0000|netapi32.dll |Net Win32 API DLL |6.1.7601.17887 |57344 |2012-07-05 02:16:56|C:\Windows\System32\ | |73D30000|wtsapi32.dll |Windows Remote Desktop Session Host Server SDK APIs |6.1.7601.17514 |40448 |2010-11-21 08:23:54|C:\Windows\System32\ | |74090000|detoured.dll |Marks process affected by Microsoft Research Detours Package |2.1.296.0 |20136 |2017-06-30 02:15:20|C:\Program Files (x86)\Common Files\Crypto Pro\AppCompat\ | |740A0000|cpcrypt.dll |Модуль исправления функционирования crypt32 |4.0.5197.0 |90808 |2017-06-30 02:08:30|C:\Program Files (x86)\Common Files\Crypto Pro\AppCompat\ | |745C0000|CRYPTBASE.dll |Base cryptographic API DLL |6.1.7601.24475 |36352 |2019-05-16 19:45:38|C:\Windows\SysWOW64\ | |745D0000|sspicli.dll |Security Support Provider Interface |6.1.7601.24475 |96768 |2019-05-16 20:19:09|C:\Windows\SysWOW64\ | |74630000|shell32.dll |Общая библиотека оболочки Windows |6.1.7601.24468 |12880384|2019-05-25 04:59:03|C:\Windows\SysWOW64\ | |75280000|ole32.dll |Microsoft OLE для Windows |6.1.7601.24440 |1425920 |2019-04-16 20:17:31|C:\Windows\SysWOW64\ | |753E0000|comdlg32.dll |Библиотека общих диалоговых окон |6.1.7601.17514 |485888 |2010-11-21 08:23:48|C:\Windows\SysWOW64\ | |75460000|cfgmgr32.dll |Configuration Manager DLL |6.1.7601.17621 |145920 |2011-05-24 15:39:38|C:\Windows\SysWOW64\ | |75520000|Wldap32.dll |Win32 LDAP API DLL |6.1.7601.23889 |271360 |2017-08-11 11:19:44|C:\Windows\SysWOW64\ | |75570000|rpcrt4.dll |Библиотека удаленного вызова процедур |6.1.7601.24475 |666112 |2019-05-16 20:19:09|C:\Windows\SysWOW64\ | |75660000|setupapi.dll |Windows Setup API |6.1.7601.17514 |1667584 |2010-11-21 08:23:51|C:\Windows\SysWOW64\ | |75800000|wininet.dll |Расширения Интернета для Win32 |11.0.9600.19355 |4831232 |2019-04-25 07:18:18|C:\Windows\SysWOW64\ | |75E00000|msasn1.dll |ASN.1 Runtime APIs |6.1.7601.17514 |34304 |2010-11-21 08:23:48|C:\Windows\SysWOW64\ | |75E10000|gdi32.dll |GDI Client DLL |6.1.7601.24467 |313344 |2019-05-23 06:58:40|C:\Windows\SysWOW64\ | |75EA0000|oleaut32.dll | |6.1.7601.24440 |583680 |2019-04-16 20:17:31|C:\Windows\SysWOW64\ | |75F40000|kernel32.dll |Библиотека клиента Windows NT BASE API |6.1.7601.24475 |1114112 |2019-05-16 20:19:09|C:\Windows\SysWOW64\ | |76050000|lpk.dll |Language Pack |6.1.7601.24439 |25600 |2019-04-14 10:40:22|C:\Windows\SysWOW64\ | |76070000|api-ms-win-downlevel-version-l1-1-0.dll |ApiSet Stub DLL |6.2.9200.16492 |3072 |2013-01-14 02:11:07|C:\Windows\SysWOW64\ | |760B0000|api-ms-win-downlevel-user32-l1-1-0.dll |ApiSet Stub DLL |6.2.9200.16492 |4096 |2013-01-14 02:11:21|C:\Windows\SysWOW64\ | |760C0000|shlwapi.dll |Библиотека небольших программ оболочки |6.1.7601.17514 |350208 |2010-11-21 08:23:48|C:\Windows\SysWOW64\ | |76120000|nsi.dll |NSI User-mode interface DLL |6.1.7601.23889 |8704 |2017-08-11 11:19:39|C:\Windows\SysWOW64\ | |76130000|KERNELBASE.dll |Библиотека клиента Windows NT BASE API |6.1.7601.24475 |275968 |2019-05-16 20:19:09|C:\Windows\SysWOW64\ | |76180000|imm32.dll |Multi-User Windows IMM32 API Client DLL |6.1.7601.17514 |119808 |2010-11-21 08:24:25|C:\Windows\System32\ | |761E0000|clbcatq.dll |COM+ Configuration Catalog |2001.12.8530.16385|522240 |2009-07-14 06:15:03|C:\Windows\SysWOW64\ | |76270000|api-ms-win-downlevel-advapi32-l1-1-0.dll|ApiSet Stub DLL |6.2.9200.16492 |10752 |2013-01-14 02:16:42|C:\Windows\SysWOW64\ | |76280000|sechost.dll |Host for SCM/SDDL/LSA Lookup APIs |6.1.7601.18869 |92160 |2015-05-25 23:01:39|C:\Windows\SysWOW64\ | |762A0000|api-ms-win-downlevel-normaliz-l1-1-0.dll|ApiSet Stub DLL |6.2.9200.16492 |2560 |2013-01-14 02:17:02|C:\Windows\SysWOW64\ | |762B0000|profapi.dll |User Profile Basic API |6.1.7600.16385 |31744 |2009-07-14 06:16:12|C:\Windows\SysWOW64\ | |762C0000|api-ms-win-downlevel-shlwapi-l1-1-0.dll |ApiSet Stub DLL |6.2.9200.16492 |9728 |2013-01-14 02:17:03|C:\Windows\SysWOW64\ | |762D0000|normaliz.dll |Unicode Normalization DLL |6.1.7600.16385 |2048 |2009-07-14 06:09:00|C:\Windows\SysWOW64\ | |762E0000|crypt32.dll |API32 криптографии |6.1.7601.24460 |1177088 |2019-05-09 20:17:23|C:\Windows\SysWOW64\ | |76410000|msvcrt.dll |Windows NT CRT DLL |7.0.7601.17744 |690688 |2011-12-16 12:52:58|C:\Windows\SysWOW64\ | |764C0000|userenv.dll |Userenv |6.1.7601.24453 |83968 |2019-04-25 20:18:26|C:\Windows\SysWOW64\ | |764E0000|psapi.dll |Process Status Helper |6.1.7600.16385 |6144 |2009-07-14 06:16:12|C:\Windows\SysWOW64\ | |764F0000|advapi32.dll |Расширенная библиотека API Windows 32 |6.1.7601.24475 |644096 |2019-05-16 20:17:51|C:\Windows\SysWOW64\ | |76600000|usp10.dll |Uniscribe Unicode script processor |1.626.7601.24467 |628224 |2019-05-23 06:58:39|C:\Windows\SysWOW64\ | |766A0000|imagehlp.dll |Windows NT Image Helper |6.1.7601.18288 |159232 |2013-10-19 06:36:59|C:\Windows\SysWOW64\ | |766D0000|ws2_32.dll |32-разрядная библиотека Windows Socket 2.0 |6.1.7601.23451 |206336 |2016-05-11 20:19:26|C:\Windows\SysWOW64\ | |76710000|msctf.dll |Серверная библиотека MSCTF |6.1.7601.23915 |830464 |2017-09-13 20:09:01|C:\Windows\SysWOW64\ | |767E0000|devobj.dll |Device Information Set DLL |6.1.7601.17621 |64512 |2011-05-24 15:40:05|C:\Windows\SysWOW64\ | |76800000|user32.dll |Многопользовательская библиотека клиента USER API Windows |6.1.7601.23594 |833024 |2016-11-10 21:19:40|C:\Windows\SysWOW64\ | |76900000|iertutil.dll |Run time utility for Internet Explorer |11.0.9600.19355 |2295808 |2019-04-25 08:09:25|C:\Windows\SysWOW64\ | |76F20000|ntdll.dll |Системная библиотека NT |6.1.7601.24475 |1314112 |2019-05-16 20:21:03|C:\Windows\SysWOW64\ | --------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Processes Information: ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |ID |Name |Description |Version |Memory |Priority|Threads|Path | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- |0 |[System Process] | | |0 | |4 | | |4 |System | | |315392 |Normal |251 | | |448 |smss.exe | | |1499136 |Normal |3 |C:\Windows\System32\ | |496 |lsm.exe | | |9605120 |Normal |11 |C:\Windows\System32\ | |504 |lsass.exe | | |28721152 |Normal |12 |C:\Windows\System32\ | |532 |winlogon.exe | | |10334208 |High |3 |C:\Windows\System32\ | |664 |services.exe | | |19689472 |Normal |7 |C:\Windows\System32\ | |792 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |12460032 |Normal |12 |C:\Windows\System32\ | |836 |csrss.exe | | |0 |High |11 | | |900 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |17326080 |Normal |10 |C:\Windows\System32\ | |968 |Ascon.Pilot.Updater.Service.exe |Pilot Updater Service |18.1.0.0 |47992832 |Normal |7 |C:\Program Files\ASCON\Pilot-Updater\ | |1008 |csrss.exe | | |0 |High |25 | | |1016 |wininit.exe |Автозагрузка приложений Windows |6.1.7600.16385 |5877760 |High |3 |C:\Windows\System32\ | |1056 |atiesrxx.exe | | |5656576 |Normal |6 |C:\Windows\System32\ | |1104 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |28647424 |Normal |22 |C:\Windows\System32\ | |1148 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |381296640 |Normal |40 |C:\Windows\System32\ | |1172 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |44048384 |Normal |43 |C:\Windows\System32\ | |1196 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |76537856 |Normal |45 |C:\Windows\System32\ | |1280 |afcdpsrv.exe |File Level CDP Manager Service |3.0.0.4249 |5767168 |Low |8 |C:\Program Files (x86)\Common Files\Acronis\CDP\ | |1292 |audiodg.exe | | |19443712 |Normal |10 |C:\Windows\System32\ | |1332 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |24481792 |Normal |6 |C:\Windows\System32\ | |1456 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |31420416 |Normal |34 |C:\Windows\System32\ | |1552 |AppleMobileDeviceService.exe |MobileDeviceService |474.0.2.3 |12967936 |Normal |11 |C:\Program Files\Common Files\Apple\Mobile Device Support\ | |1568 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |25145344 |Normal |20 |C:\Windows\System32\ | |1616 |chrome.exe |Google Chrome |76.0.3809.132 |201228288 |Normal |13 |C:\Program Files (x86)\Google\Chrome\Application\ | |1620 |atieclxx.exe | | |7483392 |Normal |10 |C:\Windows\System32\ | |1788 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |15872000 |Normal |38 |C:\Windows\System32\ | |1900 |atkexComSvc.exe | | |11816960 |Normal |6 |C:\Program Files (x86)\ASUS\AXSP\1.01.02\ | |1940 |avpsus.exe |Kaspersky Seamless Update Service |10.3.3.275 |3117056 |Normal |16 |C:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows SP2\| |2016 |schedul2.exe |Acronis Scheduler 2 |8.0.0.8239 |6610944 |Normal |8 |C:\Program Files (x86)\Common Files\Acronis\Schedule2\ | |2052 |Connect.Service.ContentService.exe|Service |2.0.90.0 |38359040 |Normal |11 |C:\Program Files (x86)\Autodesk\Content Service\ | |2104 |avp.exe |Kaspersky Endpoint Security 10 for Windows |10.3.3.275 |75390976 |Normal |148 |C:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows SP2\| |2128 |mDNSResponder.exe |Bonjour Service |3.1.0.1 |6811648 |Normal |4 |C:\Program Files\Bonjour\ | |2136 |dwm.exe | | |7266304 |High |3 |C:\Windows\System32\ | |2152 |OfficeClickToRun.exe |Microsoft Office Click-to-Run (SxS) |16.0.9029.2167 |58953728 |Normal |22 |C:\Program Files\Common Files\Microsoft Shared\ClickToRun\ | |2304 |hasplms.exe | | |22683648 |Normal |15 |C:\Windows\System32\ | |2396 |chrome.exe |Google Chrome |76.0.3809.132 |94560256 |Low |16 |C:\Program Files (x86)\Google\Chrome\Application\ | |2440 |inetinfo.exe | | |17088512 |Normal |5 |C:\Windows\System32\inetsrv\ | |2468 |HeciServer.exe |Intel(R) Capability Licensing Service Interface |1.31.8.1 |7086080 |Normal |4 |C:\Program Files\Intel\iCLS Client\ | |2508 |ktupdaterservice.exe |Kerio Autoupdate System: Kerio Updater Service |2.0.0.2012 |7139328 |Normal |6 |C:\Program Files (x86)\Kerio\UpdaterService\ | |2568 |kvpncsvc.exe |Kerio Control VPN Client Service |8.6.2.3847 |12058624 |Normal |12 |C:\Program Files (x86)\Kerio\VPN Client\ | |2628 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |4485120 |Normal |4 |C:\Windows\System32\ | |2880 |StartupCheckingService.exe | | |9285632 |Normal |4 |C:\Program Files (x86)\Reg Organizer\ | |3068 |piaservice.exe | | |4890624 |Normal |6 |C:\Program Files (x86)\Autodesk\Autodesk Inventory Advisor\ | |3104 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |7102464 |Normal |6 |C:\Windows\System32\ | |3132 |WmiPrvSE.exe | | |0 |Normal |8 | | |3172 |syncagentsrv.exe |TrueImage Sync Agent Service |17.0.0.2106 |13324288 |Normal |16 |C:\Program Files (x86)\Common Files\Acronis\SyncAgent\ | |3176 |Skype.exe |Skype |8.51.0.92 |43708416 |Normal |13 |C:\Program Files (x86)\Microsoft\Skype for Desktop\ | |3276 |TeamViewer_Service.exe |TeamViewer 14 |14.5.5819.0 |25604096 |Normal |21 |C:\Program Files (x86)\TeamViewer\ | |3396 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |4452352 |Normal |4 |C:\Windows\System32\ | |3420 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |7532544 |Normal |5 |C:\Windows\System32\ | |3424 |pg_ctl.exe |pg_ctl - starts/stops/restarts the PostgreSQL server |9.5.3.16130 |6139904 |Normal |4 |C:\postgresql\bin\ | |3476 |runSW.exe | |1.1005.415.2014 |5005312 |High |3 |C:\Windows\ | |3524 |SwUSB.exe |Switch USB2.0/USB3.0 for WinXP SP2+ ~ Win8.1 |500.1032.515.2015|8294400 |Normal |5 |C:\Windows\ | |3548 |postgres.exe | | |0 |Normal |4 | | |3564 |conhost.exe | | |0 |Normal |2 | | |3640 |winvnc.exe |VNC server for win32 |1.2.0.1 |5586944 |Normal |4 |C:\Program Files\uvnc bvba\UltraVNC\ | |3692 |postgres.exe | | |0 |Normal |3 | | |3752 |postgres.exe | | |0 |Normal |2 | | |3760 |postgres.exe | | |0 |Normal |2 | | |3768 |postgres.exe | | |0 |Normal |2 | | |3776 |postgres.exe | | |0 |Normal |2 | | |3784 |postgres.exe | | |0 |Normal |2 | | |3816 |Ascon.Pilot.PilotICE.exe |Pilot-ICE |19.21.0.28918 |1683300352|Normal |54 |C:\Program Files\ASCON\Pilot-ICE\ | |3996 |KoffRtfWrapper.exe |Kerio Outlook Connector (Offline Edition): KoffRtfWrapper |9.2.1.2397 |102051840 |Normal |24 |C:\Program Files (x86)\Kerio\Outlook Connector (Offline Edition)\ | |4056 |pdlice.exe |SmartPlant License Manager |12.0.90.0 |9322496 |Normal |8 |C:\Win32App\INGR\SPLM\Bin\ | |4324 |explorer.exe |Проводник |6.1.7601.23537 |161579008 |Normal |61 |C:\Windows\ | |4428 |vapm.exe |Kaspersky Security Center Vulnerability Assessment & Patch Management Component|10.4.6000.0 |29507584 |Normal |22 |C:\Program Files (x86)\Kaspersky Lab\NetworkAgent\ | |4464 |WUDFHost.exe | | |0 |Normal |8 | | |4472 |avp.exe |Kaspersky Endpoint Security 10 for Windows |10.3.3.275 |7659520 |Normal |12 |C:\Program Files (x86)\Kaspersky Lab\Kaspersky Endpoint Security 10 for Windows SP2\| |4484 |taskhost.exe | | |23941120 |Normal |12 |C:\Windows\System32\ | |4584 |winvnc.exe |VNC server for win32 |1.2.0.1 |9252864 |Normal |9 |C:\Program Files\uvnc bvba\UltraVNC\ | |4852 |WUDFHost.exe | | |0 |Normal |8 | | |5136 |iexplore.exe |Internet Explorer |11.0.9600.19355 |56745984 |Normal |17 |C:\Program Files (x86)\Internet Explorer\ | |5252 |thunderbird.exe |Thunderbird |60.9.0.7184 |225251328 |Normal |52 |C:\Program Files (x86)\Mozilla Thunderbird\ | |5304 |iTunesHelper.exe |iTunesHelper |12.10.0.7 |17158144 |Normal |9 |C:\Program Files\iTunes\ | |5384 |LoodsmanPGS.exe | |14.0.0.3022 |209092608 |Normal |22 |D:\Users\Bikkinin_RT\Application Data\Ascon\LoodsmanPGS\AppFiles\ | |5452 |Skype.exe |Skype |8.51.0.92 |91205632 |Normal |39 |C:\Program Files (x86)\Microsoft\Skype for Desktop\ | |5624 |chrome.exe |Google Chrome |76.0.3809.132 |31576064 |Normal |12 |C:\Program Files (x86)\Google\Chrome\Application\ | |5680 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |84250624 |Normal |15 |C:\Windows\System32\ | |5744 |SearchIndexer.exe |Индексатор службы Microsoft Windows Search |7.0.7601.24275 |100139008 |Normal |26 |C:\Windows\System32\ | |5756 |klnagent.exe |Kaspersky Security Center Network Agent |10.4.343.0 |60633088 |Normal |34 |C:\Program Files (x86)\Kaspersky Lab\NetworkAgent\ | |5828 |chrome.exe |Google Chrome |76.0.3809.132 |272322560 |Normal |41 |C:\Program Files (x86)\Google\Chrome\Application\ | |5876 |svchost.exe |Хост-процесс для служб Windows |6.1.7600.16385 |6893568 |Normal |6 |C:\Windows\System32\ | |6040 |icq.exe | |10.0.36981.0 |136011776 |Normal |48 |D:\Users\Bikkinin_RT\Application Data\ICQ\bin\ | |6080 |chrome.exe |Google Chrome |76.0.3809.132 |7852032 |Normal |3 |C:\Program Files (x86)\Google\Chrome\Application\ | |6104 |iPodService.exe |iPod Service |12.10.0.7 |8593408 |Normal |12 |C:\Program Files\iPod\bin\ | |6388 |splwow64.exe |Print driver host for 32bit applications |6.1.7601.17514 |10747904 |Normal |6 |C:\Windows\ | |6476 |Skype.exe |Skype |8.51.0.92 |11583488 |Normal |3 |C:\Program Files (x86)\Microsoft\Skype for Desktop\ | |6492 |chrome.exe |Google Chrome |76.0.3809.132 |6930432 |Normal |8 |C:\Program Files (x86)\Google\Chrome\Application\ | |6504 |chrome.exe |Google Chrome |76.0.3809.132 |62636032 |Normal |15 |C:\Program Files (x86)\Google\Chrome\Application\ | |6592 |IAStorDataMgrSvc.exe |IAStorDataSvc |12.8.0.1016 |61128704 |Normal |8 |C:\Program Files\Intel\Intel(R) Rapid Storage Technology\ | |6728 |pfmstat.exe |Shell Notification - Pismo File Mount |1.0.0.192 |8175616 |Normal |4 |C:\Windows\PismoFileMount\ | |6792 |wscript.exe |Microsoft ® Windows Based Script Host |5.8.7601.24288 |15855616 |Low |6 |C:\Windows\System32\ | |6836 |chrome.exe |Google Chrome |76.0.3809.132 |75984896 |Low |12 |C:\Program Files (x86)\Google\Chrome\Application\ | |6848 |kvpncgui.exe |Kerio Control VPN Client |8.6.2.3847 |17498112 |Normal |5 |C:\Program Files (x86)\Kerio\VPN Client\ | |7020 |Skype.exe |Skype |8.51.0.92 |216170496 |Low |55 |C:\Program Files (x86)\Microsoft\Skype for Desktop\ | |7076 |EXCEL.EXE |Microsoft Excel |16.0.9029.2167 |112037888 |Normal |19 |C:\Program Files (x86)\Microsoft Office\root\Office16\ | |7124 |chrome.exe |Google Chrome |76.0.3809.132 |98308096 |Low |16 |C:\Program Files (x86)\Google\Chrome\Application\ | |7160 |mmc.exe |Консоль управления (MMC) |6.1.7601.23892 |1331453952|Normal |185 |C:\Windows\System32\ | |7252 |Клиент.exe | | |223928320 |Normal |37 |C:\Program Files (x86)\ACS Sphinx\ | |7272 |LMS.exe |Intel(R) Local Management Service |9.5.10.1628 |13545472 |Normal |7 |C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\LMS\ | |7404 |KoffBackend.exe |Kerio Outlook Connector (Offline Edition): KoffBackend |9.2.1.2397 |98697216 |Normal |46 |C:\Program Files (x86)\Kerio\Outlook Connector (Offline Edition)\ | |7408 |GoogleUpdate.exe |Установщик Google |1.3.28.15 |540672 |Low |5 |C:\Program Files (x86)\Google\Update\ | |7500 |chrome.exe |Google Chrome |76.0.3809.132 |31895552 |Normal |12 |C:\Program Files (x86)\Google\Chrome\Application\ | |7504 |conhost.exe | | |4247552 |Normal |1 |C:\Windows\System32\ | |7784 |unsecapp.exe | | |0 |Normal |4 | | |7852 |chrome.exe |Google Chrome |76.0.3809.132 |36073472 |Normal |12 |C:\Program Files (x86)\Google\Chrome\Application\ | |8164 |jhi_service.exe |Intel(R) Dynamic Application Loader Host Interface |9.5.12.1682 |5124096 |Normal |4 |C:\Program Files (x86)\Intel\Intel(R) Management Engine Components\DAL\ | |8184 |chrome.exe |Google Chrome |76.0.3809.132 |52703232 |Normal |12 |C:\Program Files (x86)\Google\Chrome\Application\ | |8420 |mmc.exe |Консоль управления (MMC) |6.1.7601.23892 |27426816 |Normal |6 |C:\Windows\System32\ | |8588 |SearchProtocolHost.exe |Microsoft Windows Search Protocol Host |7.0.7601.24275 |8888320 |Low |8 |C:\Windows\System32\ | |8612 |OUTLOOK.EXE |Microsoft Outlook |16.0.9029.2167 |534130688 |Normal |64 |C:\Program Files (x86)\Microsoft Office\root\Office16\ | |9064 |chrome.exe |Google Chrome |76.0.3809.132 |36560896 |Low |12 |C:\Program Files (x86)\Google\Chrome\Application\ | |9152 |chrome.exe |Google Chrome |76.0.3809.132 |21528576 |Low |14 |C:\Program Files (x86)\Google\Chrome\Application\ | |9292 |chrome.exe |Google Chrome |76.0.3809.132 |15958016 |Normal |11 |C:\Program Files (x86)\Google\Chrome\Application\ | |9616 |iexplore.exe |Internet Explorer |11.0.9600.19355 |46047232 |Normal |14 |C:\Program Files\Internet Explorer\ | |9732 |chrome.exe |Google Chrome |76.0.3809.132 |137289728 |Low |14 |C:\Program Files (x86)\Google\Chrome\Application\ | |9888 |iexplore.exe |Internet Explorer |11.0.9600.19355 |56365056 |Normal |27 |C:\Program Files (x86)\Internet Explorer\ | |10032|iexplore.exe |Internet Explorer |11.0.9600.19355 |312344576 |Normal |25 |C:\Program Files (x86)\Internet Explorer\ | |10348|chrome.exe |Google Chrome |76.0.3809.132 |101675008 |Low |18 |C:\Program Files (x86)\Google\Chrome\Application\ | |10428|chrome.exe |Google Chrome |76.0.3809.132 |102928384 |Low |16 |C:\Program Files (x86)\Google\Chrome\Application\ | |10728|EXCEL.EXE |Microsoft Excel |16.0.9029.2167 |213516288 |Normal |32 |C:\Program Files (x86)\Microsoft Office\root\Office16\ | |10936|mcclient.exe | |7.7.0.0 |105074688 |Normal |15 |C:\Program Files (x86)\MyChat Client\ | |11156|chrome.exe |Google Chrome |76.0.3809.132 |266354688 |Low |17 |C:\Program Files (x86)\Google\Chrome\Application\ | |11292|chrome.exe |Google Chrome |76.0.3809.132 |18665472 |Normal |8 |C:\Program Files (x86)\Google\Chrome\Application\ | |11764|chrome.exe |Google Chrome |76.0.3809.132 |108212224 |Low |14 |C:\Program Files (x86)\Google\Chrome\Application\ | |11796|iexplore.exe |Internet Explorer |11.0.9600.19355 |53788672 |Normal |17 |C:\Program Files\Internet Explorer\ | |11844|2GISTrayNotifier.exe |Модуль оповещений 2ГИС |1.0.0.5247 |12738560 |Normal |7 |C:\Program Files (x86)\2gis\3.0\ | |11860|chrome.exe |Google Chrome |76.0.3809.132 |39071744 |Low |12 |C:\Program Files (x86)\Google\Chrome\Application\ | |11904|chrome.exe |Google Chrome |76.0.3809.132 |90505216 |Low |16 |C:\Program Files (x86)\Google\Chrome\Application\ | |12396|spoolsv.exe | | |34758656 |Normal |30 |C:\Windows\System32\ | |12512|WINWORD.EXE |Microsoft Word |16.0.9029.2167 |185339904 |Normal |26 |C:\Program Files (x86)\Microsoft Office\root\Office16\ | |12580|chrome.exe |Google Chrome |76.0.3809.132 |91107328 |Low |14 |C:\Program Files (x86)\Google\Chrome\Application\ | |12704|chrome.exe |Google Chrome |76.0.3809.132 |50532352 |Low |12 |C:\Program Files (x86)\Google\Chrome\Application\ | |12996|chrome.exe |Google Chrome |76.0.3809.132 |50159616 |Low |12 |C:\Program Files (x86)\Google\Chrome\Application\ | |13348|chrome.exe |Google Chrome |76.0.3809.132 |103964672 |Low |16 |C:\Program Files (x86)\Google\Chrome\Application\ | |14120|wuauclt.exe | | |8425472 |Normal |3 |C:\Windows\System32\ | |14256|SearchFilterHost.exe |Microsoft Windows Search Filter Host |7.0.7601.24275 |9109504 |Low |5 |C:\Windows\System32\ | ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------- Assembler Information: ------------------------------------------------------------------------------------------------------------------------------------------------------------------------------ ; Base Address: $4F3000, Allocation Base: $400000, Region Size: 13021184 ; Allocation Protect: PAGE_EXECUTE_WRITECOPY, Protect: PAGE_EXECUTE_READ ; State: MEM_COMMIT, Type: MEM_IMAGE ; ; ; System.TComponent.ValidateRename (Line=0 - Offset=138) ; ------------------------------------------------------ 004F35B2 7431 JZ +$31 ; ($004F35E5) System.TComponent.ValidateRename (Line=0) 004F35B4 8BD7 MOV EDX, EDI 004F35B6 8BC6 MOV EAX, ESI 004F35B8 E837060000 CALL +$0637 ; ($004F3BF4) System.TComponent.FindComponent 004F35BD 85C0 TEST EAX, EAX 004F35BF 7424 JZ +$24 ; ($004F35E5) System.TComponent.ValidateRename (Line=0) 004F35C1 897DE8 MOV [EBP-$18], EDI 004F35C4 C645EC11 MOV BYTE PTR [EBP-$14], $11 004F35C8 8D45E8 LEA EAX, [EBP-$18] 004F35CB 50 PUSH EAX 004F35CC 6A00 PUSH 0 004F35CE 8B0D5C3B1F01 MOV ECX, [$011F3B5C] ; Data as ANSI: 'P|..~э'; Data as UNICODE: '籐ğﵾ' 004F35D4 B201 MOV DL, 1 004F35D6 A104AC4B00 MOV EAX, [$004BAC04] ; Data as ANSI: ''; Data as UNICODE: '挀E护E' 004F35DB E81C29F6FF CALL -$09D6E4 ; ($00455EFC) System.Exception.CreateResFmt ; ; Line=0 - Offset=184 ; ------------------- 004F35E0 E8F773F1FF CALL -$0E8C09 ; ($0040A9DC) System._RaiseExcept ; <-- EXCEPTION 004F35E5 F6461C10 TEST BYTE PTR [ESI+$1C], $10 004F35E9 7415 JZ +$15 ; ($004F3600) System.TComponent.ValidateRename (Line=0) 004F35EB 837E0400 CMP DWORD PTR [ESI+4], 0 004F35EF 740F JZ +$0F ; ($004F3600) System.TComponent.ValidateRename (Line=0) 004F35F1 57 PUSH EDI 004F35F2 8B4DF0 MOV ECX, [EBP-$10] 004F35F5 8B55F4 MOV EDX, [EBP-$0C] 004F35F8 8B4604 MOV EAX, [ESI+4] 004F35FB 8B18 MOV EBX, [EAX] 004F35FD FF532C CALL DWORD PTR [EBX+$2C] 004F3600 33C0 XOR EAX, EAX 004F3602 5A POP EDX 004F3603 59 POP ECX 004F3604 59 POP ECX 004F3605 648910 MOV FS:[EAX], EDX 004F3608 6822364F00 PUSH $4F3622 ; ($004F3622) System.TComponent.ValidateRename (Line=0) Data as ANSI: '_^[‹е]В.'; Data as UNICODE: '幟譛工ӂ退坖懲횋잋빦￴忿썞...' Registers: ----------------------------- EAX: 0018F8CC EDI: 00000001 EBX: 00000000 ESI: 0EEDFADE ECX: 00000007 EBP: 0018F91C EDX: 00000000 ESP: 0018F8CC EIP: 7613C5AF FLG: 00000206 EXP: 004F35E0 STK: 0018F8CC Stack: Memory Dump: ------------------ --------------------------------------------------------------------------- 09568DD4: 0541A540 004F35E0: E8 F7 73 F1 FF F6 46 1C 10 74 15 83 7E 04 00 74 ..s...F..t..~..t 09568DD0: 0045691C 004F35F0: 0F 57 8B 4D F0 8B 55 F4 8B 46 04 8B 18 FF 53 2C .W.M..U..F....S, 09568DCC: 0018F914 004F3600: 33 C0 5A 59 59 64 89 10 68 22 36 4F 00 8D 45 F8 3.ZYYd..h"6O..E. 09568DC8: 08B5AC00 004F3610: BA 02 00 00 00 E8 A2 7D F1 FF C3 E9 18 72 F1 FF .......}.....r.. 09568DC4: 0018F974 004F3620: EB EB 5F 5E 5B 8B E5 5D C2 04 00 90 56 57 8B FA .._^[..]....VW.. 09568DC0: 0018F9A4 004F3630: 8B F0 8B D6 8B C7 66 BE F4 FF E8 E5 62 F1 FF 5F ......f.....b.._ 09568DBC: 094EDADC 004F3640: 5E C3 8B C0 C3 00 00 00 4C 36 4F 00 0F 1E 54 43 ^.......L6O...TC 09568DB8: 0541A540 004F3650: 6F 6D 70 6F 6E 65 6E 74 2E 43 72 65 61 74 65 40 omponent.Create@ 09568DB4: 00000000 004F3660: 24 32 35 34 34 24 30 24 49 6E 74 66 18 1F 40 00 $2544$0$Intf..@. 09568DB0: 08B5AC00 004F3670: 40 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 @............... 09568DAC: 004F35E5 004F3680: 00 0E 53 79 73 74 65 6D 2E 43 6C 61 73 73 65 73 ..System.Classes 09568DA8: 00000007 004F3690: 01 00 FF FF 02 00 00 00 9C 36 4F 00 0F 26 54 43 .........6O..&TC 09568DA4: 7613C5AF 004F36A0: 6F 6D 70 61 72 69 73 6F 6E 3C 53 79 73 74 65 6D omparison..@.@....... 09568D98: 0EEDFADE 004F36D0: 00 00 00 00 00 00 00 00 00 18 53 79 73 74 65 6D ..........System